Which Vulnerabilities does Acunetix Web Vulnerability Scanner Check for?

Acunetix Web Vulnerability Scanner automatically checks for the following vulnerabilities, among others{ http://www.acunetix.com/vulnerabilities/ }:

Web Server Configuration Checks{Web服务器配置检测}

• Checks for Web Servers Problems – Determines if dangerous HTTP methods are enabled on the web server (e.g. PUT, TRACE, DELETE)
• Verify Web Server Technologies
• Vulnerable Web Servers
• Vulnerable Web Server Technologies – such as “PHP 4.3.0 file disclosure and possible code execution.

Parameter Manipulation Checks{参数操纵检测}

• Cross-Site Scripting (XSS)
• Cross-Site Request Forgery (CSRF)
• SQL Injection
• Code Execution
• Directory Traversal
• HTTP Parameter Pollution
• File Inclusion
• Script Source Code Disclosure
• CRLF Injection
• Cross Frame Scripting (XFS)
• PHP Code Injection
• XPath Injection
• Path Disclosure
  (Unix and Windows)
• LDAP Injection
• Cookie Manipulation
• Arbitrary File creation (AcuSensor Technology)
• Arbitrary File deletion (AcuSensor Technology)
• Email Injection (AcuSensor Technology)
• File Tampering (AcuSensor Technology)
• URL redirection
• Remote XSL inclusion
• DOM XSS
  
• MultiRequest Parameter Manipulation
• Blind SQL/XPath Injection
• Input Validation
• Buffer Overflows
• Sub-Domain Scanning

File Checks{文件、脚本检测}

• Checks for Backup Files or Directories – Looks for common files (such as logs, application traces, CVS web repositories)
• Cross Site Scripting in URI
• Checks for Script Errors

File Uploads{文件上传漏洞检测}

• Unrestricted File uploads Checks

Directory Checks{目录遍历相关漏洞检测}

• Looks for Common Files (such as logs, traces, CVS)
• Discover Sensitive Files/Directories
• Discovers Directories with Weak Permissions
• Cross Site Scripting in Path and PHPSESSID Session Fixation.
• Web Applications
• HTTP Verb Tampering

Text Search{文本信息检测}

• Directory Listings
• Source Code Disclosure
• Check for Common Files
• Check for Email Addresses
• Microsoft Office Possible Sensitive Information
• Local Path Disclosure
• Error Messages
• Trojan Shell Scripts (such as popular PHP shell scripts like r57shell, c99shell etc)

Weak Password Checks{弱密码检测–暴力破解}

• Weak HTTP Passwords
• Authentication attacks
• Weak FTP passwords

Google Hacking Database (GHDB){GHDB检测}http://www.acunetix.com/websitesecurity/google-hacking/

• Over 1200 Google Hacking Database Search Entries
  

Port Scanner and Network Alerts{端口扫描&网络脆弱性检测}

• Finds All Open Ports on Servers
• Displays Network Banner of Port
• DNS Server Vulnerability: Open Zone Transfer
• DNS Server Vulnerability: Open Recursion
• DNS Server Vulnerability: Cache Poisoning
• Finds List of Writable FTP Directories
• FTP Anonymous Access Allowed
• Checks for Badly Configured Proxy Servers
• Checks for Weak SNMP Community Strings
• Finds Weak SSL Cyphers

#!/usr/bin/env python
#--coding: utf-8--

import sys
import urllib2
import re
import HTMLParser

URL_REG = re.compile(r'<li><a href='(.+?)'>', re.I)
baseURL = 'http://www.acunetix.com/?post_type=page&p=26&vulnerability_page='
content = ''

for i in xrange(1, 10):
	print baseURL + str(i)
	content += (urllib2.urlopen(baseURL + str(i))).read()

URL_list = URL_REG.findall(content)

fp = open("Web_vul_list.txt", 'a')
for url in URL_list:
	print 'http:' + url
	fp.write('http:' + url + 'n')
fp.close()

print str(len(URL_list)) + ' URL.'

因为用到了HTMLParser所以这段代码非常简单，但效果还不错`(*∩_∩*)′