Compare Netsparker Web Application Security Scanner vs. Rapid7 InsightAppSec

Netsparker Web Application Security Scanner is ranked 9th in Application Security Testing (AST) with 6 reviews while Rapid7 InsightAppSec is ranked 15th in Application Security Testing (AST) with 1 review. Netsparker Web Application Security Scanner is rated 8.6, while Rapid7 InsightAppSec is rated 9.0. The top reviewer of Netsparker Web Application Security Scanner writes "Powerful Crawler generates close to a full sitemap, including web services". On the other hand, the top reviewer of Rapid7 InsightAppSec writes "It integrates well with the rest of my systems". Netsparker Web Application Security Scanner is most compared with Acunetix Vulnerability Scanner, OWASP Zap and HCL AppScan, whereas Rapid7 InsightAppSec is most compared with Rapid7 AppSpider, Veracode and OWASP Zap.
Cancel
You must select at least 2 products to compare!
Most Helpful Review
Find out what your peers are saying about Veracode, Checkmarx, Micro Focus and others in Application Security Testing (AST). Updated: November 2019.
378,809 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
The most attractive feature was the reporting review tool. The reporting review was very impressive and produced very fruitful reports.One of the features I like about this program is the low number of false positives and the support it offers.It correctly parses DOM and JS and has really good support for URL Rewrite rules, which is important for today's websites.Crawling feature: Netsparker has very detail crawling steps and mechanisms. This feature expands the attack surface.Attacking feature: Actually, attacking is not a solo feature. It contains many attack engines, Hawk, and many properties. But Netsparker's attacking mechanism is very flexible. This increases the vulnerability detection rate. Also, Netsparker made the Hawk for real-time interactive command-line-based exploit testing. It's very valuable for a vulnerability scanner.When we try to manually exploit the vulnerabilities, it often takes time to realize what's going on and what needs to be done.The scanner is light on the network and does not impact the network when scans are running.

Read more »

We have seen measurable decrease in the mean time to respond to threats by 20 percent.

Read more »

Cons
The proxy review, the use report views, the current use tool and the subset requests need some improvement. It was hard to understand how to use them.Netsparker doesn't provide the source code of the static application security testing.The scanner itself should be improved because it is a little bit slow.The custom attack preparation screen might be improved.It would be better for listing and attacking Java-based web applications to exploit vulnerabilities.The higher level vulnerabilities like Cross-Site Scripting, SQL Injection, and other higher level injection attacks are difficult to highlight using Netsparker.

Read more »

I would like more details of what the product can do.

Read more »

Pricing and Cost Advice
The price should be 20% lowerI think that price it too high, like other Security applications such as Acunetix, WebInspect, and so on.We never had any issues with the licensing; the price was within our assigned limits.

Read more »

Information Not Available
report
Use our free recommendation engine to learn which Application Security Testing (AST) solutions are best for your needs.
378,809 professionals have used our research since 2012.
Ranking
Views
3,144
Comparisons
2,219
Reviews
5
Average Words per Review
430
Avg. Rating
8.4
Views
875
Comparisons
550
Reviews
1
Average Words per Review
294
Avg. Rating
9.0
Top Comparisons
Compared 17% of the time.
Compared 12% of the time.
Also Known As
Mavituna NetsparkerInsightAppSec
Learn
Netsparker
Rapid7
Overview

Netsparker finds and reports web application vulnerabilities such as SQL Injection and Cross-site Scripting (XSS) on all types of web applications, regardless of the platform and technology they are built with. Netsparker's unique and dead accurate Proof-Based scanning technology does not just report vulnerabilities, it also produces a Proof of Concept to confirm they are not false positives, freeing you from having to double check the identified vulnerabilities.

Your web applications may be complex, but your application security testing tool doesn’t need to be. InsightAppSec brings Rapid7’s proven Dynamic Application Security Testing (DAST) technology to the Insight platform, combining powerful application crawling and attack capabilities, flexibility in scan scope and scheduling, and accuracy in results with a modern UI, intuitive workflows, and sensible data organization. This enables you to identify XSS, SQL injection, CSRF, and other vulnerabilities with unparalleled ease. The best part? All of these capabilities are delivered via the cloud so that you’re up and running in minutes to identify the critical security risks that exist in your applications.

Offer
Learn more about Netsparker Web Application Security Scanner
Learn more about Rapid7 InsightAppSec
Sample Customers
Samsung, The Walt Disney Company, T-Systems, ING Bank
Information Not Available
Top Industries
VISITORS READING REVIEWS
Software R&D Company44%
K 12 Educational Company Or School12%
Retailer10%
Comms Service Provider8%
VISITORS READING REVIEWS
Software R&D Company40%
Comms Service Provider28%
Hospitality Company6%
Non Profit4%
Find out what your peers are saying about Veracode, Checkmarx, Micro Focus and others in Application Security Testing (AST). Updated: November 2019.
378,809 professionals have used our research since 2012.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Sign Up with Email