SUPPORT

24/5 Hotline Support Service

+44 (0)20 3588 3841

Open a Support Ticket

support@netsparker.com

Introduction to the Dashboards

In both Netsparker Enterprise and Netsparker Standard, the Dashboards enable you to view scan results, vulnerabilities, issues, statistics and other information from a single window – while scans are running and once they are completed.

Viewing the Global Dashboard in Netsparker Enterprise

The Netsparker Enterprise global dashboard provides you with an overview of the security status of all Website Groups and Websites in your Netsparker Enterprise account.

In the panel at the top of the window, you can see the following:

  • USERS displays the current number of active users on your account in the last week
  • WEBSITES displays the number of websites on your account
  • COMPLETED SCANS displays the number of finished scans
  • ACTIVE ISSUES displays the number of Issues that remain unresolved

For further information, see Global Dashboard Panels below.

Global Dashboard Panels

This table lists and explains the panels in the Global Dashboard window.

Panel

Description

Severity Trend

This chart displays the increase or decrease of each Vulnerability Severity Level over time.

Severities

This doughnut chart displays the number vulnerabilities found, grouped be Vulnerability Severity Level, in proportion to the total detected.

For further information, see Vulnerability Severity Levels.

Issues

This clustered column chart shows the number of Issues found, grouped by Vulnerability Severity Level.

For further information, see Viewing Issues in Netsparker Enterprise.

Security Overview

This doughnut chart displays the total number of Critical and Insecure issues.

Average Time to Fix

This is a column chart that displays the average length of time it takes for Issues to be fixed, grouped by Vulnerability Severity Level.

Fixed Issues

This is a column chart that displays the number of Issues that have been fixed in each Vulnerability Severity Level.

Groups Dropdown

At the top right of the window, there is a dropdown. Click to view the security status of all your websites, or certain groups only.

The options are:

  • All Websites
  • Default
  • Your Website Groups

For further information, see Website Groups in Netsparker Enterprise

Next Scheduled Scans

This is a panel that displays a list of Scheduled Scans. For further information, see Scheduling Scans.

Recent Scans

This panel displays a list of Recent Scans. Hover the mouse over various icons to see how what types of Vulnerabilities have been detected.

Further options include:

Latest To Do Issues

This panel displays the latest detected Issues, with an icon indicating their Vulnerability Severity Level.

How to View the Global Dashboard in Netsparker Enterprise

The Global Dashboard is displayed, by default, as soon as you login. Alternatively, from the main menu, click Websites then Dashboard. The Global Dashboard is displayed.

For further information, see Global Dashboard Panels above.

Viewing the Scan Summary Dashboard in Netsparker Enterprise

The Scan Summary Dashboard enables you to view the results of the latest security scan for a single website – while the scan is running and once it has been completed. You can also view other completed security scans with the same configuration, such as those with the same Scan Policy and Scan Settings.

In the panel at the top of the window, you can see the following:

  • [NAME OF SCAN] displays the name of the scan, with a link to the scan report, along with a Launch a Scan button
  • ISSUES displays the number (if any) of previous scans on that website, along with a Launch a Scan button
  • SCHEDULED SCAN displays information of any scheduled scans, along with a Schedule a scan button
  • LATEST REPORT has a Report button

Scan Summary Dashboard Panels

This table lists and explains the panels in the Scan Summary Dashboard window.

Panel

Description

Severity Trend

This chart displays the increase or decrease of each Vulnerability Severity Level over time.

Click Trend Matrix Report (Severity Trend Report) for a more comprehensive overview.

Severities

This doughnut chart displays the number vulnerabilities found, grouped be Vulnerability Severity Level, in proportion to the total detected.

For further information, see Vulnerability Severity Levels.

Issues

This clustered column chart shows the number of Issues found, grouped by Vulnerability Severity Level.

For further information, see Viewing Issues in Netsparker Enterprise.

Security Overview

This doughnut chart displays the total number of Critical and Insecure Issues.

Average Time to Fix

This is a column chart that displays how long it takes for Issues to be fixed on average, grouped by Vulnerability Severity Level.

Fixed Issues

This is a column chart that displays the number of Issues that have been fixed in each Vulnerability Severity Level.

Issues

This is a list of all the issues detected in the scan.

Affecting Notifications

This is a list of all Notifications for the scan, including:

  • NAME
  • EVENT
  • EMAIL RECIPIENTS
  • SMS RECIPIENTS

Dropdown Menu

At the top right of the window, there is a dropdown. Click to view the security status of an indiviual Website Group or websites grouped by Scan Scope.

Scan Name

This panel lists the scan's Name, Website and Group. Further options include:

  • Click Details to view Issues, Scans or Scheduled Scans
  • Click Edit to edit the Scan
  • Click Delete to delete it

Recent Scans

This displays a list of Recent Scans. Hover the mouse over various icons to see how what types of Vulnerabilities have been detected. Further options include:

  • Incremental Scan
  • Retest

License Status

This panel contains the subscription expiry date.

How to View the Scan Summary Dashboard in Netsparker Enterprise

  1. From the main menu, click Scans, then Recent Scans. The Scans window is displayed.
  2. Click on the Name of any individual single scan. The Scan Summary Dashboard is displayed.

Screenshot 5 – Single website dashboard

For further information, see Scan Summary Dashboard Panels..

Viewing the Welcome Dashboard in Netsparker Standard

When you open Netsparker Standard, the Welcome Dashboard is displayed, and the Start a New Website or Web Service Scan opens. Close the dialog to view the following areas in the window.

The Welcome page also also contains links to Updates, the latest articles in our Web Application Security Blog, along with Support and Resources links.

For further information on menus and ribbons, see Navigation in Netsparker Standard.

Viewing the Scan Summary Dashboard in Netsparker Standard

The Scan Summary Dashboard enables you to view the results of the latest security scan for a single website – while the scan is running and once it has been completed.

Panels in the Scan Summary Dashboard

This section lists and explains the panels in the Scan Summary Dashboard window.

  • Activity (default panel)
  • HTTP Request/Response
  • Knowledge Base Viewer (default panel)
  • Attack Radar
  • Execute SQL Commands
  • Get Shell
  • Exploit LFl
  • Exploit Short Names
  • Controlled Scan
  • Logs (default panel)
  • Sitemap (default panel)
  • Issues (default panel)
  • Knowledge Base (default panel)
  • Progress (default panel)
  • Request Builder
  • Encoder
  • Netsparker Assistant
To set the layout to default, click Reset Layout in the Panels or use the shortcut Ctrl+Shift+R.

Sitemap

The Sitemap panel displays a list of all the directories and files that the scanner crawled. Within each file, all identified vulnerabilities, security flaws and vulnerable parameters are listed.

In this example:

  • The directory is 'administrator'
  • The file is '?r'
  • The first vulnerability listed is: 'Password Transmitted over HTTP'

During a scan, you can view the Activity Status of each file in the Sitemap. Move your pointer over a node and a popup will display information such as ATTACKING, CRAWLED or SCANNED.

Dashboard

The main Dashboard panel displays the stage the scanner has reached (crawling or attacking the target, or just attacking) including:

  • Stage (Crawling, Crawling & Attacking, Scan Finished)
  • Progress bar (%)
  • Start Time
  • Request Status (number of completed requests v estimated number of requests to complete this phase)
  • Current speed (requests per second)
  • Average Speed (requests per second)
  • Failed Requests
  • HEAD Requests
  • Elapsed Time

Central Panel

The central panel displays details about a selected Issue. Click a tab to view further information:

  • Scan displays Concurrent Connections, and Activity (Crawling and Attacking actions), while the scan is running
  • HTTP Request/Response displays the request and response of the item selected in the Issues panel
  • Attack Radar displays a circular chart shows the ongoing progress of each security check (SQLi, XSS) during the scanning phase (before most of the SQL Injection attacks have been performed); at the end of the scan, the chart indicates all security checks that have been tested and how many vulnerabilities were found of each type.

  • Vulnerability displays further details about the selected vulnerability
  • Knowledge Base displays further details about the item selected in the Knowledge Base panel
  • Browser View displays the item selected in the Issues panel in a browser

Logs

The Logs panel displays a list of all scanner actions that have taken place during the Scan.

Issues

The Issues panel lists vulnerabilities by type, severity, confirmation and URL.

Knowledge Base

The Knowledge Base panel displays a list of additional information about the Scan, and is sorted into groups, such as number of comments and cookies, crawling and scan performance, and slowest pages. This information is useful for highlighting other potential security issues which are not typically classified as vulnerabilities but can help attackers gain additional knowledge to craft a successful hack. Netsparker provides users with a complete, detailed analysis of the target web application. Click on each one to view its details displayed in the central panel.

Knowledge Base Nodes

This table lists and explains the Knowledge Base Nodes in the Knowledge Base panel.

Panel

Description

AJAX / XML HTTP Requests

This is a list of the AJAX / XMl HTTP Requests found in the target application. From this node, you can check that Netsparker is detecting and simulating all of these requests, especially when scanning a client-side script heavy web application such as a single page application.

This is sometimes referred to as the XML HTTP Requests List.

Attack Possibilities

This is a list of the possible number of attacks per engine that Netsparker might carry out. Attack possibilities information is collected by attack engines when Netsparker is attacking a website. These values are calculated on the basis of the number of parameters present for each link. They are used as estimates to inform users about scan progress.

Comments

This is a list of source code comments. Some of them may contain sensitive keywords highlighted in red and bold. This is the most overlooked security issue of all and could lead to sensitive information disclosure. It is very typical for developers to leave very sensitive information in web applications, such as connection strings, administrative accounts credentials, details of the test environments and much more. Netsparker allows users to add new entries to the list of sensitive comments so they are alerted once this type of entry is identified in the source code comments. Users can also modify the existing patterns from the Comments node in the Netsparker settings.

Cookies

This is a list of cookies set by the target application. Cookies can disclose a lot of information about the target website that attackers can use to craft a malicious attack. From this node, security professionals have access to a centralized list of all cookies, so they can analyse them one by one and identify any cookie-related security issues.

Crawling Performance

This is a table with information on crawling performance, such as Parsing Source, Crawled Link Count, Total Response Time, and Average Response Time.

CSS Files

This is a list of CSS Files found in the target application. Modern web applications have dynamic CSS files (ones that accept input from other sources and variables) so they can also be an attack vector. Even though Netsparker automatically scans target web applications for potential vulnerabilities in CSS files, this list is useful for users who need to manually analyze them.

This is sometimes referred to as the Client CSS File List.

Email Addresses

This is a list of email addresses found in the target application. Although having clear text email addresses on a website is not a vulnerability in itself, it is good to know what email addresses are published on the website.

Embedded Objects

This is a list of all the embedded objects such as Flash files or ActiveX components that were discovered in the target web application, and their location.

External CSS Files

This is a list of all the external CSS files the target website uses. This is for information purposes only.

External Frames

This is a list of frames found in the target application that originate from an external source. Similar to external scripts, external frames may be the result of an already hacked website. This is why it is good for security professionals to know about all the external objects in a web application.

External Scripts

This is a list of external scripts found in the target application. An external script from a non-trusted source should be considered a security risk, since it might be tampered by someone else to execute malicious JavaScript on the target web application. Such tampering might result in a stored or permanent Cross-Site Scripting vulnerability.

Information in this knowledge base node can also help users determine whether the target web application has already been hacked, for example whether malware is being distributed via an injected script. All (un)trusted 3rd party scripts used in your web application are also listed in this knowledge base node.

File Extensions

This is a list of file extensions found in the target applications. Under each extension, it will also list all the files with that extension. This information helps security professionals determine what is being served from the target web application.

Google Web Toolkit

This is a list of any GWT-RPC requests that are identified during a scan. When such requests are identified it means that a web application built with Google Web Toolkit is running on the target server.

They are sometimes referred to as GWT Requests.

Incremental Scan

This is a list of all the new links found during incremental scans, allowing you to identify newly-added pages.

See How to Run an Incremental Scan in Netsparker Standard.

Interesting Headers

This is a list of all the unusual or customized HTTP headers encountered during a security scan of the target web application. This information is very useful for quality assurance teams. It can lead them to discover any legacy or unused components that are still being called because some unused code is still enabled in the system.

This information can also help security professionals uncover more information about the target web application and the environment it is running in. For example, they can find out if a load balancer or web application firewall is in use, or determine the version of some of the server components to enable more targeted testing.

This is sometimes referred to as the Custom Header List.

JavaScript Files

This is a list of JavaScript files found in the target application. Security professionals can refer to this centralized list of information to check that all JavaScripts on the target website are secure and are being used appropriately. This avoids the risk of neglecting to find some during a manual check.

This is sometimes referred to as the Client Script List.

MIME Types

This is a list of MIME Types found in the target application. Under each MIME type, Netsparker also lists all the files with that MIME type. This information is very useful in case further manual testing is required. It also helps security professionals spot any unusual files or types served by the server which could indicate a successful hack.

Not Founds

This is a list of all the web pages that return a 404 error. This is used to inform users that these pages are not reachable and therefore cannot be scanned.

Out of Scope Links

This is a list of all Out of Scope Links, both uncrawled and unattacked. From this knowledge base node, users can determine what was not scanned and why, to enable them to fine tune their security scan settings should they wish to also scan these links.

Proofs

This is a list of all the data that is extracted as a Proof when exploiting a vulnerability: Identified Database Version, Identified Database Name and Identified Database User. This data could contain the username and database name for a SQL Injection, or the content of a file for a local file injection for example. From this node, you can discover how much potentially sensitive information the scanner was able to extract automatically for demonstration purposes.

REST APIs

This is a list of a REST API or RESTful web services that are identified in a scan. Netsparker automatically crawls and scans the RESTful Web service.

See Finding Vulnerabilities in RESTful Web Services Automatically with a Web Security Scanner.

Scan Performance

This is a table with information on scan performance, such as source, request count, total response time, and average response time.

See Scan Performance Upgrades.

Site Profile

This is a table with site profile information about the technologies used in the target website, such as JavaScript Libraries, Database Server and Operating System.

Slowest Pages

This is a table listing the top ten slowest pages by URL and Response Time. In this knowledge base node, the average response time of the target web application is displayed together with all the pages with highest response time. Pages that are slow to load do not pose any security threat, but there is a reason why they are taking longer to load. It could be caused by errors or inefficiencies in the code, so it is still worth knowing about them for troubleshooting purposes.

This is sometimes referred to as the Top Response Times List.

SSL

This is a list of the information about the SSL certificate used in the target website, and the protocols and ciphers that are supported by the target server. Recently, there have been a number of issues with old ciphers and protocols, so it is good to know what the target web application supports, so you can fine tune the server's configuration.

This is sometimes referred to as the SSL Knowledge Base Provider.

URL Rewrite

This node contains tables with information on the URL Rewrite settings and the URL Rewrite rules matched in the target application. Netsparker scanners automatically configure their own URL rewrite rules when scanning a website that uses URL rewrites, so you do not have to manually configure them. If you need to verify the rules, or get a better understanding of the workings and setup of the target web application, check the rules that the scanner automatically configured.

See URL Rewrite Rules.

Web Pages With Inputs

This is a list of form inputs found in the target application. This list can be used by developers and quality assurance members for further manual testing. Security professionals find such information useful too, since it gives them a better overview of the attack surfaces of a web application.

It is sometimes referred to as the Form Inputs List.

Web Services (SOAP)

This is a list of SOAP WEB Services found in the target application, with details on the operation and parameter of each.

Netsparker Assistant

Netsparker Assistant is a smart scan assistant that guides you through a scan, detecting and displaying details of scan configuration anomalies, and enabling you to change and optimize the current configuration. The Netsparker Assistant panel is displayed on the Netsparker Standard window along with the Knowledge Base.

You can switch between viewing the Knowledge Base and Netsparker Assistant panels by clicking the relevant tab.

For further information, see Netsparker Assistant.

How to View the Scan Summary Dashboard in Netsparker Standard

  1. Open Netsparker Standard.
  2. Load a previous scan or launch a new scan.
  3. Click the View tab. The Dashboard is displayed, showing the default panels: Sitemap, Dashboard, the Central Panel, Logs, Issues and Knowledge Base.

For further information, see Panels in the Scan Summary Dashboard.

Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO