Netsparker Web Application Security Scanner Valuable Features

Ivan Biagi
Security Specialist at a tech consulting company with 1-10 employees
The most valuable feature is the crawler because it can found many links and generate close to a full sitemap. It correctly parses DOM and JS and has really good support for URL Rewrite rules, which is important for today's websites. It also parses web services like SOAP, REST API, WSDL, and more. Another thing I really like about Netsparker is the payload list that covers, including every type of vulnerability. Netsparker Hawk is another good "tool", as it helped me locate some easy-to-find SSRF and XXE vulnerabilities in production websites. Its technology is really good and works well. OOB (Out Of Band) payloads work well. View full review »
Lav Thaiba
Software Quality Assurance Engineer at ITONICS GmbH
I like the way it provides the comprehensive result explaining the vulnerabilities which have been found along with how we can exploit those vulnerabilities with an example. View full review »
Paolo Da Ros
Founding Partner at da ros e associati srl
One of the features I like about this program is the low number of false positives and the support it offers. View full review »
Find out what your peers are saying about Netsparker, Acunetix, PortSwigger and others in Application Security. Updated: November 2019.
384,324 professionals have used our research since 2012.
reviewer1188708
Senior Quality Control Manager at a insurance company with 51-200 employees
The most attractive feature was the reporting review tool. The reporting review was very impressive and produced very fruitful reports. View full review »
Nur Yesilyurt
Attack Developer at a tech vendor
Netsparker offers some pretty features: * Crawling feature: Netsparker has very detail crawling steps and mechanisms. This feature expands the attack surface. * Attacking feature: Actually, attacking is not a solo feature. It contains many attack engines, Hawk, and many properties. But Netsparker's attacking mechanism is very flexible. This increases the vulnerability detection rate. Also, Netsparker made the Hawk for real-time interactive command-line-based exploit testing. It's very valuable for a vulnerability scanner. * A very useful API for automating the scans. View full review »
Find out what your peers are saying about Netsparker, Acunetix, PortSwigger and others in Application Security. Updated: November 2019.
384,324 professionals have used our research since 2012.
Sign Up with Email