Compare Editions
ENTERPRISE
INTRASTRUCTURE
FREE EDITION
To whom it is recommended
To whom each edition of N-Stalker was primarily designed for:
Security and audit professionals, IT professionals and service providers, Large and medium organizations, Security consulting and auditing companies.
Web server administrators, IT professionals and service providers, Datacenter and web infrastructure providers, Organizations with simple Web applications.
Small web application owners, bloggers or personal websites.
Security Checks
Brief description of security checks:
(See a detailed comparison here)
(See a detailed comparison here)
It is the most complete edition, containing all security checks: SQL Injection and Code injection (OWASP Top 10), Cross-Site Scripting, Parameter Tampering, Web Server vulnerabilities, 3rd-party packages vulnerabilities, File & Directories analysis, WebDAV, source code or error disclosure. See more.
It provides security checks for your web server infrastructure, including 39,000 signatures, Web Server security check, 3rd-party software component security check, File & Directories security check and a reduced analysis of Cross-site Scripting (path and HTTP parameter injection). See more.
It provides a reduced analysis of your web server infrastructure, including web server security check, 3rd-party component analysis, File & directories and reduced analysis of cross-site scripting. See more.
Spider Engine
How does the spider engine works?
It allows spider crawling throughout the entire application (no restrictions) and creation of web macros for form authentication or interaction purposes. It also provides proxy capabilities for “drive-thru” attacks (navigate, point, click and attack).
It allows spider crawling throughout the entire application (no restrictions) and creation of web macros for form authentication or interaction purposes. It also provides proxy capabilities for “drive-thru” attacks (navigate, point, click and attack).
Restricted analysis of the first 500 pages within the application. No web macro capabilities.
Report Capabilities
What report capabilities are available?
Technical and Executive reports in PDF and RTF formats. Full description and recommendations of each issue is available unrestricted.
Technical and Executive reports in PDF and RTF formats. Full description and recommendations of each issue is available unrestricted.
Restricted reports (brief description and no recommendation on fixing issues) in PDF format.
DB Updates
Frequency and extension of updates
Included 1-year maintenance service within your license, including daily to weekly updates for security checks, 3rd-party software assessment database, web server issues and common attack patterns. Software updates are also included.
Included 1-year maintenance service within your license, including daily to weekly updates for security checks, 3rd-party software assessment database, web server issues and common attack patterns. Software updates are also included.
Free delayed updates for security checks, including restricted 3rd-party software assessment, web server issues and restricted set of common attack patterns. Software updates are also included.
Pricing
Starting at:
(per URL)
(per URL)