Netsparker Plans & Editions Integration

There are two editions of the Netsparker web application security scanner:

  • Netsparker Desktop – an on-premises, single user Windows application
  • Netsparker Cloud – a multi-user enterprise and scalable solution available as a hosted and on-premises solution

Both editions use our unique Proof-Based Scanning technology and though they are different, they complement each other, as used by many of our biggest customers.

Typically Netsparker Cloud is integrated into the SDLC, DevOps and live environments to scan thousands of web applications and web services as they are being developed or running in live environments.

Individuals use Netsparker Desktop to conduct manual analysis, exploitation and when they are required to do more advanced testing, such as on an individual component that requires user input. This is why we developed an integration module that allows users to synchronize scan data and vulnerability information between the editions.

Our new Netsparker Team and Enterprise plans empower businesses who will now have access to both and don’t have to decide between solutions. The plans also allow users to share data between the editions using a central data repository.

The New Netsparker Plans

Netsparker Standard – this plan includes Netsparker Desktop, which allows you to scan up to 20 websites

Netsparker Team – this plan includes access to both Netsparker Desktop and Netsparker Cloud, allowing you to scan up to 50 websites

Netsparker Enterprise – this plan is similar to the Netsparker Team plan and is ideal for anyone who manages more than 50 websites

Features and Advantages of the Integration Available with the New Netsparker Plans

Having access to both Netsparker Desktop and Netsparker Cloud means you can use the integration feature to synchronize and share scan and vulnerability data between solutions. We have developed this new feature so that you can:

  • Enjoy the freedom to use either solution for your scans
  • Have a central repository that stores all scan results
  • Easily share scan data with your entire team
  • Conduct manual analysis and advanced tests on Netsparker Cloud scans

Use Either Solution to Launch Vulnerability Scans

This integration module and licensing model affords you the freedom to use either scanning solution for your web vulnerability scans. When you purchase either the Team or Enterprise plan, you will have access to both products. This means that you have both the flexibility you need to run scans en masse with Netsparker Cloud, yet are still able to dive into the finer details of a single target website with Netsparker Desktop.

Central Repository for All Scan Results & Sharing Data With the Team

It’s time to get organized! The integration nature of this update makes it possible for you to import all individually saved Netsparker Desktop scan results directly into Netsparker Cloud, our multi-user, central cloud-based solution.

Netsparker Cloud’s strength is demonstrated by its ability to automatically correlate different scans on the same target, so that when they are imported, it generates a Trend Matrix report that displays trending data about the status of detected vulnerabilities.

Manual Analysis & Advanced Web Security Tests

Since Netsparker Desktop is an on-premises software solution, it has a number of tools that are not available on Netsparker Cloud, including HTTP Request builder, exploitation tools, Controlled Scan, Internal Proxy and more. Developers and security professionals sometimes need access to these tools so they can further troubleshoot and analyse a security issue, and to carry out manual testing.

The integration further allows you to export the results of a scan, including all the vulnerability details, such as the HTTP requests and responses, from Netsparker Cloud to Netsparker Desktop. From there, you can then use its built-in penetration testing tools on the scan results for further analysis and manual tests.

*** This is a Security Bloggers Network syndicated blog from Netsparker, Web Application Security Scanner authored by Robert Abela. Read the original post at: