We performed a comparison between Acunetix and Invicti based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We are able to create a report which shows the PCI DSS scoring and share it with the application teams. Then, they can correlate and see exactly what they need to fix, and why."
"There is a lot of documentation on their website which makes setting it up and using it quite simple."
"It's very user-friendly for the testing teams. It's very easy for them to understand things and to fix vulnerabilities."
"Our developers can run the attacks directly from their environments, desktops."
"The most valuable feature of the solution is the speed at which it can scan multiple domains in just a few hours."
"The tool's most valuable feature is performance."
"Acunetix is the best service in the world. It is easy to manage. It gives a lot of information to the users to see and identify problems in their site or applications. It works very well."
"Their technical support has been very active. If I have an issue, I can reach out to them and get an answer pretty quick."
"Invicti's best feature is the ability to identify vulnerabilities and manually verify them."
"The best features of Invicti are its ability to confirm access vulnerabilities, SSL injection vulnerabilities, and its connectors to other security tools."
"This tool is really fast and the information that they provide on vulnerabilities is pretty good."
"One of the features I like about this program is the low number of false positives and the support it offers."
"Scan, proxify the application, and then detailed report along with evidence and remediations to problems."
"The scanner and the result generator are valuable features for us."
"The most attractive feature was the reporting review tool. The reporting review was very impressive and produced very fruitful reports."
"The scanner is light on the network and does not impact the network when scans are running."
"Acunetix needs to include agent analysis."
"I had some issues with the JSON parameters where it found some strange vulnerabilities, but it didn't alert the person using it or me about these vulnerabilities, e.g., an error for SQL injection."
"Acunetix needs to be dynamic with JavaScript code, unlike Netsparker which can scan complex agents."
"The vulnerability identification speed should be improved."
"Acunetix needs to improve its cost."
"Currently only supports web scanning."
"Tools that would allow us to work more efficiently with the mobile environment, with Android and iOS."
"The solution can be improved by adding the ability to scan subdomains automatically, and by providing reports that can be exported to external databases to share with other solutions."
"Invicti takes too long with big applications, and there are issues with the login portal."
"The scanning time, complexity, and authentication features of Invicti could be improved."
"I think that it freezes without any specific reason at times. This needs to be looked into."
"The custom attack preparation screen might be improved."
"The licensing model should be improved to be more cost-effective. There are URL restrictions that consume our license. Compared to other DAST solutions and task tools like WebInspect and Burp Enterprise, Invicti is very expensive. The solution’s scanning time is also very long compared to other DAST tools. It might be due to proof-based scanning."
"Reporting should be improved. The reporting options should be made better for end-users. Currently, it is possible, but it's not the best. Being able to choose what I want to see in my reports rather than being given prefixed information would make my life easier. I had to depend on the API for getting the content that I wanted. If they could fix the reporting feature to make it more comprehensive and user-friendly, it would help a lot of end-users. Everything else was good about this product."
"The scannings are not sufficiently updated."
"It would be better for listing and attacking Java-based web applications to exploit vulnerabilities."
Acunetix is ranked 15th in Application Security Tools with 26 reviews while Invicti is ranked 20th in Application Security Tools with 25 reviews. Acunetix is rated 7.6, while Invicti is rated 8.2. The top reviewer of Acunetix writes "Fantastic reporting features hindered by slow scanning ". On the other hand, the top reviewer of Invicti writes "A customizable security testing solution with good tech support, but the price could be better". Acunetix is most compared with OWASP Zap, Tenable.io Web Application Scanning, PortSwigger Burp Suite Professional, Fortify WebInspect and SonarQube, whereas Invicti is most compared with OWASP Zap, PortSwigger Burp Suite Professional, Tenable.io Web Application Scanning, Qualys Web Application Scanning and Fortify WebInspect. See our Acunetix vs. Invicti report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.