Community Edition
Total Tests:
This Week:
Today:
Recent Blog Posts
Four Iranian Hackers Charged With Cyberattacks On American Firms
April 25, 2024
An Ex-Amazon Security Engineer Gets 3 Years In Jail For Hacking And Crypto Theft
April 18, 2024
Hacker Fakes His Own Death To Avoid Child Support Payments
April 11, 2024
ATM Skimming Ring Leader Sentenced To 75 Months In Prison
April 4, 2024
German Authorities Dismantle the Nemezis Market Dark Web Marketplace
March 28, 2024
Stay in Touch

Get exclusive updates and invitations to our events and webinars:


Your data will stay confidential Private and Confidential

ImmuniWeb Launches Free Website Security and PCI DSS Compliance Test

April 29, 2019

The non-intrusive online test quickly assesses relevant PCI DSS requirements, verifies CMS security and runs a privacy check.


ImmuniWeb Launches Free Website Security and PCI DSS Compliance Test

ImmuniWeb, a global provider of web, mobile and API security testing and risk ratings, now expands its free community offering with a website security test. It is initially designed for SMEs and organizations with nascent application security testing programs. Large organizations with mature DevSecOps programs can also benefit from the service to quickly run hundreds of daily scans ensuring essential security and compliance of their external web applications.

Once launched, the test will:

  • Verify PCI DSS requirements 6.2, 6.5 and 6.6.
  • Fingerprint versions of over 100 most popular CMS, web frameworks and over 165,000 of their plugins.
  • Run a comprehensive vulnerability check for all known vulnerabilities in the fingerprinted software.
  • Check over 20 HTTP headers related to security, encryption or privacy for strong configurations in line with industry best practices, including ones from OWASP.
  • Assess Content Security Policy (CSP) to prevent some XSS and CSRF exploitation vectors, as well as variations of ransomware and Cryptojacking attacks.

So far, among almost 40 million public websites tested, only 9.74% contain up2date software, 2.07% satisfy the aforementioned PCI DSS requirements, and as few as 2.39% are protected with a WAF.

Ilia Kolochenko, CEO and Founder or ImmuniWeb, says: “Our free community offering enables our company to maintain sustainable relations with the community, get valuable feedback and actionable data on the global state of application security. We are excited to see a steadily growing number of users, many of whom later become commercial customers for our ImmuniWeb® AI offering.

The website security test is now also integrated with the freemium ImmuniWeb® Discovery offering based on OSINT technology for non-intrusive discovery of an organization’s external attack surface. ImmuniWeb Discovery quickly builds a comprehensive inventory of an organization’s external web, mobile and cloud assets, providing an ultimate asset visibility to organizations of all sizes.

This website uses cookies to provide you with a better surfing experience. To learn more, please visit our Privacy Policy. By continuing to use this website you consent to our use of cookies.

Book a Call Ask a Question
Close
Talk to ImmuniWeb Experts
ImmuniWeb AI Platform
Have a technical question?

Our security experts will answer within
one business day. No obligations.

Have a sales question?
Email:
Tel: +41 22 560 6800 (Switzerland)
Tel: +1 720 605 9147 (USA)
*
*
*
Your data will stay private and confidential