24/5 Hotline Support Service

+44 (0)20 3588 3841

Open a Support Ticket

Navigation in Netsparker

We want to help you get oriented quickly. Each topic explains the main menus and areas in the window.

Netsparker Enterprise

This table lists and explains the menus in Netsparker Enterprise.




From this menu, you can display and manage all the websites that Netsparker has discovered. You can also filter and configure the discovered website lists, as well as create and exclude websites.

For further information, see Application and Service Discovery Service.


From this menu, you can view the Dashboards for an overview of the security state of all your web applications. You can also add, import, and manage websites, add and manage website Groups.

For further information, see Introduction to the Dashboards.


From this menu, you can add and manage new Scans and Group Scans, and view and manage Recent Scans.


From this menu, you can schedule individual Scans and Group Scans, and display all your scheduled Scans.

For further information, see Scheduling Scans in Netsparker Enterprise.


From this menu, you can set reporting details, and view chart reports.


From this menu, you can view Recent Technologies discovered in scans, including a Dashboard overview. You can also disable notifications and view reports.

For further information, see Technologies.


From this menu, you can view all your Issues, those that are addressed, those that are waiting for a retest, and those still to be addressed.

For further information, see Viewing Issues in Netsparker Enterprise.


From this menu, you can create, clone and optimize new Scan Policies, and create Report Policies.


From this menu, you can create new Notifications, edit, clone, and delete Notifications, simulate Notification events, and prioritise Notification scopes.

For further information, see Managing Notifications.


From this menu, you can select a system to integrate with Netsparker, create a new Integration, match usernames between systems, and clone, edit or delete User Mappings.

For further information, see What Systems Does Netsparker Integrate With?


From this menu, you can add new Team Members, send invitations to others to join, select their permission levels, and place them into a Group.

For further information, see Managing Team Members in Netsparker Enterprise.


From this menu, you can view the activity logs of Users.


From this menu, you can configure and disable New Agents, and edit and delete New Agent Groups.

This menu is only available in the Netsparker Enterprise On-Premises edition.

For further information, see Agents in Netsparker Enterprise On-Premises.


From this menu, you can check general Settings options, configure Single Sign-On details, and enable IP Address Restrictions.

The following additional settings are available in the Netsparker Enterprise On-Premises edition only: Security, Database, Email, SMS, Service Credentials, Cloud Provider, Authentication Verifier, and Licensing.

For further information, see Overview of Settings in Netsparker Enterprise.

Sign Out

Click here to sign out of Netsparker Enterprise.

Netsparker Standard

We want to help you get oriented quickly. Each topic explains the main menus and areas in the window.

Quick Access Toolbar

Customize the Quick Access Toolbar for access to tasks you use frequently. Its default position is above the Ribbon.

This table lists and explains the icons on the Quick Access Toolbar.




Click to Start a New Scan (see How to Scan a Website in Netsparker Standard).


Click  to Import a Netsparker Session File.


Click to Export your current Netsparker scan as a Netsparker Sessions file.

Dropdown Arrow

Click to show or hide the above options in the Quick Access Toolbar.

The Ribbon

The Ribbon is displayed at the top of the window.

This table lists and explains the tabs on the ribbon in Netsparker Standard.




From this tab, you can can import Local Scans saved in your PC, or import a scan file from a disc or other device. You can also export Scans to a file on your PC or elsewhere. You can also find out information About Netsparker, and Exit Netsparker Standard.


From this tab, you can perform all the main Netsparker Standard functions:

  • Start Scan – Start a New scan, Schedule a scan, start an Incremental scan, Schedule Incremental scans, or open a New Instance of Netsparker Standard in another window for multiple scans
  • Post Scan – Rest All scans, or launch a Netsparker Hawk Check
  • Scan SessionImport to Netsparker Standard, Export from Netsparker Standard, or Export To Cloud from Standard
  • Tools – Use the Scan Policy Editor and Report Policy Editor, or access further Options


From this tab you can display or hide the panels in the window for completed scans:

  • Activity (default panel)
  • HTTP Request / Response
  • Knowledge Base Viewer
  • Attack Radar
  • Execute SQL Commands
  • Get Shell
  • Exploit LFI
  • Exploit Short Names
  • Controlled Scan
  • Logs (default panel)
  • Sitemap (default panel)
  • Issues (default panel)
  • Knowledge Base (default panel)
  • Progress (default panel)
  • Request Builder
  • Encoder
  • Reset Layout – Resets current layout to the default one

For further information about each of these panels, see panels in the Scan Summary Dashboard.


From this tab, you can download different types of reports in various formats: 

  • Custom
  • Standard
  • Compliance
  • Analysis
  • WAF Rules
  • Lists

For further information, see Report Templates and Lists.


From this tab, you can access Netsparker's technical help. This help can come in the form of:

  • Application – From here you can check if a new version or update of Netsparker or Netsparker's vulnerability database has been released, manage your Netsparker subscription, and disable the What’s New popup.
  • Documentation Extensibility, Reporting, Custom Scripting and Form Authentication APIs, Support, and access to Netsparker's technical Support


From this tab, you can view further scanning options.

  • Tools:
    • Run Controlled Scans
    • Select Send to Request Builder to create or modify imported HTTP requests, send them to the target, and analyze the HTTP responses sent back
    • Go to Identification Page
  • Copy URL or Copy as cURL
  • Open in Browser


Once you click on an Issue, this tab opens Tools and Send To options.

  • Tools:
    • Retest a single vulnerability
    • Copy as cURL
    • Copy sqlmap Command
    • Generate Exploit for CSRF and XSS vulnerabilities
    • Execute SQL Commands to run manual SQL queries to verify vulnerabilities
    • Get Shell to run commands on a shell on the target application
    • Exploit LFI to read contents of files on the target machine
    • Exploit Short Names to define path to be exploited and display results
    • Ignore from this Scan to ignore selected vulnerabilities
  • Send To – Configure Send To Actions
  • WAF Rules – ModSecurity WAF Rules and F5 Big-IP ASM WAF Rules

The Right-click Context Menu

When you right-click an item on the Sitemap or Issues panels, a context menu is displayed that provides a shortcut to several functions on the Ribbon.

The Panels

For further information, see Panels in the Scan Summary Dashboard.

You can search and filter in various places in Netsparker Standard. This feature provides a centralized and quick search for anything in the current scan, including among requests, responses and vulnerabilities.

You can conduct a scan search during a scan, or once it has been completed.

How to Conduct a Scan Search in Netsparker Standard
  1. Open Netsparker Standard.
  2. With a scan running or completed, open the search dialog by pressing CTRL + K. The search dialog is displayed overlaying the scan action beneath.

  1. Enter the word or phrase on which you want to search (in this example, ‘frame’).
    • If the word or phrase is in the scan, results are displayed immediately in filtered categories

    • If the word or phrase does not occur in the scan, the box turns red.

  1. Doubleclick on any search result to display its details in the relevant panel.
  2. Click Esc to close the search dialog.

Dead accurate, fast & easy-to-use Web Application Security Scanner