"Overall, it's a very good tool and a very good engine."
"Acunetix has an awesome crawler. It gives a referral site map of near targets and also goes really deep to find all the inputs without issues. This was valuable because it helped me find some files or directories, like web admin panels without authentication, which were hidden."
"It's very user-friendly for the testing teams. It's very easy for them to understand things and to fix vulnerabilities."
"It can operate both as a standalone and it can be integrated with other applications, which makes it a very versatile solution to have."
"There is a lot of documentation on their website which makes setting it up and using it quite simple."
"The scalability is good. The scalability is more than good because it can operate both as a standalone and it can be integrated as part of applications. So that really makes it a very, very versatile solution to have."
"I haven't seen reporting of that level in any other tool."
"Picks up weaknesses in our app setups."
"All of the features are great."
"The solution is open source and has many small targetted penetration tests that have been written by many people that are useful. You can choose different subjects for the test, such as Oracle databases or Apache servers."
"The most valuable feature for us is the support for testing Linux-based web server components."
"Rapid7 Metasploit is a useful product."
"The reporting on the solution is good."
"The solution limits the number of scans. It would be much better if we could have unlimited scans."
"When monitoring the traffic we always have issues with the bandwidth consumption and the throttling of traffic."
"While we do have it integrated with other solutions, it could still offer more integrations."
"The vulnerability identification speed should be improved."
"There is room for improvement in website authentication because I've seen other products that can do it much better."
"I had some issues with the JSON parameters where it found some strange vulnerabilities, but it didn't alert the person using it or me about these vulnerabilities, e.g., an error for SQL injection."
"Currently only supports web scanning."
"The jargon used makes it difficult for project managers to understand the issues, and the technical explanations used make it difficult for developers to understand issues. These things should be simplified much more. That would be very helpful for us when explaining to them what needs to be fixed. The report output needs to be simplified."
"Rapid7 Metasploit can add a GUI feature because it is only available online."
"The solution is not very scalable, it does not provide any automation to be able to scale it."
"At the time I was using it, the graphical user interface needed some improvements."
"Better automation capabilities would be an improvement."
"The solution should improve the responsiveness of its live technical support."
Acunetix by Invicti is ranked 9th in Vulnerability Management with 10 reviews while Rapid7 Metasploit is ranked 10th in Vulnerability Management with 5 reviews. Acunetix by Invicti is rated 7.2, while Rapid7 Metasploit is rated 7.6. The top reviewer of Acunetix by Invicti writes "We are getting notably fewer false positives than previously, but reporting output needs to be simplified". On the other hand, the top reviewer of Rapid7 Metasploit writes "Straightforward to set up, and helpful for moving from development to production". Acunetix by Invicti is most compared with OWASP Zap, PortSwigger Burp Suite Professional, Veracode, Fortify WebInspect and HCL AppScan, whereas Rapid7 Metasploit is most compared with Tenable Nessus, Rapid7 InsightVM, Wireshark, Darktrace and Tenable SC. See our Acunetix by Invicti vs. Rapid7 Metasploit report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
