Invicti enables organizations in every industry to continuously scan and secure all of their web applications and APIs. Invicti provides a comprehensive view of an organization’s entire web application portfolio, and automation and integrations enable customers to achieve broad coverage of thousands of applications. Invicti is headquartered in Austin, Texas, and serves more than 3,500 organizations of all sizes all over the world.
N/A
F5 Distributed Cloud Bot Defense
Score 8.7 out of 10
N/A
F5 Distributed Cloud Bot Defense (formerly Shape Defense, acquired January 2020) provides security to protect a website from bots, fake users, and unauthorized transactions, preventing large scale fraud and eroded user experiences. Companies get visibility, detection and mitigation outcomes to reduce fraud and cloud hosting, bandwidth and compute costs, improve user experiences, and optimize their business based on real human traffic.
Netsparker is very thorough but can take a very long time to scan a web application. It can also take a long time to learn and configure. Its thoroughness is a very good part of the product but if the application does [not] need this thoroughness it is probably a waste of time to run Netsparker on the website.
I'd strongly recommend it, but with a few caveats depending on how mature the team is with behavioral based security tools. One of our fintech clients was getting hit with low volume, widely spread login attempts, below our rate limiting thresholds. F5 Distributed Cloud Bot Defense was able to flag abnormal input timings, inconsistent device fingerprinting and high entropy in field population behavior. You can only imagine the wave of downstream account lockouts this saved the client. On the other end we had a client with a real time trading platform using Graphql over websockets. F5 Distributed Cloud Bot Defense wasn't able to tap into that stream natively. we had to reverse engineer a proxy layer to inspect events. It worked but it was clunky and not officially supported
Netsparker is a product that many security companies use to scan their clients websites. This means it has good reputation and we can use that reputation when we show our Netsparker scan to our clients.
Netsparker is very customizable and allows us to reduce the scan time by making sure we do not spend time scanning technologies that are not being used in the application. Once a set of customizations are configured they can be applied to similar types of applications. This allows us to quickly setup a vulnerability scan of new applications.
Netsparker includes numerous vulnerability points to test for. This means that sometimes thousands of possible vulnerabilities are tested. Other scanners to do not always scan for all of these types of vulnerabilities.
Regularly analyze traffic patterns and bot activity. Use the insights provided by the platform to refine rules and policies.
Configure rules to specify acceptable behavior for user interactions and alter sensitivity levels as appropriate to reduce false positives.
Integrate F5 Bot Defense into our existing security stack, which may include WAFs (Web Application Firewalls) and SIEM (Security Information and Event Management) solutions.
NetSparker support is amazing. When first introducing this software to the team, there was a lot of communication going on between Netsparker consultants and our team. They have answered our questions very efficiently and have had consultants come to our department for training. They are open to suggestions for improvements and enhancements as well.
Official support can sometimes take time to reach the right people. However, once you are in contact with the appropriate experts, the support is excellent, as F5 staff are true specialists. On the other hand, we always receive prompt assistance from our local sales team, who typically help us connect with the right people quickly.
Implementation of Distributed Cloud is accomplished a few different ways, it would pay to meet with the F5 team and map out your implementation prior to acquisition to make sure you Infrastructure and Operations teams are aligned to the approach and requirements.
Our department used to use Veracode as our security scanning software. Compared to Veracode, Netsparker has a very organized dashboard with built-in tools that making collaborating with other teammates very efficient and easy. Another teammate can definitely take over the work I am doing in NetSparker with minimal explanation.
Clodflare bot management was our other obvious option for us. We tested it on a staging version of our RFQ platform. It was great for broad traffic filtering but had a hard time with nuanced differences between real subcontractors and low volume bots mimickingt human input whereas that's where F5 Distributed Cloud Bot Defense thrived
We experience large web/data scraping attack campaigns and F5 Distributed Cloud Bot Defense over the years has helped mitigate these for us and significantly reducing load off of our origin servers.
Also, we experience many large Credential Stuffing attacks and F5 Distributed Cloud Bot Defense helps us stop these attacks and protects our customers.