Netsparker

Netsparker Security Scanner


4.5 / 5
8 reviews

Who Uses This Software?

Businesses that use web application (including web services & APIs) should use Netsparker to ensure they are secure. Thanks to its unique automation Netsparker focuses on helping large enterprises.


Average Ratings

8 Reviews

  • 4.5 / 5
    Overall

  • 4 / 5
    Ease of Use

  • 4.5 / 5
    Customer Service

Product Details

  • Starting Price
    $1,950.00/year
  • Pricing Details
    Desktop licensing is per seat and Cloud licensing is per target website.
  • Deployment
    Cloud, SaaS, Web
    Installed - Windows
  • Training
    Documentation
    Webinars
    Live Online
  • Support
    Online
    Business Hours

Vendor Details

  • Netsparker
  • www.netsparker.com
  • Founded 2006
  • United Kingdom

About Netsparker Security Scanner

Netsparker Security Scanner is an accurate solution that automatically identifies XSS, SQL Injection and other vulnerabilities in web applications. Netsparker's unique Proof-Based Scanning Technology allows you to allocate more time to fix the reported flaws by automatically exploiting the identified vulnerabilities in a read-only and safe way, and also produces a proof of exploitation. Therefore you can immediately see the impact of the vulnerability and do not have to manually verify it.


Netsparker Security Scanner Features

  • AI / Machine Learning
  • Behavioral Analytics
  • Endpoint Management
  • Incident Management
  • IOC Verification
  • Tokenization
  • Vulnerability Scanning
  • Whitelisting / Blacklisting
  • Anti Spam
  • Anti Virus
  • Audit Trail
  • Compliance Management
  • Database Security Audit
  • File Access Control
  • Financial Data Protection
  • Maintenance Scheduling
  • Real Time Monitoring
  • Security Event Log
  • Virus Definition Update
  • Vulnerability Protection
  • Asset Discovery
  • Asset Tagging
  • Network Scanning
  • Patch Management
  • Policy Management
  • Prioritization
  • Risk Management
  • Vulnerability Assessment
  • Web Scanning

Netsparker Security Scanner Reviews Recently Reviewed!


Too much money for a third rate product

Sep 12, 2018
3/5
Overall

1 / 5
Ease of Use

2 / 5
Features & Functionality

3 / 5
Customer Support

1 / 5
Value for Money
Likelihood to Recommend: 2.0/10 Not
Likely
Extremely
Likely

Pros: Netsparker comes with an automation API so it is possible to include it as part of a Continuous Integration / Continuous Deployment (CI/CD) system. It usually works but not always.

Cons: There is almost no documentation about how to use the product. You are expected to open a support ticket and ask how to do some of simplest things and it usually take a day to get a response back from support. Often the response is, "We don't support that", or "We don't have a sample that does that". I one time asked for .Net Framework sample code to pull a report from Netsparker and the answer I got was "Go toe the GUI and select these buttons. The report will download." The problem was I needed to download the reports problematically. Other times I asked for .Net samples and was given Python code. They are the same, correct?

Overall: We are required to run weekly vulnerability scans on many of our production websites and we try to use Netsparker to do these scans. We can schedule when the scans will run and they usually do run. The problem is, if the scan has a problem it must be canceled, otherwise it will never finish and no report will ever be generated.

Vendor Response

by Netsparker on February 14, 2019

Hello,

Thank you for your feedback.

I am sorry to hear you have encountered such issues. Rest assured that this is not the norm, hence why I am personally reaching out to you.

We do have extensive product documentation (https://www.netsparker.com/support/) and we pride ourselves on giving excellent product support, as can be seen by the many testimonials and case studies we have published.

However sometimes things can go wrong. So can you please send me an email on mata@netsparker.com so I can personally look into this matter and iron out any issues there are, so you can benefit from our product.

Looking forward to hearing from you.

Mehmet ATA
Technical Support Manager

Web Application Scanning with Netsparker

Feb 20, 2019
5/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

5 / 5
Customer Support

4 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: The solution is rock-solid and provides detailed information about any vulnerabilities found within the web applications. The front end on the enterprise platform is very easy to use and has many integration points for a complete end-to-end solution for web application vulnerability management.

Cons: There is not much that I do not like about this software. The only aspect I do not like is the on-prem solution is not as easy to use as the enterprise version in comparison. But aside from that... this solution really does not have any cons!

Overall: Netsparker has been able to open our eyes to vulnerabilities as they exist in our web applications. The solution has been easy to set up websites to scan, provide scheduling scanning ability and many reporting solutions to ensure that vulnerability reporting can be easily conveyed to all areas of the business from compliance and executive level to the technical team.

Vendor Response

by Netsparker on February 26, 2019

Thank you so much for your positive feedback. We are very glad Netsparker is working so well for your organisation.

Continuous vulnerability scanning

Feb 26, 2019
5/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

5 / 5
Customer Support

5 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: UI is top-notch and easy to grok. It's highly efficient and customizable tool provide in depth reporting when you need it most. Support team is A+! Being able to generate multiple types of reports based on customer needs is quite useful.

Cons: Docs were a bit outdated or not easy to follow when we initially started using the product. Support has steadily been improving them and they look great now.

Overall: Stands out in the space as being one of the easier to use tools.

While OWASP ZAP is an excellent tool NetSparker takes the same principles to the next level and bundles it into an easy to use and highly valuable application security scanner SaaS!

Vendor Response

by Netsparker on February 28, 2019

Thank you for your positive feedback. We are glad that Support documentation is improving.

Simple, easy, accuracte scanner

Feb 20, 2019
5/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

4 / 5
Customer Support

4 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: Netsparker is easy to use, easy to configure, and you can be up and running your first scan in a matter of minutes. The scan results offer details on how to remediate the findings as well as what they did to find and validate the finding.

Cons: One main issues. I would like to be able to change a domain. If I have a license for two domains, I should be able to rotate them. If server1.com goes EoL and server2.com has taken its place, I have to buy another subscription. Not cool.

Overall: My overall experience has been positive. I would recommend the software to others and we will continue to use it. Just be ready to play some games with licenses if using the cloud version.

Vendor Response

by Netsparker on February 22, 2019

Thank you for your feedback! We are glad that Netsparker is working out for you. Should you need to change a domain, you may do so upon renewal by contacting Support.

Cybersecurity made easier

May 15, 2019
4/5
Overall

4 / 5
Ease of Use

3 / 5
Features & Functionality

4 / 5
Customer Support

4 / 5
Value for Money
Likelihood to Recommend: 9.0/10 Not
Likely
Extremely
Likely

Pros: While being easy to operate, it is flexible; offering diverse functions in vulnerability assessment from detecting basic vulnerabilities like out-of-date app versions to generating executive style reports of scan results.

Cons: It gets quite slow when testing for some vulnerabilities in larger URLs.

Overall: I started using Netsparker when I was a trainee at a cybersecurity firm, and still used it till when I was an associate consultant (I could attend to clients without supervision). This highlights its versatility and ease of use.

Vendor Response

by Netsparker on May 17, 2019

Thank you for your feedback. We are thrilled that Netsparker has proven so useful for so many years.

Great web application security scanner

Feb 19, 2019
5/5
Overall

5 / 5
Ease of Use

4 / 5
Features & Functionality

5 / 5
Customer Support

4 / 5
Value for Money
Likelihood to Recommend: 9.0/10 Not
Likely
Extremely
Likely

Pros: Netsparker helps harden my application by closing out vulnerabilities. We follow an agile development cycle, which includes performing frequent deployments. In the past, we have accidentally deployed vulnerable code, which was quickly fixed once Netsparker has flagged it.

Cons: Would be nice if the security scanner were to include scans to help harden the server and OS, but this seems to be strictly a web application scanner. I have to use a second product to scan the OS.

Vendor Response

by Netsparker on February 20, 2019

Thank you for your positive feedback. At present our plans are to focus on being the best web application scanner out there.

Best product for dynamic SPA

Feb 19, 2019
4/5
Overall

3 / 5
Ease of Use

5 / 5
Features & Functionality

5 / 5
Customer Support

4 / 5
Value for Money
Likelihood to Recommend: 9.0/10 Not
Likely
Extremely
Likely

Pros: It is able to scan dynamic single page apps without hours of brittle scripting. The issues it finds are described fully with a clear indication of certainty. Reporting is flexible.

Cons: They are not a well known vendor so we have to explain why we use Netsparker vs some of the better known vendors

Good, accurate scanner

Feb 22, 2019
5/5
Overall

5 / 5
Ease of Use

5 / 5
Features & Functionality

5 / 5
Customer Support

4 / 5
Value for Money
Likelihood to Recommend: 10.0/10 Not
Likely
Extremely
Likely

Pros: Easy to setup and get started. Offers on-prem capability linked to the cloud for scanning behind a firewall.

Cons: They moved away from being able to offer "packs" of scans where we could easily scan short lived sites. They only offer a subscription model intended for recurring scans.

Vendor Response

by Netsparker on February 26, 2019

Thank you for your positive feedback. We sincerely love having you as a Netsparker client.