Built-In Tools for Advanced Vulnerability Assessments

When you need to investigate or visualize a challenging security vulnerability, it's good to know that all the security tools you need are built into Netsparker. To help security professionals optimize scanning and manual testing, Netsparker features a number of advanced web security testing tools.

HTTP Request Builder

You can use the HTTP Request Builder to create your own HTTP requests and modify imported requests. This is extremely useful for performing manual vulnerability assessments and troubleshooting complex issues, for example identifying logical vulnerabilities.

HTTP Request Builder in Netsparker
Text encoding and decoding tool in Netsparker

Encoding and Decoding Tools

Text encoding and decoding is a vital feature when manually crafting and modifying test payloads. To save precious time during manual vulnerability assessments, Netsparker includes a text encoder and decoder that supports multiple encoding schemes, including URL, HTML, Base64, UTF7, MD5, SHA1, SHA256, SHA512, and others.

ViewState Viewer

When security scanning ASP.NET and modern .NET web applications, Netsparker extracts ViewState data from HTTP requests and responses generated during scanning. The ViewState data is displayed in a separate preview tab for easier troubleshooting.

ViewState data preview in Netsparker

Retesting Individual Vulnerabilities

After implementing a fix based on Netsparker’s detailed remedy guidance, you need to retest the web asset to make sure the vulnerability is gone. Instead of launching another complete web application security scan, you can save a lot of time by retesting only individual vulnerabilities.

Retesting individual vulnerabilities in Netsparker

Save your security team hundreds of hours with Netsparker’s web security scanner.

Get a demo