SUPPORT

Contact Support

OPEN A TICKET

Report Templates

In Netsparker, you can generate and download a series of various types of individual scan reports, including compliance reports from a series of Report Templates.

In Netsparker Enterprise and Netsparker Standard, scan reports are accessed differently:

  • In Netsparker Enterprise, scan reports are accessed from the Recent Scans window.
  • In Netsparker Standard, scan reports are downloaded from the Reporting tab, along with Lists.

This table lists and explains the Report Templates.

Report Template

Description

New Report Template

This is a Netsparker Standard only feature that enables you to customize and name your own report template, using one of the other report templates as a Base Template.

For further information on how to create your own custom report templates using the Custom Reporting API, see Custom Reports.

Detailed Scan Report

This is a detailed report that outlines scan details such as request, response, and vulnerability descriptions, including information on the impact of the vulnerability, remedy procedure, classifications, and proof URLs. This report also includes a summary of which settings were used.

For further information, see Detailed Scan Report.

Executive Summary Report

This is a brief report that includes recommendations, and summaries based on the most recent scan of the website.

For further information, see Executive Summary Report.

HIPAA Compliance Report

This is a report that lists the vulnerabilities included in HIPAA standards, along with their details.

For further information, see HIPAA Compliance Report.

ISO 27001 Compliance Report

This is a report that outlines the vulnerabilities included in the ISO 27001 standard, along with their details.

For further information, see ISO 27001 Compliance Report.

OWASP Top Ten 2013 Report

This is a detailed report that outlines the OWASP Top Ten 2013 vulnerabilities, along with their details.

For further information, see OWASP Top Ten 2013 Report.

OWASP Top Ten 2017 Report

This is a detailed report that outlines the OWASP Top Ten 2017 vulnerabilities, along with their details.

For further information, see OWASP Top Ten 2017 Report.

PCI Compliance Report

This is a report that lists the vulnerabilities that are listed in the PCI classification, along with their details.

For further information, see PCI Compliance Report.

 SANS Top 25 Report

This is a detailed, Netsparker Standard only, report that outlines the CWE/SANS Top 25 vulnerabilities, along with their details.

For further information, see SANS Top 25 Report.

Comparison Report

This is a detailed, Netsparker Standard only, report that includes compared results between more than one scan.

For further information, see Comparison Report.

Knowledge Base Report

This is a report that lists the Knowledge Base details of the scan.

For further information, see  Knowledge Base Report.

F5 BIG-IP ASM WAF Rules

This is a report that lists the vulnerabilities according to the BIG-IP ASM WAF Rules.

For further information, see BIG-IP ASM WAF Rules Report.

ModSecurity WAF Rules

This is a report that lists the vulnerabilities according to the ModSecurity WAF Rules.

For further information, see ModSecurity WAF Rules Report.

For further information on how to modify the way vulnerabilities are reported during a scan, and report them to match your organization's security policies, see Custom Report Policies.

For further information on how to generate and download Vulnerabilities Lists, as well as Scanned URLs and Crawled URLs lists in both Netsparker Enterprise and Netsparker Standard, see Lists.

How to Generate and Download a Report in Netsparker Enterprise
  1. Log in to Netsparker Enterprise
  2. From the main menu, click Scans, then Recent Scans. The Recent Scans window is displayed.

  1. Next to the relevant scan, click Report. The Scan Summary window is displayed.

  1. Click Export. The Export Report dialog is displayed.

  1. From the Report dropdown, select the relevant report.

  1. From the Format dropdown, select an option.

  1. If required, select Exclude Addressed Issues to exclude those issues from any report on which you’ve already taken action.
  2. If required, select Only Confirmed Issues to include in any report only those issues that are confirmed.
  3. Click Export. You can view the Report in the saved location.

How to Generate and Download a Report in Netsparker Standard
  1. Open Netsparker Standard.
  2. From the ribbon, select the File tab. Local Scans are displayed. Doubleclick the relevant scan to display its results. (This will be the first scan you want to add to the report.)[l]
  3. From the Reporting tab, click the icon of the report you want to generate (e.g. HIPAA Compliance Report).

  1. The Save Report As dialog box is displayed. (If you selected Knowledge Base Report in step 1, this step and the next do not apply. Go to step 4.)
  2. Select a save location and click Save. The report is saved.
  3. The Export Report dialog is also displayed at this point, with the Path field already populated from the previous dialog.

  1. From this dialog, you can do the following:
  • In the Path field, change the save location
  • From the Policy dropdown, select a Default or New Report Policy
  • Select to Export as HTML or Export as PDF
  • Enable Open Generated Report to open the report immediately upon saving it (checked by default)
  • Enable Export All Variations to include all vulnerability variations in the report, or check Export Only Confirmed to include only confirmed vulnerabilities
  1. Click Save. The report will open automatically.

If you select Comparison Report in step 1, the following additional steps apply.

  1. The Add Netsparker Session File(s) dialog is displayed.

  1. Select the relevant file, and click Open. The report opens immediately.
How to Use Your Company Logo in a Report in Netsparker Standard

This replaces the Netsparker logo in the report.

  1. Navigate to C:\Program Files (x86)\Netsparker\Resources\Images\.
  2. Replace the mini-logo.gif file with your company's logo. (You can rename the extension of the original file to something else.)
  3. You can now generate reports with your company's logo, without needing to restart Netsparker.

Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO