Transcript Acunetix presentation slides

Acunetix Vulnerability Scanner
www.acunetix.com
www.secureone.com.my
1
Acunetix – Securing Websites since 2004
Pioneer Black Box Web Scanner since 2004
Visionary Player
Award Winning Innovative Software
Fortune 100, 500, 1000 Customers
Online Cloud Scanner
www.acunetix.com
[email protected]
2
Dealing with Web Application Vulnerabilities
Example – Examples of… ×
https://www.example.com/page?id-1%20union%20select%201,2,@@version
A web application vulnerability is a flaw in a web
application’s architecture, logic, design or configuration
which exposes it to attacks by malicious users.
www.acunetix.com
[email protected]
3
All vulnerabilities
found will be
displayed in the
Alerts Node.
Each alert contains
information about
the vulnerability,
possible resolution
examples, and CVE,
CWE, and CVSS
information.
www.acunetix.com
[email protected]
Reports & Remediation
Acunetix WVS will
launch a range of
vulnerability attacks
on every page.
The scanner will run
tests against controls
on each page, similar
to what hackers
would do to attack a
website.
Results
The crawler will
analyze the entire
website starting from
the set URL.
It will then map out
the entire directory
structure of the site.
Vulnerability Scanning
Crawling
Dealing with Web Application Vulnerabilities
Optionally export
found vulnerabilities
to a variety of
different reports.
Re-testing of specific
alerts allows you to
fix and test for
vulnerabilities
individually rather
than re-running an
entire scan.
4
Product and Service Offering
www.acunetix.com
[email protected]
Product and Service Offering
Acunetix Web Vulnerability Scanner (On-Premises)
www.acunetix.com
[email protected]
Acunetix Vulnerability Scanner (Online)
But I’ve
So Got
Did aThey
Firewall!
Port 80 and 443 have to remain open
www.acunetix.com
7
46%
87%
websites are susceptible to
high-severity vulnerabilities
websites are susceptible to
medium-severity vulnerabilities
Source – Acunetix Web Security Report 2014/2015
www.acunetix.com
8
Global Market Size 2014
Security Outsourcing
Forecast CAGR 15.4% thru’ 2019
$13.8 billion
$28 billion
Managed Security
$7.9 billion
Ref. Dec 2014 Report
www.acunetix.com
[email protected]
9
Drivers - Soaring Value of Cyber Security Market
Business drivers
• Security staffing and budget constraints
• Increased adoption of cloud based IT services
• Evolving compliance requirements - GDRP
• Hackers targeting SMBs
• Cybersecurity CAGR Growth Rates >> 20%
www.acunetix.com
[email protected]
10
Drivers - Risk
General Data Protection Regulation
(GDRP) Shocker!
Risks
• Can an eSMB afford a €20,000,000 fine?
• Customer data theft from back-end (e.g. SQL
injection threats)
• Or 4% Annual Revenue?
• Customer accounts compromised (e.g. XSS)
• Can you?
• Compliance loss (e.g. PCI-DSS, HIPAA,
ISO2700x, NISA-DIST, FedRAMP, SOX, etc.)
• With Acunetix, you can cost-effectively and
profitably assist eSMBs in toughening up their
public-facing web-sites using the highest
quality web app and perimeter scanning
technology available.
• Time and money lost fixing things
• Liability, job loss, business closure
www.acunetix.com
[email protected]
11
A Compelling Solution for SMBs
Easy First Use Experience
DeepScan Technology Coverage
Automated and Scalable
Supports Most Popular CMS
- 80 million sites
Now also Joomla and Drupal >3,100
web specific vulnerabilities
www.acunetix.com
[email protected]
12
74.6 million sites
1200
distinct vulnerabilities
different types
Source – Acunetix Web Security Report 2014/2015
www.acunetix.com
13
Geared for SMBs – Customer Personas
Millions of SMBs and CMS users
Web developers – Check their work before delivery, again and again
E-Commerce sites – Repeat compliance prep-work
System Administrators - Check on subcontracted website work and their own
firewall configuration, again and again
Consultants – Use the service as part of their service
www.acunetix.com
[email protected]
14
Geared for SMBs – Repeat Business
>90% of Acunetix customers say Acunetix detects lots of vulnerabilities with great
features vs price
Take your customers security seriously
Reduce the risk level of their security posture
Easy to use, affordable and scalable security scrutinizing service to the smaller
companies, without breaking the piggy-bank
www.acunetix.com
[email protected]
15
No Compromises – Banking & Finance
No Compromises – Risk & Advisory
No Compromises – Academic & Research
No Compromises – Healthcare & Pharmaceutical
No Compromises – Government & Defense
No Compromises – IT & Telecom
No Compromises – Others
No Compromises – MSSPs / CSPs
Whet their appetite!
Free 14 Day Trial
Free Network Scans
Starts from €295 per year
Multi-user / Role
Sliding scale
www.acunetix.com
[email protected]
24
Acunetix Partner Program - Acunetix User Academy
Freemium, POCs, NFR
Documentation, Training Videos, Webinars,
Blog, Support, Integration Tips
Certification
Partners and Licensed Users can get certified
www.acunetix.com
[email protected]
25
MKT Support / MDF
Content is King
Artworks
High Traffic Web-listing
www.acunetix.com
[email protected]
26
Business Model
Channel
Own it!
Zero Entry Costs
Margins from 20%
Use our Scanning Servers!
Define your own model
Technology Licensing
Captive web site
hosting customers
Open New Revenue
Streams
www.acunetix.com
[email protected]
27
28
Thank You
Questions?
[email protected]
www.acunetix.com
www.secureone.com.my