Enriched Business with Rich Enterprise Class MTvScan

Open Web Application Security Project (OWASP)

OWASP Top 10:

Open Web Application Security Project (OWASP) is an online community in the field of web application security which releases a list of top 10 vulnerabilities every year. The last time they released the list was in 2017. MTvScan detects each of those vulnerabilities and follows the rules laid out by OWASP. We scan for Cross-Site Scripting (XSS), SQL Injection, Insecure Deserialization, Sensitive Data Exposure etc. and report the vulnerabilities and provide recommendations to fix these issues.

owasp

Content Change Monitoring:

Content change monitoring is an important feature provided by MTvScan. We scan each and every page of the website to detect any changes. Every change is monitored throughout the website along with percentage of change with the respective URLs. Here we first create a snapshot of all the web pages and then scan each & every page for changes and report the irregularities found. This feature helps website owners to check whether there are any changes being done on the website without their concern or these are just illegitimate changes.

featured_content_change

Malware Scan:

(Unique feature)- Website defacement check: Website defacement is an attack on a website that changes the visual appearance of the site or a webpage.

  • Forceful redirect injection test.
  • Scans JavaScript code snippets against generic signatures: Checks for JavaScript dangerous functions like eval, base64_decode, char etc. Checks for Iframes.
  • Special algorithm developed to detect JavaScript Obfuscation: Obfuscation used to convert vulnerable codes into unreadable format.
  • Third party link checks: It checks third party links with reputation databases.
  • Malware Monitoring primarily focuses on detection of- JavaScript, iFrame & Defaced keywords. JavaScript is scanned for malicious code. The site is also scanned for deface keywords like- Hacked by etc.
featured_malware

Phishing :

Protect your customers and safeguard your web application with MTvScan Phishing.
  • Find similar looking domains
  • URL hijacking - The URL hijacking can be similar to the victims site address (e.g. esds.co.in): and also of the following kinds
  • A common misspelling, or foreign language spelling eg; site: eads.com
  • Misspelling like A typographical error: eg :site: essd.com
  • swaps letters within the domain name eg :site: essd.com
  • Different domain name eg: site: esds.org
  • Homoglyph advance phishing attack detection.
  • Corporate intelligence.
  • Punycode phishIng attack detection.
featured_phishing

CMS scan:

Detect and Scan CMS:
  • Very few scanners provide this feature
  • Detect Wordpress, Joomla, vBulletine, Drupal.
  • Scan Themes, Plug-ins, unprotected admin area.
  • User enumeration.
  • Brut forcing for simple password detection.
  • FPD - File Path Disclosure scanning.
  • Detect CMS in all directories.
featured_cms

Domain reputation check :

Domain reputation in Google, SURBL, Malware Patrol, Clean-Mx, Phishtank:
  • Check whether domain is listed with These databases. Above databases and organizations stores IP address and domains which are used in malware, spamming, phishing activities.
 
Mail server IP Check in 58 RBL repositories:

RBL(Real-time Black hole) lists IP addresses whose owners refuse to stop the growth of spams. RBL lists various server IP addresses from multiple ISPs whose users are responsible for spams. RBL also lists those ISPs whose servers are hijacked for spam relay.

featured_domain_reputation

Robust Link Crawling:

Link crawling is a process of capturing all the webpages (URLs/links) present on the website. It helps us understand know how many webpages are there in our website and which are these pages related to. Site owner can also cross check whether these page are legitimate or not.

  • Crawls links from web pages, robots.txt, iframes, hacker’s favorite search engines, directory indexes, and directory traversals.
  • Admin and directory busters.
  • Directory access check
featured_link_crawling

Banner Grabbing:

Banner grabbing is collection of information related to your website such as webserver information, header information and open ports. Banner grabbing is a technique used to gain information about a computer system on a network and the services running on its open ports. An intruder can use banner grabbing in order to find network hosts that are running versions of applications and operating systems with known exploits. We do following things :

  • Port scanning
  • OS detection
  • WAF detection
featured_banner_grabbing

SSL Scan :

Check for SSL Poodle, BEAST, CRIME, Heartbleed, DROWN etc.

In SSL Check, the following areas are checked:
  • NULL Cipher used or less than 128 bits.
  • Domain uses an invalid security certificate.
  • Domain uses an expired security certificate.
  • Domain uses a security certificate which expires today (EOD).
featured_ssl

LFI & RFI detection:

Scan Local file injections (LFI):

Local File Injections (LFI) is a process where a file or a script is injected on a server through a web browser which allows directory traversals characters to be injected if the page is not sanitized which also leads to information disclosure.

Scan Remote file inclusion (RFI):

Remote File Inclusion (RFI) is an attack which looks for vulnerabilities in a web application to include a remote file through a script on the web browser. The perpetrator wants to exploit the functions in an application to upload malware from a different domain.

featured_lfi_rfi
Enquire now!