Netsparker

Security scanning & vulnerability management

4,7 /5 (17 avaliações) Escreva uma avaliação!

Resumo do Netsparker

O que é o Netsparker?

Netsparker web application security solution automatically identifies XSS (cross-site scripting), SQL Injection and various other vulnerabilities and security flaws in all modern and legacy websites, web applications and web services. PoCs (proof of concepts) are produced to ensure they are not false positives, eliminating the need for users to double check vulnerabilities. Netsparker finds and reports on every type of web application, regardless of the platform or technology they were built with.

Netsparker offers built-in enterprise workflow tools that allow users to scan from 500 to 1000+ web applications at once. Users can configure every detail of the security scan including attack options, scan policies, HTTP options, authentication options, URL rewrite rules, and more. The solution's web service based REST API allows users to remotely trigger web vulnerability scans anywhere, and anytime. Organizations can also integrate automated security scans in their development environment, and launch vulnerability scans throughout all stages of the software development lifecycle.

Netsparker enables administrators to add multiple team members as users and assign specific access privileges, allowing them to collaborate and share their findings with the entire team. The dashboard allows users to keep track of the security of each web application at a glance, with correlated trending reports to help users monitor the productivity and quality of work done by developers.

Netsparker is the only end-to-end web application security solution that lets you scale and automate your web security program. The world's largest companies trust Netsparker with their web application security.

Resumo do Netsparker

Preços

A partir de
N/A

Opções de preços

Teste Grátis
Assinatura
Relação qualidade/preço

Recursos do Netsparker

Dispositivos
Porte da empresa
P M G
Mercados
Estados Unidos, Canadá, Austrália, Índia, Alemanha, México
Idiomas
Inglês

Mídias

Trending and other graphs allow users to get a quick overview of the security state of all the websites being scanned by Netsparker Cloud
The trend matrix report provides information on when a vulnerability was identified the first time, when it was fixed, or when it was reintroduced on the website
Configure and execute web application security scans without a complex learning exercise
Configure every single aspect of the web security scan such as attack options, crawling settings, URL rewrite rules, authentication, HTTP connection options and anything else in the scan policy
Configure a scan policy for each group of websites
Invite all the other team members to join and access the same account for team collaboration
Get an overview of tasks and see which were assigned to which team member
Netsparker Cloud technical report
Proof of exploit report
Netsparker - Vídeo Netsparker - Vídeo Captura de tela do Netsparker: Trending and other graphs allow users to get a quick overview of the security state of all the websites being scanned by Netsparker Cloud Captura de tela do Netsparker: The trend matrix report provides information on when a vulnerability was identified the first time, when it was fixed, or when it was reintroduced on the website Captura de tela do Netsparker: Configure and execute web application security scans without a complex learning exercise Captura de tela do Netsparker: Configure every single aspect of the web security scan such as attack options, crawling settings, URL rewrite rules, authentication, HTTP connection options and anything else in the scan policy Captura de tela do Netsparker: Configure a scan policy for each group of websites Captura de tela do Netsparker: Invite all the other team members to join and access the same account for team collaboration Captura de tela do Netsparker: Get an overview of tasks and see which were assigned to which team member Captura de tela do Netsparker: Netsparker Cloud technical report Captura de tela do Netsparker: Proof of exploit report

Netsparker - Avaliações

Netsparker - Avaliações

Classificação geral
4,7
/
5
Excelente
13

Muito bom
3

Regular
1

Ruim
0

Péssimo
0

Relação qualidade/preço
4,2
Recursos
4,4
Praticidade
4,3
Suporte ao cliente
4,7
94% dos usuários recomendam este app
Gianluca P.

Best software for Web Application Vulnerability Management

I use Netsparker as a Consultant for my clients. I'm very satisfied about the product and how this software help our client to check the security level of the web applications. We also help our clients to build a remediation plan (through the report of Netsparker is very easy and quick perform that task) and through Netsparker checks that all the remediations implemented are in place


Traduzir com Google
Patrick H.

Continuous vulnerability scanning

Stands out in the space as being one of the easier to use tools.

While OWASP ZAP is an excellent tool NetSparker takes the same principles to the next level and bundles it into an easy to use and highly valuable application security scanner SaaS!


Traduzir com Google
Avaliador Verificado

Too much money for a third rate product

We are required to run weekly vulnerability scans on many of our production websites and we try to use Netsparker to do these scans. We can schedule when the scans will run and they usually do run. The problem is, if the scan has a problem it must be canceled, otherwise it will never finish and no report will ever be generated.


Traduzir com Google
Chris E.

Web Application Scanning with Netsparker

My years of experience with Netsparker have been nothing but positive and I truly enjoy using this tool to assess our web applications.


Traduzir com Google
Casey R.

Simple, easy, accuracte scanner

My overall experience has been positive. I would recommend the software to others and we will continue to use it. Just be ready to play some games with licenses if using the cloud version.


Traduzir com Google
Gianluca P.
Setor: Serviços e tecnologia da informação
Porte da empresa: 11-50 funcionários
Traduzido para o Português
Traduzido para o Português

Best software for Web Application Vulnerability Management

Usado Semanal durante Mais de um ano
Avaliado em 10/06/2019
Fonte da avaliação: Capterra

I use Netsparker as a Consultant for my clients. I'm very satisfied about the product and how this software help our client to check the security level of the web applications. We also help our clients to build a remediation plan (through the report of Netsparker is very easy and quick perform that task) and through Netsparker checks that all the remediations implemented are in place

Vantagens

I like Netsparker because is very easy to use, but at the same time has a lot of options that allow an expert user to customize the level of scanning. Also make authenticated scan is very easy (several options are available). Report templates are different and cover all your needs.

Desvantagens

When do concurrent scans it consumes a lot of resources.

Traduzido para o Português

Resposta do Netsparker

Thank you for your review of Netsparker, this is much appreciated. We are glad to hear the software satisfies your and your clients' needs.

Detalhamento da qualificação

Relação qualidade/preço
Praticidade
Suporte ao cliente

Probabilidade de recomendação: 9.0/10

Patrick H.
Setor: Internet
Porte da empresa: 2-10 funcionários
Traduzido para o Português
Traduzido para o Português

Continuous vulnerability scanning

Usado Diariamente durante Mais de um ano
Avaliado em 26/02/2019
Fonte da avaliação: Capterra

Stands out in the space as being one of the easier to use tools.

While OWASP ZAP is an excellent tool NetSparker takes the same principles to the next level and bundles it into an easy to use and highly valuable application security scanner SaaS!

Vantagens

UI is top-notch and easy to grok. It's highly efficient and customizable tool provide in depth reporting when you need it most. Support team is A+! Being able to generate multiple types of reports based on customer needs is quite useful.

Desvantagens

Docs were a bit outdated or not easy to follow when we initially started using the product. Support has steadily been improving them and they look great now.

Traduzido para o Português

Resposta do Netsparker

Thank you for your positive feedback. We are glad that Support documentation is improving.

Detalhamento da qualificação

Relação qualidade/preço
Praticidade
Suporte ao cliente

Probabilidade de recomendação: 10.0/10

Avaliador Verificado
Setor: Pesquisa
Porte da empresa: 1.001-5.000 funcionários
Traduzido para o Português
Traduzido para o Português

Too much money for a third rate product

Usado Diariamente durante Mais de um ano
Avaliado em 12/09/2018
Fonte da avaliação: Capterra

We are required to run weekly vulnerability scans on many of our production websites and we try to use Netsparker to do these scans. We can schedule when the scans will run and they usually do run. The problem is, if the scan has a problem it must be canceled, otherwise it will never finish and no report will ever be generated.

Vantagens

Netsparker comes with an automation API so it is possible to include it as part of a Continuous Integration / Continuous Deployment (CI/CD) system. It usually works but not always.

Desvantagens

There is almost no documentation about how to use the product. You are expected to open a support ticket and ask how to do some of simplest things and it usually take a day to get a response back from support. Often the response is, "We don't support that", or "We don't have a sample that does that". I one time asked for .Net Framework sample code to pull a report from Netsparker and the answer I got was "Go toe the GUI and select these buttons. The report will download." The problem was I needed to download the reports problematically. Other times I asked for .Net samples and was given Python code. They are the same, correct?

Traduzido para o Português

Resposta do Netsparker

Hello,

Thank you for your feedback.

I am sorry to hear you have encountered such issues. Rest assured that this is not the norm, hence why I am personally reaching out to you.

We do have extensive product documentation (https://www.netsparker.com/support/) and we pride ourselves on giving excellent product support, as can be seen by the many testimonials and case studies we have published.

However sometimes things can go wrong. So can you please send me an email on [email protected] so I can personally look into this matter and iron out any issues there are, so you can benefit from our product.

Looking forward to hearing from you.

Mehmet ATA
Technical Support Manager

Detalhamento da qualificação

Relação qualidade/preço
Praticidade
Suporte ao cliente

Probabilidade de recomendação: 2.0/10

Chris E.
Setor: Gestão de organizações sem fins lucrativos
Porte da empresa: 201-500 funcionários
Traduzido para o Português
Traduzido para o Português

Web Application Scanning with Netsparker

Usado Diariamente durante Mais de dois anos
Avaliado em 24/06/2019
Fonte da avaliação: Capterra

My years of experience with Netsparker have been nothing but positive and I truly enjoy using this tool to assess our web applications.

Vantagens

The software is very easy to use yet has extreme amount of customization for scanning any web application.

Desvantagens

Without an intimate knowledge of the capability of the tool, you may miss out on truly reaping its benefits in deep scanning of web applications.

Detalhamento da qualificação

Relação qualidade/preço
Praticidade
Suporte ao cliente

Probabilidade de recomendação: 9.0/10

Casey R.
Setor: Serviços financeiros
Porte da empresa: 201-500 funcionários
Traduzido para o Português
Traduzido para o Português

Simple, easy, accuracte scanner

Usado Semanal durante Mais de um ano
Avaliado em 20/02/2019
Fonte da avaliação: Capterra

My overall experience has been positive. I would recommend the software to others and we will continue to use it. Just be ready to play some games with licenses if using the cloud version.

Vantagens

Netsparker is easy to use, easy to configure, and you can be up and running your first scan in a matter of minutes. The scan results offer details on how to remediate the findings as well as what they did to find and validate the finding.

Desvantagens

One main issues. I would like to be able to change a domain. If I have a license for two domains, I should be able to rotate them. If server1.com goes EoL and server2.com has taken its place, I have to buy another subscription. Not cool.

Traduzido para o Português

Resposta do Netsparker

Thank you for your feedback! We are glad that Netsparker is working out for you. Should you need to change a domain, you may do so upon renewal by contacting Support.

Detalhamento da qualificação

Relação qualidade/preço
Praticidade
Suporte ao cliente

Probabilidade de recomendação: 10.0/10

Recomendação do usuário
8,7/10
Baseado em 17 usuários
Compare as alternativas por recomendação dos usuários
Compare com alternativas

Preço do Netsparker

Preço do Netsparker

A partir de
N/A
Teste Grátis
Assinatura
Relação qualidade/preço
Relação qualidade/preço
4,2/5
Baseado em 17 usuários
Compare as alternativas por relação qualidade/preço
Compare com alternativas

Recursos do Netsparker

Recursos do Netsparker

API
Acompanhamento de atividades
Alertas de riscos
Alertas/transferência
Armazenamento de dados seguros
Auditoria
Auditoria de segurança
Autenticação
Autenticação de dois fatores
Controle do acesso
Gerenciamento de senhas
Gestão de conformidade
Gestão de políticas
Integração de terceiros
Logon único
Monitoramento
Monitoramento em tempo real
Painel de atividades
Relatórios e estatística
Scanner de vulnerabilidades
Recursos
4,4/5
Baseado em 17 usuários
Compare as alternativas por avaliações dos recursos
Compare com alternativas

Categorias

Mais informações sobre Netsparker

Mais informações sobre Netsparker

Principais recursos do Netsparker

  • Advanced web scanning
  • Ajax/Javascript support
  • Anti-CSRF token support
  • Authentication
  • Automatic detection of custom 404 error pages
  • Encoding and decoding tools
  • Exploitation
  • Full HTML5 support
  • Granular and configurable user privileges
  • HTTP request builder
  • Heuristic & automated detection of URL rewrites
  • Import links and HTTP requests
  • Manual testing
  • Multi user support
  • Old application detection
  • Proof-based scanning
  • REST API support
  • Reporting
  • SDLC integration
  • Task management
  • Team collaboration tools
  • Team members activity logs
  • ViewState viewer
  • Vulnerability assessment
  • Vulnerability details
  • Vulnerability retest
  • Web services scanning

Vantagens

  • Netsparker utilizes unique proof-based technology to automatically verify that the identified vulnerabilities are real, and not false positives.

  • The solution's built-in workflows and automation tools allow organizations to scale up their web application security efforts and scan hundreds of websites at once.

  • Netsparker’s asset discovery service locates all the websites, applications, services, and APIs that
    need to be scanned. With the Technologies feature, you can also find and list the technologies used in web applications,
    identify out-of-date versions, & track technology update status. Scan any type of web application regardless of the technology it was built with and find vulnerabilities in Web 2.0, HTML5, and single page web applications with Netsparker.

  • Remotely trigger hundreds of web vulnerability scans from anywhere and anytime with Netsparker Cloud's web service based REST API.

  • The security dashboard enables users to monitor the state of security of all web apps alongside trending reports which help keep track of the productivity and quality of work by developers.

  • Perguntas frequentes sobre o Netsparker

    Perguntas frequentes sobre o Netsparker

    Abaixo estão algumas perguntas frequentes sobre o Netsparker.

    P: Que tipo de planos o Netsparker oferece?

    O Netsparker oferece os seguintes planos de pagamento:

    Modelo de preços: Assinatura

    Teste Grátis: Disponível

    P: Quais são os principais recursos do Netsparker?

    O Netsparker oferece os seguintes recursos:

    • Advanced web scanning
    • Ajax/Javascript support
    • Anti-CSRF token support
    • Authentication
    • Automatic detection of custom 404 error pages
    • Encoding and decoding tools
    • Exploitation
    • Full HTML5 support
    • Granular and configurable user privileges
    • HTTP request builder
    • Heuristic & automated detection of URL rewrites
    • Import links and HTTP requests
    • Manual testing
    • Multi user support
    • Old application detection
    • Proof-based scanning
    • REST API support
    • Reporting
    • SDLC integration
    • Task management
    • Team collaboration tools
    • Team members activity logs
    • ViewState viewer
    • Vulnerability assessment
    • Vulnerability details
    • Vulnerability retest
    • Web services scanning

    P: Quem costuma usar o Netsparker?

    Os clientes habituais do Netsparker são:

    Grandes empresas

    P: Em que idioma o Netsparker está?

    O Netsparker está nos seguintes idiomas:

    Inglês

    P: Que tipo de planos o Netsparker oferece?

    O Netsparker tem os seguintes planos de preços:

    Assinatura

    P: O Netsparker é compatível com disponíveis móveis?

    Não temos informações sobre os dispositivos compatíveis com o Netsparker.

    P: O Netsparker se integra com quais outros aplicativos?

    O Netsparker se integra com os seguintes aplicativos:

    BambooHR, Centraleyezer, CircleCI, GitHub, GitLab, Microsoft Teams, Slack, ThreadFix, Zapier

    P: Que nível de suporte o Netsparker oferece?

    O Netsparker oferece as seguintes opções de suporte:

    Suporte por telefone, Suporte online