Acunetix Web Vulnerability Scanner 網頁弱點掃瞄工具特色
<div>一、具有自動偵測以下弱點之功能</div><div><br></div><div>1. 跨網站指令碼 (Cross site scripting)</div><div><br></div><div>2. SQL 程式碼注入攻擊(SQL injection)</div><div><br></div><div>3. Files that can be found with the GHDB – Google hacking database</div><div><br></div><div>4. 程式碼執行 (Code execution)</div><div><br></div><div>5. 目錄遊走 (Directory traversal)</div><div><br></div><div>6. 檔案引入(File inclusion)</div><div><br></div><div>7. 網站程式原始碼暴露 (Script source code disclosure)</div><div><br></div><div>8. CRLF injection</div><div><br></div><div>9. 跨頁框指令碼 (Cross frame scripting)</div><div><br></div><div>10. 具有自動查詢備份檔或目錄功能 (Looks for backup files or directories)</div><div><br></div><div>11. 具有自動搜尋具有敏感性資料的檔案或目錄</div><div>(Discovers files/directories that may contain sensitive information)</div><div><br></div><div>12. 具有自動搜尋一般檔案,如 記錄檔,應用程式追蹤,CVS網站容器</div><div>(Looks for common files, such as logs, application traces, CVS web repositories)</div><div><br></div><div>13. 具有自動查詢目錄清單功能 (Finds directory listings)</div><div><br></div><div>14. 具有搜尋弱點權限之目錄功能,如可以新建、編輯、或刪除檔案之目錄</div><div> (Discovers directories with weak permissions, i.e. directories where you can create, edit and/or delete files)</div><div><br></div><div>15. 具有自動搜尋可用的網站伺服器技術之功能</div><div>(Discovers available web server technologies, such as WebDAV, FrontPage, etc.)</div><div><br></div><div> 二、其它功能</div><div><br></div><div>1. 具有自動密碼輸入機功能</div><div>(Login sequence recorder for protected areas of the website)</div><div><br></div><div>2. 具有自動HTML表單過濾器功能 (Automatic HTML form filler)</div><div><br></div><div>3. 具有截取Flash檔功能 (Crawl Flash files)</div><div><br></div><div>4. 具有測試登入網頁之密碼強度功能</div><div>(Test password strength of login pages)</div><div><br></div><div>5. 具有自定弱點編輯器功能 (Vulnerability Editor)</div><div><br></div><div>6. 支援主要的網頁技術,如PHP, ASP, ASP .NET</div><div>(Supports all major web technologies)</div><div><br></div><div>7. 具有報表產生器功能(Report generator)</div><div><br></div><div>8. 能檢測所有IP範圍或網站之授權方式</div>