Netsparker - Présentation
Description du logiciel Netsparker
Netsparker Security Scanner est un scanner de sécurité d'application web qui identifie automatiquement les XSS (script intersite), l'injection SQL et diverses autres vulnérabilités et failles de sécurité des sites, applications web et services web. Les POC sont générés afin de s'assurer qu'il ne s'agit pas de faux positifs, évitant ainsi aux utilisateurs de devoir revérifier les vulnérabilités. Netsparker détecte et génère des rapports concernant tous les types d'applications web, quelle que soit la plateforme ou technologie avec laquelle ils ont été conçus.
Netsparker Cloud propose des outils de flux de travail d'entreprise intégrés qui permettent aux utilisateurs de numériser simultanément entre 500 et 1 000 applications web. Les utilisateurs peuvent configurer chaque détail de l'analyse de sécurité, y compris les options d'attaque, les stratégies d'analyse, les options HTTP et d'authentification, les règles de réécriture d'URL, etc. L'API REST sur service web de la solution permet aux utilisateurs de déclencher des analyses de vulnérabilité web à distance et en toutes circonstances. Les entreprises peuvent également intégrer des analyses de sécurité automatisées dans leur environnement de développement et lancer des analyses de vulnérabilité à toutes les étapes du cycle de développement du logiciel.
Netsparker Cloud permet aux administrateurs d'ajouter plusieurs membres d'équipe comme utilisateurs et de leur attribuer des privilèges d'accès spécifiques afin de collaborer et de partager leurs découvertes avec toute l'équipe. Le tableau de bord permet aux utilisateurs de surveiller la sécurité de chaque application web, avec des rapports de tendances liés pour les aider à surveiller la productivité et la qualité du travail effectué par les développeurs.
Netsparker - Présentation
Prix
Types de licence
Netsparker - Fonctionnalités
Médias
Netsparker - Avis
Netsparker - Avis
Best software for Web Application Vulnerability Management
I use Netsparker as a Consultant for my clients. I'm very satisfied about the product and how this software help our client to check the security level of the web applications. We also help our clients to build a remediation plan (through the report of Netsparker is very easy and quick perform that task) and through Netsparker checks that all the remediations implemented are in place
Continuous vulnerability scanning
Stands out in the space as being one of the easier to use tools.
While OWASP ZAP is an excellent tool NetSparker takes the same principles to the next level and bundles it into an easy to use and highly valuable application security scanner SaaS!
Too much money for a third rate product
We are required to run weekly vulnerability scans on many of our production websites and we try to use Netsparker to do these scans. We can schedule when the scans will run and they usually do run. The problem is, if the scan has a problem it must be canceled, otherwise it will never finish and no report will ever be generated.
Web Application Scanning with Netsparker
My years of experience with Netsparker have been nothing but positive and I truly enjoy using this tool to assess our web applications.
Simple, easy, accuracte scanner
My overall experience has been positive. I would recommend the software to others and we will continue to use it. Just be ready to play some games with licenses if using the cloud version.
Comparatif des alternatives : note globale
Comparer avec les alternatives
Best software for Web Application Vulnerability Management
Avantages
I like Netsparker because is very easy to use, but at the same time has a lot of options that allow an expert user to customize the level of scanning. Also make authenticated scan is very easy (several options are available). Report templates are different and cover all your needs.
Inconvénients
When do concurrent scans it consumes a lot of resources.
Réponse de Netsparker
Thank you for your review of Netsparker, this is much appreciated. We are glad to hear the software satisfies your and your clients' needs.
Continuous vulnerability scanning
Stands out in the space as being one of the easier to use tools.
While OWASP ZAP is an excellent tool NetSparker takes the same principles to the next level and bundles it into an easy to use and highly valuable application security scanner SaaS!
Avantages
UI is top-notch and easy to grok. It's highly efficient and customizable tool provide in depth reporting when you need it most. Support team is A+! Being able to generate multiple types of reports based on customer needs is quite useful.
Inconvénients
Docs were a bit outdated or not easy to follow when we initially started using the product. Support has steadily been improving them and they look great now.
Réponse de Netsparker
Thank you for your positive feedback. We are glad that Support documentation is improving.
Too much money for a third rate product
We are required to run weekly vulnerability scans on many of our production websites and we try to use Netsparker to do these scans. We can schedule when the scans will run and they usually do run. The problem is, if the scan has a problem it must be canceled, otherwise it will never finish and no report will ever be generated.
Avantages
Netsparker comes with an automation API so it is possible to include it as part of a Continuous Integration / Continuous Deployment (CI/CD) system. It usually works but not always.
Inconvénients
There is almost no documentation about how to use the product. You are expected to open a support ticket and ask how to do some of simplest things and it usually take a day to get a response back from support. Often the response is, "We don't support that", or "We don't have a sample that does that". I one time asked for .Net Framework sample code to pull a report from Netsparker and the answer I got was "Go toe the GUI and select these buttons. The report will download." The problem was I needed to download the reports problematically. Other times I asked for .Net samples and was given Python code. They are the same, correct?
Réponse de Netsparker
Hello,
Thank you for your feedback.
I am sorry to hear you have encountered such issues. Rest assured that this is not the norm, hence why I am personally reaching out to you.
We do have extensive product documentation (https://www.netsparker.com/support/) and we pride ourselves on giving excellent product support, as can be seen by the many testimonials and case studies we have published.
However sometimes things can go wrong. So can you please send me an email on mata@netsparker.com so I can personally look into this matter and iron out any issues there are, so you can benefit from our product.
Looking forward to hearing from you.
Mehmet ATA
Technical Support Manager
Web Application Scanning with Netsparker
My years of experience with Netsparker have been nothing but positive and I truly enjoy using this tool to assess our web applications.
Avantages
The software is very easy to use yet has extreme amount of customization for scanning any web application.
Inconvénients
Without an intimate knowledge of the capability of the tool, you may miss out on truly reaping its benefits in deep scanning of web applications.
Simple, easy, accuracte scanner
My overall experience has been positive. I would recommend the software to others and we will continue to use it. Just be ready to play some games with licenses if using the cloud version.
Avantages
Netsparker is easy to use, easy to configure, and you can be up and running your first scan in a matter of minutes. The scan results offer details on how to remediate the findings as well as what they did to find and validate the finding.
Inconvénients
One main issues. I would like to be able to change a domain. If I have a license for two domains, I should be able to rotate them. If server1.com goes EoL and server2.com has taken its place, I have to buy another subscription. Not cool.
Réponse de Netsparker
Thank you for your feedback! We are glad that Netsparker is working out for you. Should you need to change a domain, you may do so upon renewal by contacting Support.
Comparatif des alternatives : recommandation utilisateur
Comparer avec les alternatives
Netsparker - Prix
Netsparker - Prix
Comparatif des alternatives : rapport qualité-prix
Comparer avec les alternatives
Netsparker - Fonctionnalités
Netsparker - Fonctionnalités
Comparatif des alternatives : note sur les fonctionnalités
Comparer avec les alternatives
Catégories
Catégories
Netsparker - FAQ
Netsparker - FAQ
Voici quelques-unes des questions fréquentes sur Netsparker.
Q. Quels sont les types de licence disponibles pour Netsparker ?
Types de licences disponibles pour Netsparker :
Type de licence: Abonnement
Essai gratuit: Disponible
Q. Quelles sont les principales fonctionnalités du logiciel Netsparker ?
Nous n'avons pas d'informations sur les fonctionnalités de Netsparker.
Q. Qui utilise Netsparker ?
Utilisateurs habituels du logiciel Netsparker :
Grandes entreprises
Q. Dans quelles langues Netsparker est-il disponible ?
Langues dans lesquelles Netsparker est disponible :
anglais
Q. Netsparker prend-il en charge les appareils mobiles ?
Nous n'avons pas d'informations sur les appareils pris en charge par Netsparker.
Q. Avec quelles applications Netsparker peut-il s'intégrer ?
Applications s'intégrant à Netsparker :
BambooHR, Centraleyezer, CircleCI, GitHub, GitLab, Microsoft Teams, Slack, ThreadFix, Zapier
Q. Quelles sont les ressources d'aide disponibles pour Netsparker ?
Ressources d'aide disponibles pour Netsparker :
Support téléphonique, Support en ligne
I use Netsparker as a Consultant for my clients. I'm very satisfied about the product and how this software help our client to check the security level of the web applications. We also help our clients to build a remediation plan (through the report of Netsparker is very easy and quick perform that task) and through Netsparker checks that all the remediations implemented are in place