Invicti's unique Proof-based ScanningTM technology provides proof for vulnerabilities. It does this by crawling and attacking your web application to identify vulnerabilities and issues, then dynamically exploiting suspected vulnerabilities in a safe and read-only way. This exploitation process results in demonstrable proof that an identified web application vulnerability exists and can be exploited.
Invicti extracts proof of exploitation using the following methods:
- SQL Injection
- Boolean SQL Injection
- Blind SQL Injection
- Remote File Inclusion (RFI)
- Command Injection
- Blind Command Injection
- XML External Entity (XXE) Injection
- Remote Code Evaluation
- Local File Inclusion (LFI)
- Server-side Template Injection
- Remote Code Execution
- Injection via Local File Inclusion
While Invicti Standard is scanning your web application, you can view Proofs via the Sitemap and Issue panels by clicking on relevant vulnerabilities.
You can also access this critical information in the Knowledge Base panel, rather than clicking on issues to view the relevant proof. In the panel, you can access proofs such as Identified Database Version, Identified Database Name, and Identified Database User.
This data could contain the username and database name for a SQL Injection, or the content of a file for a local file injection for example. From the Proofs node, you can discover how much potentially sensitive information the scanner was able to extract automatically for demonstration purposes.
Invicti forms Knowledge Base nodes on its findings. If the Proofs node is not listed, it means that Invicti did not create any.
For further information, see Knowledge Base Nodes.
How to View the Proofs Node in Invicti Enterprise
- Log in to Invicti Enterprise.
- From the main menu, click Scans, then Recent Scans. The Recent Scans window is displayed.
- Next to the relevant website, click Report.
- From the Technical Report section, click the Knowledge Base tab.
- Click the Proofs node. The information is displayed in a Proofs tab.
How to View the Proofs Node in Invicti Standard
- Open Invicti Standard
- Start a Scan or open a previously saved scan.
- The Knowledge Base is displayed on the right of the Scan Summary Dashboard. (If it is hidden, display it again using the Knowledge Base icon on the View tab on the ribbon. Alternatively, click the Reset Layout icon on the View tab, then close the Activity/Progress/Logs panes to give maximum viewing space.)
- Ensure that the Knowledge Base Viewer is also displayed. (If it is hidden, you can display it again using the Knowledge Base Viewer button on the View tab. You may also want to close the Activity/Progress/Logs panes.)
- Click the Proofs node in the Knowledge Base. All detected Proofs are displayed in the Knowledge Base Viewer.