It is a very good tool. It has an API segment that makes up for the lack of reporting options. You can execute commands on Netsparker by using your command-line interface. By using the API, you will be able to get the kind of information that you are looking for. It'll help you in getting the results that you want. I would rate it an eight out of ten.
Vice President Application Security North America at BNP Paribas
Real User
Top 5
2021-07-29T05:40:28Z
Jul 29, 2021
I would tell potential users that it's really one of the best products in the market for web application security or Dynamic Application Security Testing (DAST). The licensing part is challenging, but they might get a good deal out of the Netsparker team. On a scale from one to ten, I would give Netsparker by Invicti a seven.
Consultant Cyber Security at a tech services company with 51-200 employees
Consultant
2020-10-06T06:57:50Z
Oct 6, 2020
I would recommend this solution. I haven't really researched other products, but for me, Netsparker Web Application Security Scanner is a benchmark right now. I would rate Netsparker Web Application Security Scanner an eight out of ten.
Consultant Cyber Security at a tech services company with 51-200 employees
Consultant
2020-10-04T06:40:30Z
Oct 4, 2020
Overall, I am satisfied with Netsparker. However, I cannot say at this point that I would recommend it because although it is good, I will now be using it as a benchmark for evaluating other products. I would rate this solution an eight out of ten.
This is not a simple solution, there is a complexity there. A lot of companies here don't like the idea of using a cloud provider or cloud application for scanning. We prefer to have stand-alone applications and not use the cloud. It's something they could offer, like Qualys. I would rate this solution an eight out of 10.
Senior Quality Control Manager at a insurance company with 51-200 employees
Real User
2019-11-14T06:33:00Z
Nov 14, 2019
We're using a demo of the latest version for a POC. We used the on-premises deployment model. I'd recommend Netsparker for anyone who wants to make a security assessment for web applications. I'd rate the solution nine out of ten. The tool is full of useful features. However, the intercepting reviews in terms of web requests need some enhancements to be more usable.
Founder at a tech services company with self employed
Real User
2019-08-21T06:36:00Z
Aug 21, 2019
There are many average products on the market, but I prefer Netsparker because to me wasting time after false positives is the worst thing that can happen. Accuracy is the most important thing to me. I rate Netsparker eight out of ten.
You can use Netsparker but use it carefully as some payloads can be dangerous in production. This is the same as Acunetix, WebInspect, and others. Every scanner should have an option like Burp Suite to use dangerless payloads (with Distribute Damage extension).
I rate it at nine out of 10 because, although I have used many web application scanners by now, Netsparker gives the fewest false-positives. That's the most important property for a web application scanner. When you buy a web application scanner, you actually pay for two features: non false-positive detection, and attack diversity. Other features affect the quality of a product. So, Netsparker deserves a nine.
Invicti helps DevSecOps teams automate security tasks and save hundreds of hours each month by identifying web vulnerabilities that matter. Combining dynamic with interactive testing (DAST + IAST) and software composition analysis (SCA), Invicti scans every corner of an app to find what other tools miss with 99.98% accuracy, delivering on the promise of Zero Noise AppSec. Invicti helps discover all web assets — even ones that are lost, forgotten, or created by rogue departments. With an array...
It is a very good tool. It has an API segment that makes up for the lack of reporting options. You can execute commands on Netsparker by using your command-line interface. By using the API, you will be able to get the kind of information that you are looking for. It'll help you in getting the results that you want. I would rate it an eight out of ten.
I highly recommend Netsparker and rate it eight out of 10.
I would tell potential users that it's really one of the best products in the market for web application security or Dynamic Application Security Testing (DAST). The licensing part is challenging, but they might get a good deal out of the Netsparker team. On a scale from one to ten, I would give Netsparker by Invicti a seven.
I would recommend this solution. I haven't really researched other products, but for me, Netsparker Web Application Security Scanner is a benchmark right now. I would rate Netsparker Web Application Security Scanner an eight out of ten.
Overall, I am satisfied with Netsparker. However, I cannot say at this point that I would recommend it because although it is good, I will now be using it as a benchmark for evaluating other products. I would rate this solution an eight out of ten.
This is not a simple solution, there is a complexity there. A lot of companies here don't like the idea of using a cloud provider or cloud application for scanning. We prefer to have stand-alone applications and not use the cloud. It's something they could offer, like Qualys. I would rate this solution an eight out of 10.
We're using a demo of the latest version for a POC. We used the on-premises deployment model. I'd recommend Netsparker for anyone who wants to make a security assessment for web applications. I'd rate the solution nine out of ten. The tool is full of useful features. However, the intercepting reviews in terms of web requests need some enhancements to be more usable.
There are many average products on the market, but I prefer Netsparker because to me wasting time after false positives is the worst thing that can happen. Accuracy is the most important thing to me. I rate Netsparker eight out of ten.
You can use Netsparker but use it carefully as some payloads can be dangerous in production. This is the same as Acunetix, WebInspect, and others. Every scanner should have an option like Burp Suite to use dangerless payloads (with Distribute Damage extension).
I rate it at nine out of 10 because, although I have used many web application scanners by now, Netsparker gives the fewest false-positives. That's the most important property for a web application scanner. When you buy a web application scanner, you actually pay for two features: non false-positive detection, and attack diversity. Other features affect the quality of a product. So, Netsparker deserves a nine.