/
Using the Barracuda WAF-as-a-Service Website Vulnerability Scanner

Using the Barracuda WAF-as-a-Service Website Vulnerability Scanner

The Barracuda WAF-as-a-Service now integrates Website Vulnerability Scanner, enabling users to scan applications and services to identify vulnerabilities within the application.

Key capabilities:

When you initiate a scan with the Website Vulnerability Scanner, the system:

  • Uses attack vectors to detect common weaknesses and security vulnerabilities within the application.

  • Performs a set of 41 comprehensive checks, including inspection of response header values and cookie settings, to determine whether the site can be exploited.

  • Generates a detailed report outlining the findings, highlighting identified risks, and providing clear remediation recommendations.

This integration significantly enhances application protection by proactively identifying and addressing potential threats before they can be exploited.

Scanning your website

To start your free scan, do the following:

  1. Visit Barracuda WAF-as-a-Service Website Vulnerability Scanner.

  2. Enter your domain name and click Start scan.

    Scan_your_Website.png

The tool will thoroughly analyze your site and generate a comprehensive report.

Report Overview

Summary

This section provides:

  • An overall security health rating showing if your application is Poor, Bad, Average, Good, or Excellent.

  • The total number of vulnerabilities found, along with a bar chart that breaks them down by severity (High, Medium, Low, Info).

  • The top five risks detected on your site, including their severity and the assessment details from WAF-as-a-Service.

    • Click View details to view the assessment performed and assessment outcome information.

      Summary.png



      Vulnerability_Details.png

       

Vulnerabilities

Provides a list of the specific attacks your website may be exposed to.

Vulnerabilities.png

Click View details to know why the configuration is vulnerable to exploitation.

Details.png
Secure Configuration

Details of the security checks your site passed, showing which components are properly configured.

Secure_Configuration.png

Click View details to see why the Barracuda WAF-as-a-Service has identified a specific configuration as safe for your website.

Secure_Config_Details.png
Subdomains

Provides a list of subdomains linked to the scanned domain.

We value your feedback.
If you have questions, suggestions, or feedback on our documentation, contact the Campus Product Documentation team.
For general product inquiries or technical support, please contact the global Barracuda Support team.