Arachni differentiates between /notfound.aspx and //notfound.aspx

Created by: virilefool

Try running a scan on demo.testfire.net

You'll get:

[2] Cross-Site Scripting (XSS) ( Severity: High ) In link input aspxerrorpath using GET at http://demo.testfire.net/notfound.aspx

[3] Cross-Site Scripting (XSS) ( Severity: High ) In link input aspxerrorpath using GET at http://demo.testfire.net//notfound.aspx