VTMScan- Protect your Website with ESDS VTMScan
                     VTMScan
(Malware, Threat, Vulnerability Scanner) 0
Enterprise Class Security Scanner
https://www.esds.co.in
Agenda
01 About Scanning tools
02 VTMScan Flow
03 VTMScan Product Features
04 VTMScan Portal
05 VTMScan Report
https://www.esds.co.in
About Scanning tools
Web application scanner 
Performs vulnerability assessment of web applications
It is SAAS, agentless scanner
OWASP Top 10 Vulnerabilities
Manual Security Audit
Provides report with recommendation
https://www.esds.co.in
User VTMScan Flow
Domain Reputation Banner Grabbing
       Main Domain Link Crawling        Port Scanning
       External Domain         SSL Check 
       Reverse IP         WAF Detection
        OS Detection
OWASP Audit
CMS Detection Malware Scan Content Phishing         SQLi Detection
        WordPress        Page Defacement Change         XSS DetectionDetection
        Joomla        JS Codes/Functions         Insecure Deserialization
        Drupal        JS Obfuscation
Monitoring         Click Jacking
        vBulletine        Third Party Link check         Security Misconfiguration
Reports
https://www.esds.co.in
VTMScan Product Features
Domain 
Reputation
PORT scan
Security 
Misconfiguration
XSS
SQL injection
Phishing 
Detection 
Cross Site Malware Scan
Scripting 
https://www.esds.co.in
OS Detection
VTMScan 
Product 
Features
File
Serialization Deserialization 
Stream Stream 
OBJECT OBJECT
of Bytes of Bytes
Insecure Deserialization 
https://www.esds.co.in
VTMScan Product Features
05
SSL Scan CMS Scan
.03
01
Content Change SSL
Monitoring
02 04
WAF Detection Banner Grabbing
.
https://www.esds.co.in
VTMScan Product Features
Domain Reputation
Checks domain reputation in Google , SURBL , 
Malware Patrol , clean MX, Phish Tank
Domain mail server IP check in 58 Real time Black hole 
 list and DNS based black hole list 
PORT scan
Checks for Open ports on the server and 
services running on it.
An open port could be potentially a threat to the  
server if not properly managed
SQL injection
Support for multiple DBMSs, including MySQL, Oracle, 
PostgreSQL, Microsoft SQL Server, Microsoft Access, 
IBM DB2, SQLite, Firebird and SAP MaxDB‘
Checks for poorly filtered or in-correct escaped SQL 
queries into parsing variable data received from user 
input https://www.esds.co.in
VTMScan Product Features
Protect your customers and safeguard your Web 
application with VTMScan Phishing
Find similar looking domains that adversaries can 
use to attack you. 
Malware Scan Can detect typosquatters, phishing attacks, fraud and corporate espionage. 
Corporate intelligence & Punycode phishing attack 
detection 3
VTMscan takes in your domain name as a seed, 
generates a list of potential phishing domains and 
then checks to see if they are registered
Additionally it can test if the mail server from MX Cross Site Scripting 
1 record can be used to intercept misdirected 
corporate e-mails and it can generate fuzzy hashes 
of the web pages to see if they are live phishing XSS enables attackers to inject 
sites. client side scripts into web pages 
Scans for Page defacement and viewed by others  
JavaScript's codes against generic Scans each and every form in the 
signatures webpages and scans for GET and 
Special algorithm developed to detect POST request to detect XSS
JavaScript Obfuscation 2
Third party links found in page are 
checked in Google malware database
Phishing Detection 
https://www.esds.co.in
VTMScan Product Features
We look for Deserialization Vulnerabilities in multiple java frameworks, platforms and applications (e.g. 
Jenkins , Seam Framework, RMI over HTTP, Remote, Java Server Faces - JSF)
We check Deserialization Vulnerabilities in Servlet , Apache Struts2 , JBoss Application ,Jmx-console, admin-
console, web-console, JMXInvokerServlet
File
Serialization Desearlization 
Stream Stream 
OBJECT OBJECT
of Bytes of Bytes
Insecure Desearlization
https://www.esds.co.in
VTMScan Product Features
Security Misconfiguration
Automatically detects  CMS (word press, 3
Joomla, etc. )
Scans all themes , Plugins, Unprotected 
admin area 
File path disclosure scanning SSL Scan
Checks Authenticity of SSL Certificate
Checks if algorithm used in SSL are weak 
Check for misconfigured HTTP security or not
headers Check poodle, heartbleed, DRWON, 
Check for http flag secure, trace method Beast, Logjam etc.
enabled Detects if SSL Certificate is expired
Check for directory indexing & access
2
CMS Scan
VTMScan Product Features
Checks Operating system and its 
version of Web Server
Verifies OS and its version with 
Vulnerability database
Reports if Vulnerability present on 
detected OS Version
OS 
Detection
https://www.esds.co.in
VTMScan Product Features
WAF Detection
Creates a snapshot of current state of 3
your website
Compares each time current state of 
website with snapshot and informs if 
any changes are observed on website Banner Grabbing
Finds all possible information 
regarding website.
Detects if website is protected by Web Finds sub domains 
Application Firewall Finds webserver information.
Sends malicious payloads to website 
and checks if any defense mechanism is 
used by website which is blocking or 
filtering requests 2
Content Change Monitoring
https://www.esds.co.in
VTMScan Portal- Home
Scan 
Grid
Upcoming Last
Scans Scans
Closed
Queued Domains
Scans
https://www.esds.co.in
VTMScan Portal- Adding and Editing Domain
List of 
scanned 
website
Details of 
scanned 
website
https://www.esds.co.in
VTMScan Portal -Troubleshoot using Ping
Enter hostname/IP 
and submit to check 
if website is live & 
active.
Example: esds.co.in
https://www.esds.co.in
VTMScan Portal– Troubleshoot using Telnet
Enter hostname/IP 
with port number and 
submit to check if 
website is live & 
active.
Example: esds.co.in  
80
https://www.esds.co.in
VTMScan Portal– Adding and Editing Domain
Enter hostname  to 
check if website is 
live & active by 
checking page status.
Example: esds.co.in
https://www.esds.co.in
VTMScan Portal– Reports
Click here to 
Cgliectk  dheetraeil  to 
greet pdoertta ailb out 
rethpeo rwt aebosiutet  
thsec awnebsite 
scan
Short Description 
about 
vulnerabilities type 
and links affected 
by it.
https://www.esds.co.in
VTMScan Portal– Scan Info
Scan short 
summary
Vulnerabilities 
and its 
severity
Export 
Scan 
Details of Report
scanned 
website
https://www.esds.co.in
VTMScan Portal – Scan Info
SOCIAL MEDIA
Types of Reports
URL Report: Report 
Scan Report : 
containing full list of 
Complete Report 
websites
without 
recommendations Content Change Report: 
Scan Report with Report containing CCM 
Brief Scan Report: 
Recommendations results.
Report containing only 
Complete Report 
vulnerability count https://www.esds.co.in
VTMScan Portal – Banner Grabbing Report
Domain 
reputation in 
Top RBL’s
OS 
Detection
Open ports and 
services running 
on it
https://www.esds.co.in
VTMScan Portal – Flag Set Detection Report
Detects 
HTTPOnly 
Flag  set status 
https://www.esds.co.in
VTMScan Portal – Sensitive URL’s Report
Lists 
Admin/Login 
Pages/ sensitive 
URL’s/ Directory 
Access
https://www.esds.co.in
VTMScan Portal – OWASP Audit Report
Attack type, 
affected URL 
and alert 
OWASP generated
Attack types
https://www.esds.co.in
VTMScan Portal – Page Vulnerability Scan Report
Detects Sensitive 
data exposure, 
shell found, 
unsecure view 
state found
https://www.esds.co.in
VTMScan Portal –  Content Change Monitoring Report
Shows individual Click here to 
links and amount of get detailed 
content change in Report on 
percentage content change
https://www.esds.co.in
VTMScan Portal –  Content Change Monitoring Report
Actual Changed 
website Website
page page
Red indicates 
where the 
changes are 
observed
https://www.esds.co.in
Thank You