- 本仓库及相关资源仅供个人测试,请勿用于非法用途
- This warehouse and related resources are for personal testing only, please do not use them for illegal purposes
Please note that starting from version 23.6.230626159, we have deprecated support for Windows 8, Server 2012 and Server 2012 R2. Please update your Windows Operating System to Windows 10 (or later) or Windows Server 2016 (or later) to use this and upcoming releases.
- [Closed beta feature] Acunetix now includes Runtime SCA, which identifies the technologies used on the scanned endpoints, and highlights the technologies with known vulnerabilities.
- [Closed beta feature] The internal scanning agent in Acunetix Online, available in closed BETA, can now start multiple concurrent scans.
- Check if API responses containing PII are accessible without authentication
- Test for Joomla Unauthorised Access Vulnerability ( CVE-2023-23752)
- Test for authentication bypass in the Express javascript framework due to case-insensitive path handling
- Test for Citrix Gateway XSS ( CVE-2023-24488)
- Test for authentication bypass and privilege escalation in WooCommerce ( CVE-2023-28121)
- Detect if Rails is running in debug mode
- Detect Access Control Bypass for Remote Code Execution for Adobe ColdFusion ( CVE-2023-29298, CVE-2023-29300)
- Updated The CWE Top 25 Report to the latest 2023 version
- Improvements to the .NET IAST AcuSensor allowing more information gathering
- Improved support for Shadow DOM in LSR
- Improvements to NGINX Alias traversal security check
- Improvements to WordPress vulnerability detection
- Improvements to the Code Execution security checks
docker run -it -d \
--name awvs \
-p 3443:3443 \
--restart=always \
xrsec/awvs
# example xrsec/awvs:{{tags}} # https://hub.docker.com/r/xrsec/awvs/tags
# xrsec/awvs:v15.1sudo vi /etc/hosts
192.168.0.1 awvs.lanDownlaod && Install RootCA.cer
URL: https://awvs.lan:3443/#/login
UserName: awvs@awvs.lan
PassWord: Awvs@awvs.lanAcunetix Premium now uses the Calver versioning convention. Please note that starting from version 23.6.230628115, we have deprecated support for Windows 8, Server 2012 and Server 2012 R2. Please update your Windows Operating System to Windows 10 (or later) or Windows Server 2016 (or later) to use this and upcoming releases.
- [Closed beta feature] Internal site scanning for on-demand users for Windows machines
- Improved support for GraphQL detection and scanning
- New check for Passive and Active Mixed Content over HTTPS
- New check for Open Silverlight Client Access Policy
- New check for Open Policy Crossdomain.xml
- Acunetix Premium now ships with Chromium 114.0.5735.133/134 on Linux and Windows
- Updated UI design in select parts of the product
- Added support for OpenAI manifest files
XRSec has the right to modify and interpret this article. If you want to reprint or disseminate this article, you must ensure the integrity of this article, including all contents such as copyright notice. Without the permission of the author, the content of this article shall not be modified or increased or decreased arbitrarily, and it shall not be used for commercial purposes in any way