Posts

Acunetix Version 13 Released!

Acunetix Version 13 (build 13.0.200205121 – Windows and Linux) 5th February 2020 – Acunetix Pricing 

New Features in Acunetix Version 13

  • New Acunetix web UI
  • Network Scanner integration (Improved)
  • Malware Detection using Windows Defender on Windows & ClamAv on Linux
  • Smart Scan
  • New scanning algorithm prioritises scanning tasks and reduces scanning time
  • Proof of exploit is reported in the vulnerability alerts
  • Incremental Scans
  • Vulnerability Confidence Rating for web vulnerabilities
  • Brand New GitLab Issue Tracker Integration
  • Brand New Bugzilla Issue Tracker Integration
  • Brand New Mantis Issue Tracker Integration
  • Ability to create Login Sequence from Selenium script
  • New WADL import file
  • New ASP.NET Webforms import file
  • New Postman import file
  • New Paros import file
  • Ability to create custom checks
  • Highlighting of vulnerability in HTTP response
  • DeepScan provides better support for Angular 2, Vue and React JavaScript Frameworks
  • Unlimited network scanning for Acunetix Premium customers
  • Account Session Timeout settings
  • Account Maximum Consecutive Login Failure settings

New Vulnerability Checks in Acunetix 13

Updates

  • Improved memory consumption for the scanner
  • PDF reports now have page numbers
  • Generic User-agent will be used for communication with issue trackers
  • All lists in Acunetix UI can be sorted
  • Easier filtering options in the Acunetix UI
  • Settings can now be accessed from the side-bar
  • Links discovered by AcuSensor are given more prominence
  • Improved processing of XML and JSON POST input schemes
  • Scanner will try to replay the LSR playback actions a number of times before failing
  • Improved Auto-Login
  • Multiple updates in the Login Sequence Recorder
  • Developer report updated to include Source file, line number and other details provided by AcuSensor
  • Acunetix now supports scanning domains with international characters
  • Increase page size limit to 20Mb in scanner and LSR
  • Improved detection of Possible Sensitive Files
  • Improved detection of email addresses
  • Improved detection of Command Injection
  • Improved detection of database backup files
  • Improved detection of XXE

Fixes

  • Fixed issue in Developer report showing incorrect parameter name for detected vulnerabilities
  • Fixed: “Tester” user role will not be able to create reports
  • upgrades on Linux were not removing all files from previous installation
  • Fixed issue with Manual Intervention
  • Fixed: Session cookies where not always collected by LSR
  • Fixed: Incorrect processing of URLs with “{” character
  • Fixed a number of crashes in scanner
  • Fixed issue causing scanner proxy to unintentionally transform parts of the HTTP request
  • Fixed false positive in the detection of Apache Tomcat Remote Code Execution
  • Fixed issues causing some links not to be properly imported by the importer
  • Fixed issue with license activation when proxy and authentication is used
  • Fixed issue causing session to get lost when Deepscan is used

Acunetix Coupon Code 2019 – Version 12!

Acunetix Coupon Code

Acunetix Version 12 is now available and Alliance is offering an exclusive promotion until 12/31/2018  Get 5% off any Acunetix product upon checkout by entering the following coupon code.

ACUNETIX COUPON CODE – 5OFFACUNETIX

*** Only valid at Alliance Technology Partners ***

This coupon code works with all Acunetix licensing

Purchase Acunetix Here and Enter Coupon Code 5OFFACUNETIX

OR Purchase Acunetix Online using coupon code Purchase Acunetix Here and Enter Coupon Code OVS5OFF

http://alliancewebsec.wpengine.com/acunetix-pricing/

Acunetix Discount Code, Promo Code

 

 

Acunetix Training – Introduction to Web Vulnerability Scanning Strategies with Acunetix

Alliance has been an Acunetix partner for 7 years and now offers Acunetix Training Courses.  We have found that many Acunetix users never learn how to use Acunetix to it’s fullest extent.   With all the highly publicized security breaches around the country, we have decided that helping our clients protect their data is our top priority.  Our clients include the United States Government, State and Local Governments, Security Consulting Firms, and Fortune 1000 organizations.

Our Basic Training course is a 3 hour course given by our two senior security engineers.  It is delivered via the web.  It is highly interactive and tailored to the users’ experience level and particular needs.  Our security engineers are trained directly by Acunetix and work with Acunetix on a consistent basis.   This is a dedicated training for our clients who can invite up to 5 users.

The Introductory course covers the following areas:

  • Overview of Acunetix and Web Vulnerability Scanning
  • Scan Settings
  • Scanning/Crawling Options
  • Login Sequence Recorder
  • HTTP Editor
  • HTTP Sniffer
  • Site Crawler
  • HTTP Fuzzer
  • Authentication Tester
  • Compare Results Tool
  • Target and Domain Finder
  • Web Services Scanner/Editor
  • Scheduler
  • Reporter
  • OWASP
  • New Features in WVS 9.5

A certificate of completion is issued after the completion of the course.

Alliance Logo Transparent

Acunetix Reseller, Acunetix Partner,  Acunetix Training

Acunetix Reseller, Acunetix Partner, Acunetix Training

 

 

SQL Injection Flaws on Web Sites leads to Biggest Data Breach in History

A Russian Cyber Gang, Dubbed CyberVors by Hold Security (who identified the data breach), have stolen over 4.5 Billion Records, mostly containing user credentials from over 420,000 Web and FTP sites.  This represents the largest known data breach in history with dire implications. The CyberVors accomplished this gaining control of a botnet network (a large group of virus-infected computers controlled by 1 criminal system) which they used to identify SQL vulnerabilities on the sites they visited.

How you to protect yourself and your company.

Individuals – Change your credentials using strong passwords.  See this PC Magazine article for some best practices – Creating Strong Passwords

Companies – Check your web site(s) for vulnerabilities.  The CyberVors found sites vulnerable to  SQL Injection.  SQL Injection is one of the most common vulnerabilities found on web sites.   Alliance Technology Partners specializes in Web Security and is the Acunetix Preferred Partner.  We sell, train, and consult IT and Security professionals on how to use Acunetix.  We have the only security engineers directly trained by Acunetix in the US.  We also offer Our Pen Testing and Audit Services.

About Alliance Technology Partners Alliance is IT Solution provider based in St. Louis that specializes in web security.  We help Fortune 1000 and the Government (Federal, State, and Local) secure their web sites.  We offer Web Vulnerability Software (Acunetix) as well as our expertise to assist our clients in their mission to secure their networks.  We offer training and ongoing consulting options.