Netsparker Web Application Security Scanner Reviews

Filter by:Reset all filters
industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
rating
Loading...
Filter Unavailable
Ivan Biagi
Real User
Security Specialist at a tech consulting company with 1-10 employees
Jul 15 2019

What is most valuable?

The most valuable feature is the crawler because it can found many links and generate close to a full sitemap. It correctly parses DOM and JS and has really good support… more»

How has it helped my organization?

Netsparker has done an awesome job with its crawler, as it has found all of the links (also thanks to its good DOM parser). It has helped me a great deal on a first try… more»

What needs improvement?

The scanner itself should be improved because it is a little bit slow. CPU usage should be improved due to my PC's fan going mad. RAM usage also should be improved as… more»

What's my experience with pricing, setup cost, and licensing?

I think that price it too high, like other Security applications such as Acunetix, WebInspect, and so on.

If you previously used a different solution, which one did you use and why did you switch?

I have used Burp Suite Professional and Acunetix. I switched to Netsparker just to try it and understand how it works.

What other advice do I have?

You can use Netsparker but use it carefully as some payloads can be dangerous in production. This is the same as Acunetix, WebInspect, and others. Every scanner should… more»

Which other solutions did I evaluate?

I did not evaluate other options.
Lav Thaiba
Real User
Software Quality Assurance Engineer at ITONICS GmbH
Dec 18 2017

What is most valuable?

I like the way it provides the comprehensive result explaining the vulnerabilities which have been found along with how we can exploit those vulnerabilities with an… more»

How has it helped my organization?

When we try to manually exploit the vulnerabilities, it often takes time to realize what's going on and what needs to be done. With this wonderful tool, we can easily… more»

What needs improvement?

When scanning a large web-based application, it tends to process slow and takes a long time especially on crawling and attacking part. Would be better if that part would… more»

What's my experience with pricing, setup cost, and licensing?

I would definitely recommend to those who really want to know in-depth details of their applications/products regarding the security of their web system.

If you previously used a different solution, which one did you use and why did you switch?

Yes, I have used Acunetix, and the reason I switched to Netsparker would be: The performance I found on Acunetix was very slow. It would take like a day if I had to scan… more»

What other advice do I have?

Like I wrote earlier, I would highly recommend implementing this product to those who really care about the vulnerabilities and security of their products/applications.

Which other solutions did I evaluate?

No, I haven't.
Find out what your peers are saying about Netsparker, Acunetix, PortSwigger and others in Application Security. Updated: October 2019.
371,639 professionals have used our research since 2012.
Ssaurabh Kesari
Consultant
Ex Senior Security Analyst and Onsite consultant at a tech services company with 1,001-5,000 employees
Dec 11 2017

What is most valuable?

The scanner is light on the network and does not impact the network when scans are running. It is very efficient in highlighting medium-low vulnerabilities. These… more»

How has it helped my organization?

It was very effective to highlight the low and medium level vulnerabilities which are generally easy to miss out.In certain cases we observed that high-level… more»

What needs improvement?

The higher level vulnerabilities like Cross-Site Scripting, SQL Injection, and other higher level injection attacks are difficult to highlight using Netsparker.

What's my experience with pricing, setup cost, and licensing?

In our organization, we had a separate team which looked after the pricing and licensing policies. However, we never had any issues with the licensing; the price was… more»

If you previously used a different solution, which one did you use and why did you switch?

Since the time I am associated to this company, we have constantly used Netsparker as one of our tools.

What other advice do I have?

It is a highly scalable and multi-user platform. You need to ensure that you have a virtual machine connected over to the internet for most of the system, as there are… more»

Which other solutions did I evaluate?

We do use other different products to confirm our results namely Burp Suite, Nessus, Qualys Inc. etc. Each product is used for the different stages of testing.
Paolo Da Ros
Real User
Founding Partner at da ros e associati srl
Aug 21 2019

What is most valuable?

One of the features I like about this program is the low number of false positives and the support it offers.

What needs improvement?

The program uses technology that is different from application scanners. It's not an incremental solution. It could be a new product, but I'm not that knowledgeable to know which products are part of a suite. Netsparker doesn't provide the source code of the static application security testing. I would love to see a completion of the offering with statistical analysis. Every customer has its own… more»

What other advice do I have?

There are many average products on the market, but I prefer Netsparker because to me wasting time after false positives is the worst thing that can happen. Accuracy is the most important thing to me. I rate Netsparker eight out of ten.
Nur Yesilyurt
Real User
Attack Developer at a tech vendor
Aug 31 2018

What is most valuable?

Netsparker offers some pretty features: * Crawling feature: Netsparker has very detail crawling steps and mechanisms. This feature expands the attack surface. * Attacking feature: Actually, attacking is not a solo feature. It contains many attack engines, Hawk, and many properties. But Netsparker's… more»

How has it helped my organization?

Because the company has many web applications, we had to automate scans. I wrote a batch script with the Netsparker API. This made it easy for my jobs.

What needs improvement?

Perhaps the custom attack preparation screen might be improved. Also, they can implement mobile penetration testing support for manual and automated tests.

What other advice do I have?

I rate it at nine out of 10 because, although I have used many web application scanners by now, Netsparker gives the fewest false-positives. That's the most important property for a web application scanner. When you buy a web application scanner, you actually pay for two features: non false-positive… more»

Articles

User Assessments By Topic About Netsparker Web Application Security Scanner

Find out what your peers are saying about Netsparker, Acunetix, PortSwigger and others in Application Security. Updated: October 2019.
371,639 professionals have used our research since 2012.

Netsparker Web Application Security Scanner Questions

What is Netsparker Web Application Security Scanner?

Netsparker finds and reports web application vulnerabilities such as SQL Injection and Cross-site Scripting (XSS) on all types of web applications, regardless of the platform and technology they are built with. Netsparker's unique and dead accurate Proof-Based scanning technology does not just report vulnerabilities, it also produces a Proof of Concept to confirm they are not false positives, freeing you from having to double check the identified vulnerabilities.

Also known as
Mavituna Netsparker
Netsparker Web Application Security Scanner customers

Samsung, The Walt Disney Company, T-Systems, ING Bank

Read Archived Reviews
Sign Up with Email