Netsparker Web Application Security Scanner Pros and Cons

Netsparker Web Application Security Scanner Pros

Ivan Biagi
Security Specialist at Alfa-A IT
It correctly parses DOM and JS and has really good support for URL Rewrite rules, which is important for today's websites.
View full review »
reviewer1286490
Consultant Cyber Security at a tech services company with 51-200 employees
I am impressed by the whole technology that they are using in this solution. It is really fast. When using netscan, the confirmation that it gives on the vulnerabilities is pretty cool. It is really easy to configure a scan in Netsparker Web Application Security Scanner. It is also really easy to deploy.
View full review »
Paolo Da Ros
Founding Partner at da ros e associati srl
One of the features I like about this program is the low number of false positives and the support it offers.
View full review »
Find out what your peers are saying about Netsparker, Acunetix, PortSwigger and others in Application Security. Updated: September 2020.
441,672 professionals have used our research since 2012.
reviewer1286490
Consultant Cyber Security at a tech services company with 51-200 employees
This tool is really fast and the information that they provide on vulnerabilities is pretty good.
View full review »
AhmedS. Younis
Retail Services Senior Manager at e-finance
High level of accuracy and quick scanning.
View full review »
reviewer1188708
Senior Quality Control Manager at a insurance company with 51-200 employees
The most attractive feature was the reporting review tool. The reporting review was very impressive and produced very fruitful reports.
View full review »

Netsparker Web Application Security Scanner Cons

Ivan Biagi
Security Specialist at Alfa-A IT
The scanner itself should be improved because it is a little bit slow.
View full review »
reviewer1286490
Consultant Cyber Security at a tech services company with 51-200 employees
They don't really provide the proof of concept up to the level that we need in our organization. We are a consultancy firm, and we provide consultancy for the implementation and deployment solutions to our customers. When you run the scans and the scan is completed, it only shows the proof of exploit, which really doesn't work because the tool is running the scan and exploiting on the read-only form. You don't really know whether it is actually giving the proof of exploit. We cannot prove it manually to a customer that the exploit is genuine. It is really hard to perform it manually and prove it to the concerned development, remediation, and security teams. It is currently missing the static application security part of the application security, especially web application security. It would be really cool if they can integrate a SAS tool with their dynamic one.
View full review »
Paolo Da Ros
Founding Partner at da ros e associati srl
Netsparker doesn't provide the source code of the static application security testing.
View full review »
Find out what your peers are saying about Netsparker, Acunetix, PortSwigger and others in Application Security. Updated: September 2020.
441,672 professionals have used our research since 2012.
reviewer1286490
Consultant Cyber Security at a tech services company with 51-200 employees
Right now, they are missing the static application security part, especially web application security.
View full review »
reviewer1188708
Senior Quality Control Manager at a insurance company with 51-200 employees
The proxy review, the use report views, the current use tool and the subset requests need some improvement. It was hard to understand how to use them.
View full review »
Find out what your peers are saying about Netsparker, Acunetix, PortSwigger and others in Application Security. Updated: September 2020.
441,672 professionals have used our research since 2012.