Invicti Standard

Read the blog post for more details about this version

NEW FEATURES

• Scheduling Support

• Command Line Automation Support

• ViewState Panel.

NEW WEB SECURITY TESTS

• ASP.NET Viewstate Analyzer

• Confirmation for Remote code evaluation

• Confirmation for Remote file inclusion

• Confirmation for Command Injection.

Read the blog post for more details about this version

NEW FEATURES

• New Settings Interface

• Resume Support

• Better GUI for Permanent XSS vulnerabilities.

NEW WEB SECURITY TEST

• Second Order SQL Injection.

Read the blog post for more details about this version

NEW FEATURES

• New reporting format

• New Security Tests

• Open Redirection.

Read the blog post for more details about this version

NEW FEATURES

• Import / Enter Proxy Logs and HTTP Requests

• Manual Crawling / Internal Proxy / Proxy Mode

• Ability to Include & Exclude links

Read the blog post for more details about this version

NEW FEATURES

• Controlled Scan

• Retest single vulnerability.

NEW WEB SECURITY TESTS

• Silverlight Open Access Policy / Silverlight Access Policy Found Checks

• Django Stack Trace Disclosure Check

• MySQL Username Disclosure Check

• New Backup File Checks

• X-XSS-Protection Check.

Read the blog post for more details about this version

NEW FEATURES

• Client Certificate Authentication Support

• Vulnerability Classification data reported the GUI and reports

• New Save / Load Files.

NEW WEB SECURITY TEST

• Blind Command Injection.

Read the blog post for more details about this version

NEW FEATURE

• Anti-CSRF Token Support.

NEW WEB SECURITY TESTS

• Brute Force Support

• Tomcat Source Code Disclosure

• Default Tomcat Page Identified

• Frame Injection

• Backdoor Detection

• Sensitive Files Detection.

Read the blog post for more details about this version

NEW WEB SECURITY TEST

• Redirect BODY is too large and Redirect includes 2 Responses.

NEW FEATURE

• MS Live ID, SSO Authentication Support.

Read the blog post for more details about this version

NEW WEB SECURITY TESTS

• SSL Checks added

• Tomcat default files check added

• ASP.NET MVC version disclosure check added

• Mongrel and Nginx version disclosure checks added.

NEW FEATURES

• Added the Vulnerability Database

• Simultaneous Crawl & Attack.

Read the blog post for more details about this version

NEW WEB SECURITY CHECKS

• Expression Language Injection check added

• MyFaces Stack Trace Disclosure check added

• Mongrel Server Version Disclosure check added

• Password over GET check added

• WebLogic Detection check added

• Elmah.axd Detection check added

• OpenSSL vulnerabilities added to Vulnerability Database

• PHP vulnerabilities added to Vulnerability Database.

NEW FEATURES

• New Authentication System (SSO, Multiple-step Authentication, Extensibility)

• New Injection Points added

• Comparison Reports added

• New dashboard

• Complete x64 Support

• Ability to scan large websites (2M+ requests without any problems).

Read the blog post for more details about this version

NEW WEB SECURITY TESTS

• Detect web statistic applications

• Web.config check added

• WS_FTP log check added

• Perl RCE (Remote Code Evaluation) checks added.

NEW FEATURES

• Ability to scan much bigger websites with high performance

• Faster scans

• 2 New scan reports added.

Read the blog post for more details about this version

NEW FEATURE

• Improved PDF reports.

IMPROVEMENT

• Increased performance.