If you were talking to someone whose organization is considering Netsparker Web Application Security Scanner, what would you say?
How would you rate it and why? Any other tips or advice?
I would recommend this solution. I haven't really researched other products, but for me, Netsparker Web Application Security Scanner is a benchmark right now. I would rate Netsparker Web Application Security Scanner an eight out of ten.
Overall, I am satisfied with Netsparker. However, I cannot say at this point that I would recommend it because although it is good, I will now be using it as a benchmark for evaluating other products. I would rate this solution an eight out of ten.
This is not a simple solution, there is a complexity there. A lot of companies here don't like the idea of using a cloud provider or cloud application for scanning. We prefer to have stand-alone applications and not use the cloud. It's something they could offer, like Qualys. I would rate this solution an eight out of 10.
We're using a demo of the latest version for a POC. We used the on-premises deployment model. I'd recommend Netsparker for anyone who wants to make a security assessment for web applications. I'd rate the solution nine out of ten. The tool is full of useful features. However, the intercepting reviews in terms of web requests need some enhancements to be more usable.
There are many average products on the market, but I prefer Netsparker because to me wasting time after false positives is the worst thing that can happen. Accuracy is the most important thing to me. I rate Netsparker eight out of ten.
You can use Netsparker but use it carefully as some payloads can be dangerous in production. This is the same as Acunetix, WebInspect, and others. Every scanner should have an option like Burp Suite to use dangerless payloads (with Distribute Damage extension).
I rate it at nine out of 10 because, although I have used many web application scanners by now, Netsparker gives the fewest false-positives. That's the most important property for a web application scanner. When you buy a web application scanner, you actually pay for two features: non false-positive detection, and attack diversity. Other features affect the quality of a product. So, Netsparker deserves a nine.
What do you like most about Netsparker Web Application Security Scanner?
Thanks for sharing your thoughts with the community!
Let the community know what you think. Share your opinions now!