The following web tests are performed during a web scan:
- Cross Site Scripting
- SQL Injection
- Source Disclosure
- PHP Code Injection
- UNIX Command Execution
- Windows Command Execution
- UNIX File Disclosure
- Windows File Disclosure
- Directory Disclosure
- Remote File Inclusion
- HTTP Header Injection
- AutoComplete Off
- Non-SSL Login
- Credit Card Information
- Missing X-Frame-Options Response
- HSTS Missing from HTTPS Server
- Java Native Code Execution
- Embedded Links Detection