New OAuth2 Authentication Feature

From March 2019, Netsparker Standard will support the OAuth2 authentication framework. This new feature means that users will now be able to configure scans for websites that require OAuth2 authentication. This is one of the March 2019 Updates for the new release of Netsparker Standard 5.3.

Netsparker is pleased to announce a new feature in our Netsparker Standard 5.3 release. Netsparker Standard now supports the OAuth2 authentication mechanism. OAuth2 is an authorization framework that enables a third-party application to obtain limited access to an HTTP service. This new feature in Netsparker Standard will enable you to configure scans for websites that require OAuth2 authentication. Our OAuth2 authentication mechanism supports all grant types and has a Custom flow option for token based authentication.

OAuth2 Authentication Feature

With the new OAuth2 feature Netsparker automates the login process and means that you can scan Rest APIs or web sites that support this type of authentication. Besides that, Custom flow type allows Netsparker to automate the process of any token based authentication.

OAuth2 Authentication Feature - Custom flow type

For further information, see Configuring OAuth2 Authentication in Netsparker Standard. You can read about the rest of the new features in our 5.3 release in the March 2019 Update for Netsparker Standard and in Netsparker 5.3 – Scan Performance Upgrades.

New OAuth2 Authentication Feature

Related Articles

SQL Injection Cheat Sheet

HTTP security headers: An easy way to harden your web applications

How you can disable directory listing on your web server – and why you should

JSON injection