New Netsparker 3.1 is Available for Download

An overview of Netsparker Web Application Security Scanner Version 3.1 – Full HTML 5 web application support, new security checks for Web 2.0 web applications, automatic CSRF vulnerability detection, detailed analysis of target web applications and much more.

We are very excited to announce the new version 3.1 of Netsparker Web Application Security Scanner. After our major version 3 update, it took us 5 months to release 3.1, however it was worth the wait as  the new version of Netsparker raises the web application security bar to new levels!

Overview of Netsparker 3.1 Features

Full HTML5 Support

One of the most important features in Netsparker 3.1 is the new HTML5 engine. With this new dedicated engine Netsparker users can automatically crawl modern HTML5 web applications much better and identify more vulnerabilities in them. Crawling takes full advantage of new HTML5 specifications and crawls the application with more coverage.

New Web 2.0 Security Checks

Netsparker 3.1 is also able to parse and attack JSON and XML payloads in HTTP request to identify a new type of vulnerabilities in them. These type of HTTP requests are typically used in modern and dynamic web 2.0 applications.

More Detailed Analysis of Target Web Application

The new version of Netsparker will also report much more valuable information about the target web application such as frames with external URL’s, Adobe Flash movies, Java Applets, ActiveX objects, comments in HTML, JavaScript and CSS and much more. Such information is typically sought after by penetration security testers and web application security experts alike since it helps them get a better understanding of the web application they are testing.

Automatic CSRF Vulnerability Detection

We added a new Cross-site Request Forgery engine that’ll help you to spot and address all kinds of variations of this nasty vulnerability.

Improved Logging and Integration with Third Party Tools

We also improved the logging in Netsparker, add added new compatibility with third party tools. In version 3.1 you can configure Netsparker to log all the HTTP requests and responses sent and received during a web security scan. These logs can be exported to Fiddler to further analyse the scan results and the web application behaviour.

Further Details of What is New and Improved in Netsparker 3.1

But this is not everything, in 5 months our team did much more! We worked hard to improve the existing security checks, we improved the accuracy of our scan results and we also ensured that Netsparker kept on delivering false positive free web application security scans. For more information about what is new in version 3.1 refer to the post Netsparker 3.1 Features and Improvements Highlights.

Download 15 Day Trial of Netsparker

Netsparker makes web application security an easy task! It only takes a couple of minutes to launch a security scan with Netsparker and identify vulnerabilities and security in your web applications that could leave you exposed. Download the 15 Day trial edition of Netsparker today and see it for yourself!

Netsparker Version 3.1 Press Release

The Netsparker Web Application Security Scanner Version 3.1 press release is available here: Netsparker Web Application Security Scanner Fully Supports HTML5.

Upgrading your Netsparker Web Application Security Scanner

If you are already using Netsparker Web Application Security Scanner, a pop up window with the upgrade details will pop up the next time you run Netsparker. Alternatively you can always click on Check for Updates from the Help drop down menu to force manual updates as well.

If you have problems with the upgrade or product related queries, get in touch with our awesome support team on support.invicti.com