Netsparker Chosen as Finalist in Red Herring Top 100 Europe Awards

Category: News - Last Updated: Wed, 01 Mar 2017 - by Robert Abela

Netsparker has always been an innovator in the web application security industry. It developed the first false positive free web vulnerability scanner, it simplified the process of detecting web application vulnerabilities and much more. Thanks to this approach Netsparker is leaving an imprint in such industry hence it has been chosen as a finalist in the Red Herring Top 100 European Awards. Read More

Understand Your Web Application Better with Netsparker Knowledge Base Nodes

Category: Product Docs & FAQS - Last Updated: Tue, 23 May 2017 - by Robert Abela

Apart from identifying web application vulnerabilities, to do a complete security audit of a website or web application you also need to understand the web application and know about all the components, objects and scripts used on the web application. During a scan, Netsparker will record all of these details and present them to the user in the Knowledge Base nodes. Read More

2013/2014 Web Vulnerability Scanners Comparison - Netsparker Confirmed as a Market Leader

Category: News - Last Updated: Tue, 25 Feb 2014 - by Robert Abela

In the 2013/2014 web vulnerability scanners comparison by Shay Chen, where he compared around 63 web vulnerabilities scanners Netsparker Web Application Security Scanner emerged as a market leader in the web application security industry, even though it is the youngest contender. Read this article for more information about the comparison of these automated web security tools. Read More

Netsparker 3.2 Released - New Features Overview

Category: Releases - Last Updated: Wed, 22 Jan 2014 - by Robert Abela

Netsparker Web Application Security Scanner Version 3.2 allows Netsparker users to scan and identify vulnerabilities and security issues automatically in SOAP web services. This version of the false positive free web vulnerability scanner also includes new request and response viewers, a number of improvements that make web vulnerability scans more efficient and a number of bug fixes. Read More

New Netsparker 3.1 is Available for Download

Category: Releases - Last Updated: Wed, 20 Nov 2013 - by Robert Abela

An overview of Netsparker Web Application Security Scanner Version 3.1 - Full HTML 5 web application support, new security checks for Web 2.0 web applications, automatic CSRF vulnerability detection, detailed analysis of target web applications and much more. Read More

Top 10 Mistakes when Performing a Web Vulnerability Assessment

Category: Web Security Readings - Last Updated: Mon, 22 May 2017 - by Robert Abela

In Information Technology there are numerous mistakes, oversights, and blunders that are repeated consistently day after day. But given what there is to lose when it comes to web application security, why not learn from the mistakes of others so you don’t get burned? This blog post lists the top 10 mistakes typical web application security experts do and that you need to be aware of when seeking out the real business risks in your web vulnerability assessments: Read More

Getting developers on board to transition from part of the problem to part of the process

Category: Web Security Readings - Last Updated: Mon, 22 May 2017 - by Robert Abela

Are your web application developers key players in the web application security equation? They are often the unsung heroes who help prevent many security problems from ever occurring, or closing down web vulnerabilities once identified. Yet in the real world they are often portrayed as a large part of the security problem. It doesn’t have to be that way. Read More

Should you pay for a Web Application Security Scanner?

Category: Web Security Readings - Last Updated: Wed, 13 Sep 2017 - by Robert Abela

If you ask 10 web security specialists which is their favorite web vulnerability scanner, most probably you will get 30 different answers. Digging deeper you will also find that while some prefer to use free tools, several others prefer to rely on a commercial web vulnerability scanning solution. This web security blog post highlights the differences between free web security tools and commercial web application security scanners. Read More

Web Application Security Testing should be part of QA Testing

Category: Web Security Readings - Last Updated: Mon, 22 May 2017 - by Robert Abela

Web vulnerability scanning should form part of the normal QA process when developing web applications to ensure that a business develops and releases secure web applications. Unless project managers start classifying security vulnerabilities and other web application security issues as normal functionality bugs, web developers will keep on developing vulnerable web applications. Read More

Why Web Vulnerability Testing Needs to be Automated

Category: Web Security Readings - Last Updated: Mon, 22 May 2017 - by Robert Abela

There are several pitfalls in web application security and one of them is sticking to manual audits only. This blog posts highlights the benefits of automating the process of finding vulnerabilities and other security issues in modern web applications. It also looks into the common pitfalls encountered by web security specialists when trying to identify all web application vulnerabilities manually. Read More

An XSS Vulnerability is Worth up to $10,000 According to Google

Category: Web Security Readings - Last Updated: Thu, 13 Jun 2013 - by Robert Abela

Google are willing to pay up to $10,000 to anyone who discovers a cross-site scripting vulnerability in one of their web applications. Why are Google doing so? Definitely not by coincidence. By exploiting a cross-site scripting vulnerability a malicious hacker can easily gain administrative access on a web application, gain control over it and where possible infiltrate deeper into the corporate network. Read this blog post for more information about the impact an exploited XSS can have on your business. Read More

Use Netsparker to Detect Ruby on Rails Vulnerabilities

Category: News - Last Updated: Tue, 11 Jun 2013 - by Robert Abela

Netsparker can detect vulnerabilities in Ruby and Rails web applications. In this blog post we explain how a Ruby on Rails Remote Code Execution Vulnerability is exploited in the wild and how you can check if your web applications are vulnerable to such vulnerability with Netsparker. Read More