Acunetix Reviews

Name: Acunetix
Brand: Invicti
Rating: 3.9 (37 reviews)

Vendor: Invicti

3.9 out of 5

37 reviews
87% willing to recommend

Leave a review

What is Acunetix?

Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.

Get the Acunetix Buyer's Guide and find out what your peers are saying about Acunetix, SonarQube, Snyk and more!

Acunetix is the #6 ranked solution in top DevSecOps solutions, #9 ranked solution in AST tools, #14 ranked solution in application security solutions, and #25 ranked solution in top Vulnerability Management solutions. PeerSpot users give Acunetix an average rating of 7.8 out of 10. Acunetix is most commonly compared to SonarQube: Acunetix vs SonarQube. Acunetix is popular among the large enterprise segment, accounting for 56% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 15% of all views.

Helped 879,310 peers since 2012

Featured Acunetix reviews

Rahul Kumar

Senior Engineer - Penetration Tester at a government with 10,001+ employees

The best feature Acunetix offers is the centralized dashboard and the quality of reports it generates, which includes various options for selecting reports and developer options for directly sharing the reports with developers. The centralized dashboard of Acunetix gives visibility into the security aspects of mass applications; for instance, with more than 200 applications, it provides a valuable overview of findings and necessary fixes, along with a high-level summary that helps us achieve compliance through monthly and sometimes weekly scanning. In terms of reporting, Acunetix is excellent because it can generate different types of reports, such as an executive summary report, detailed reports, and developer reports that can be shared directly with developers. Acunetix positively impacts my organization by helping identify outdated libraries and applications, including legacy applications vulnerable to old attacks based on OWASP Top 10, thus aiding in compliance checks for PCI DSS and OWASP. Acunetix provides a centralized report with compliance-related aspects and a vulnerability timeline, effectively helping reduce vulnerabilities and save time.

Read full review

Himanshu_Tyagi

Lead Cybersecurity at TBO

The crawling option in Acunetix is really good because whenever a scan is initiated, the crawling option provides good coverage about the vulnerabilities identified in the application. The attack option that comes after crawling is quite good. When the application is configured in authenticated scan mode with Acunetix, it provides good visibility about the security vulnerabilities in the application. The experience with Qualys Total Cloud was really good, as when Qualys Guard was used to scan cloud security assets, it identified the vulnerabilities and helped differentiate between valid findings and invalid findings. Qualys Guard is called Total Cloud, which means cloud assets are scanned regardless of any environment, whether it is GCP, AWS, or Azure.

Read full review

KashifJamil

CEO at Xcelliti

Acunetix has a very good ratio of fewer false positives, so users don't need to retest everything. Acunetix operates smoothly with no interruptions required, and it performs at 100% efficiency without issues in scanning anything. The solution is excellent at detecting SQL injection and cross-site scripting vulnerabilities. Acunetix integrates with every type of tool, including CI/CD tools, offering 100% integration in DevOps environments. The main benefit of Acunetix is that at the first level, users can address security issues related to penetration testing, allowing them to expose vulnerabilities and ensure all required testing is completed with very few false positives.

Read full review

Acunetix mindshare

Product category:

As of December 2025, the mindshare of Acunetix in the Application Security Tools category stands at 2.4%, down from 2.5% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Application Security Tools Market Share Distribution
Product	Market Share (%)
Acunetix	2.4%
SonarQube	19.2%
Checkmarx One	10.2%
Other	68.2%

Application Security Tools

PeerResearch reports based on Acunetix reviews

Type	Title	Date
Category	Application Security Tools	Dec 30, 2025	Download
Product	Reviews, tips, and advice from real users	Dec 30, 2025	Download
Comparison	Acunetix vs SonarQube	Dec 30, 2025	Download
Comparison	Acunetix vs Veracode	Dec 30, 2025	Download
Comparison	Acunetix vs Checkmarx One	Dec 30, 2025	Download

Valuable Features

Acunetix offers a web-based interface with scheduling capabilities for efficient testing. Its distinguishing features include Interactive Application Security and Login Sequence Recording. Users appreciate its fast scanning, reporting capabilities, and integration with other systems. Acunetix effectively identifies vulnerabilities while minimizing false positives, providing valuable insights and reports. Its scalability, accuracy, and user-friendly design enhance usability, making it a comprehensive tool for organizations seeking to improve security and conduct penetration testing efficiently.

"By helping me patch vulnerabilities, Acunetix has led to measurable outcomes like time saved and fewer incidents."
"Since implementing Acunetix, I have seen improvements as we have discovered real vulnerabilities and threats on our web application server, which is very critical to our organization."
"If an organization has 100 plus applications and wants to use an automated scanner, they should definitely go ahead with Acunetix because it is very cost-effective and will save time compared to focusing on other solutions and performing manual security assessments."

Room for Improvement

Acunetix would benefit from enhancements to its Interactive Application Security Testing module, database updates, more advanced manual replication tools, and reduced false positives. It should improve scanning speed, customization, and report simplification. The pricing model and licensing flexibility are concerns for users, who also desire better integration with other platforms, expanded mobile app compatibility, and subdomain scanning capabilities. Customer support and the handling of false positives need attention, while bandwidth consumption and target limits could be optimized.

"I think Acunetix needs improvement since it is now working with Invicti, so the price list will need to be reconsidered."
"Acunetix may need to reconsider the cost or price compared to other vendors."
"Improving the handling of false positives would be beneficial because it can be challenging to trust the findings flagged by Acunetix, and those findings must be manually validated."

ROI

Many organizations report positive ROI from Acunetix. It enhances security processes, identifies vulnerabilities, and saves time. Its automation reduces reliance on manual testers, although a combination of both methods is necessary. Acunetix's use in maintaining security at application releases is highly valued, and its distributed cost is effective in minimizing risks. Users appreciate improved security posture and cost savings through reduced effort for bulk application scanning and threat identification on web servers.

Pricing

Enterprise users have mixed experiences with Acunetix pricing. While some initially found it cost-effective, recent increases and complex licensing models have made it expensive compared to competitors. The annual subscription cost varies, influenced by the number of domains or subdomains. Some users report that additional costs arise for specific needs, like technical support. Discounts and special licensing models for certain companies are available, but clarity on pricing details is needed.

"The price is exceptionally high."
"The solution is expensive."
"The cost is based on two types of licenses, ConsultLite, and ConsultPlus, as well as the number of domains that are scanned."

Popular Use Cases

Acunetix is primarily used for dynamic application security testing and web vulnerability scanning. Many organizations, including global publishers and FinTech companies, employ it for penetration testing, code assessments, and compliance with standards like PCI DSS. It is integrated into existing security measures to detect issues like SQL injections and cross-site scripting. Many users, such as consultants and IT managers, depend on its automated approach for efficient security evaluations across various applications globally.

Service and Support

Acunetix's customer service and support are generally responsive and helpful, though there are mixed experiences. Many find the technical support efficient, with good response times and effective assistance. Some users report needing to use resellers for better service. While some appreciate the active and fast support from their team in Malta, others find response times slow. Communication issues and backlogs can lead to delays in addressing inquiries. Satisfaction levels vary, ranging from high to moderate.

Deployment

Many found Acunetix's initial setup straightforward and quick, often requiring less than an hour. Some mentioned challenges with upgrades and on-premise deployment, citing a need for improved automation and compatibility with non-Windows systems. Support and documentation were praised, yet some desired a more guided installation process through a wizard. While some faced issues with complex environments, the overall sentiment indicated ease of installation for those familiar with the process.

Scalability

Acunetix demonstrates strong scalability. Users find it adaptable to different environments with ease, accommodating an expanding number of applications and users. While some note it handles larger workloads well, others emphasize it requires proper licensing for optimal performance. Many appreciate its flexibility and effectiveness in supporting expanding IT infrastructures. The cloud version is noted for providing better scalability than the desktop version, making it suitable for various organizations’ needs.

Stability

Acunetix demonstrates excellent stability with no service drops or critical issues. Users note consistent performance, reliable scans, and minimal false positives or negatives. Few have assigned maintenance tasks and described the process as straightforward. While issues have occurred during updates, including compatibility problems with certain applications, users report effective technical support for resolution. Stability ratings are high, with few reports of bugs or glitches. Users consider it a reliable tool in their experience.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Acunetix Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company Size	Count
Small Business	12
Midsize Enterprise	6
Large Enterprise	15

By reviewers

By visitors reading reviews
Company Size	Count
Small Business	198
Midsize Enterprise	135
Large Enterprise	431

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

12%

Manufacturing Company

10%

University

Government

Retailer

Educational Organization

Comms Service Provider

Healthcare Company

Performing Arts

Energy/Utilities Company

Real Estate/Law Firm

Media Company

Outsourcing Company

Non Profit

Transportation Company

Recreational Facilities/Services Company

Legal Firm

Hospitality Company

Insurance Company

Pharma/Biotech Company

Wholesaler/Distributor

Construction Company

Wellness & Fitness Company

Renewables & Environment Company

Training & Coaching Company

Aerospace/Defense Firm

Compare Acunetix with alternative products

Learn more about Acunetix

Acunetix was previously known as AcuSensor.

Acunetix customers

Joomla!, Digicure, Team Random, Credit Suisse, Samsung, Air New Zealand

Related questions

If you had to both encrypt and compress data during transmission, which would you do first and why?

When evaluating Application Security, what aspect do you think is the most important to look for?

What are the Top 5 cybersecurity trends in 2022?

What are the threats associated with using ‘bogus’ cybersecurity tools?

We're evaluating Tripwire, what else should we consider?

Which application security solutions include both vulnerability scans and quality checks?

Is SonarQube the best tool for static analysis?

Why Do I Need Application Security Software?

Which Email Security enterprise solution would you choose: Cisco Secure Email vs Forcepoint Email Security vs Barracuda Email Security Gateway?

SAST vs. DAST: Which is better for application security testing?

Acunetix Reviews Summary
Author info	Rating	Review Summary
Senior Engineer - Penetration Tester at a government with 10,001+ employees	3.5	I've used Acunetix for over five years to scan web applications efficiently, appreciating its detailed reports and centralized dashboard, though support and duplicate findings need improvement; overall, it saves time and supports compliance effectively.
Lead Cybersecurity at TBO	3.5	I've used Acunetix primarily for application security and found it effective and affordable, though false positives remain a concern. It's reliable, scalable, and saves time over manual assessments, especially with authenticated and continuous scanning features.
CEO at Xcelliti	4.5	I use Acunetix primarily for penetration and security testing, benefiting from its efficient vulnerability detection, minimal false positives, and excellent integration capabilities. Improvements needed include reducing false positives and enhancing integration with newer tools like GitHub.
Cybersecurity Team Leader at EMAK For Integrated Solutions	5.0	I've used Acunetix for four years to scan web vulnerabilities accurately, helping us patch issues quickly. It's stable, scalable, easy to set up, and integrates well, though pricing may need reconsideration after its integration with Invicti.
Cybersecurity Team Leader at EMAK For Integrated Solutions	5.0	I've used Acunetix for three years to scan web vulnerabilities, and its accuracy and scalability have greatly benefited my organization, though the cost is high; overall, it's reliable and effective, making it worth the investment.
Information Security Engineer at Tübitak Bilgem	4.5	I use Acunetix primarily for penetration testing and find it comprehensive for web applications, supporting manual interventions and specific scenarios like CAPTCHA. It saves us time by covering attack surfaces, though I’ve encountered some update issues.
Head of Operations, Supply Chain at Lyreco Deutschland GmbH	3.0	Acunetix is user-friendly and beneficial for security engineers, enabling quick learning and effective application scanning and report generation. However, the deployment process needs improvement, particularly in creating proxy connections, and it's better suited for smaller companies compared to competitors.
Senior Business Development Manager at Intouch World	3.5	I use Acunetix primarily to identify client vulnerabilities. Its best feature is its ability to identify vulnerabilities effectively, though there are some notable false positives. Improvements in partnering are needed, but it has enhanced our security posture.

Title	Rating	Mindshare	Recommending
SonarQube	4.0	19.2%	83%	134 interviews Add to research
Snyk	4.1	6.1%	100%	50 interviews Add to research

Acunetix Reviews

What is Acunetix?

Featured Acunetix reviews

Acunetix mindshare

PeerResearch reports based on Acunetix reviews

Valuable Features

Room for Improvement

ROI

Pricing

Popular Use Cases

Service and Support

Deployment

Scalability

Stability

Review data by company size

Top industries

Compare Acunetix with alternative products

Learn more about Acunetix

Acunetix customers

Related questions

Product Categories

Popular Comparisons