July 2021 Update for Netsparker Standard 6.1

Huseyin Tufekcilerli - Tue, 06 Jul 2021 -

This blog post announces the July 2021 update for Netsparker Standard 6.1, highlighting Authentication Profiles, Enterprise Integration, the JSON Web Token security check, and dozens of other security checks.

Your Information will be kept private.

July 2021 Update for Netsparker Standard 6.1

We’re delighted to announce the July 2021 update for Netsparker Standard 6.1. The highlights of this release are Authentication Profiles, Enterprise Integration, the JSON Web Token security check, and dozens of other security checks.

Authentication Profiles

Netsparker lets you save a custom script for form authentication and utilize this profile on many scans without explicitly configuring Form Authentication.

When you save an authentication profile and instruct Netsparker to use it, the scanner automates the authentication when it matches the URL at the beginning of the crawling process. So, you do not have to configure form authentication for websites utilizing the same authentication procedure.

For further information, see Authentication Profiles.

Enterprise Integration with Invicti’s Acunetix 360

Invicti Security, the company behind Acunetix and Netsparker, has extended its integration capabilities as part of this update. So far, Netsparker Standard could integrate with Netsparker Enterprise to export and/or import scans between the applications. With this update, you can now integrate Netsparker Standard with Acunetix 360.

For further information, see Enterprise Integration.

JWT Security Checks

We have implemented the JSON Web Token (JWT) security check. JWT has become a vital part of authentication processes in modern web application development, especially when implementing single sign-on (SSO).

With this release, Netsparker Standard can identify JWT vulnerabilities. For further information about JSON Web Token, see JSON Web Token attacks and vulnerabilities.

Dozens of new security checks

We have added dozens of new security checks, as can be seen under the New Security Checks heading in the changelog. Thus, we will be able to detect many more technologies and report the version of those technologies and known security vulnerabilities of those versions.

Further information

For a complete list of what is new, improved, and fixed in this update, refer to the Netsparker Standard Changelog.

Your Information will be kept private.

Huseyin Tufekcilerli

About the Author

Huseyin Tufekcilerli

Product Manager at Netsparker.