This is an archive post from the Netsparker (now Invicti) blog. Please note that the content may not reflect current product names and features in the Invicti offering.
We are very excited to announce the new version 3.1 of Netsparker Web Application Security Scanner. After our major version 3 update, it took us 5 months to release 3.1, however it was worth the wait as the new version of Netsparker raises the web application security bar to new levels!
Overview of Netsparker 3.1 Features
Full HTML5 Support
One of the most important features in Netsparker 3.1 is the new HTML5 engine. With this new dedicated engine Netsparker users can automatically crawl modern HTML5 web applications much better and identify more vulnerabilities in them. Crawling takes full advantage of new HTML5 specifications and crawls the application with more coverage.
New Web 2.0 Security Checks
Netsparker 3.1 is also able to parse and attack JSON and XML payloads in HTTP request to identify a new type of vulnerabilities in them. These type of HTTP requests are typically used in modern and dynamic web 2.0 applications.
More Detailed Analysis of Target Web Application
Automatic CSRF Vulnerability Detection
We added a new Cross-site Request Forgery engine that’ll help you to spot and address all kinds of variations of this nasty vulnerability.
Improved Logging and Integration with Third Party Tools
We also improved the logging in Netsparker, add added new compatibility with third party tools. In version 3.1 you can configure Netsparker to log all the HTTP requests and responses sent and received during a web security scan. These logs can be exported to Fiddler to further analyse the scan results and the web application behaviour.
Further Details of What is New and Improved in Netsparker 3.1
But this is not everything, in 5 months our team did much more! We worked hard to improve the existing security checks, we improved the accuracy of our scan results and we also ensured that Netsparker kept on delivering false positive free web application security scans. For more information about what is new in version 3.1 refer to the post Netsparker 3.1 Features and Improvements Highlights.
Download 15 Day Trial of Netsparker
Netsparker makes web application security an easy task! It only takes a couple of minutes to launch a security scan with Netsparker and identify vulnerabilities and security in your web applications that could leave you exposed. Download the 15 Day trial edition of Netsparker today and see it for yourself!
Netsparker Version 3.1 Press Release
The Netsparker Web Application Security Scanner Version 3.1 press release is available here: Netsparker Web Application Security Scanner Fully Supports HTML5.
Upgrading your Netsparker Web Application Security Scanner
If you are already using Netsparker Web Application Security Scanner, a pop up window with the upgrade details will pop up the next time you run Netsparker. Alternatively you can always click on Check for Updates from the Help drop down menu to force manual updates as well.
If you have problems with the upgrade or product related queries, get in touch with our awesome support team by sending us an email on firstname.lastname@example.org