• Home
  • Acunetix vs. Mend.io

Acunetix vs Mend.io comparison

Cancel
You must select at least 2 products to compare!
Invicti Logo
Acunetix
Read 26 Acunetix reviews
4,925 views|3,728 comparisons
91% willing to recommend
Mend.io Logo
Mend.io
Read 29 Mend.io reviews
10,208 views|5,972 comparisons
96% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Acunetix vs. Mend.io
May 2024
Executive Summary

We performed a comparison between Acunetix and Mend.io based on real PeerSpot user reviews.

Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Acunetix vs. Mend.io Report (Updated: May 2024).
Download the complete report
769,662 professionals have used our research since 2012.
Featured Review
SivaPrakash
Fantastic reporting features hindered by slow scanning
ZvikaRonen
It has good dashboard and management views, and it is helpful for early fixing and post-production management
It saves a lot of money with early fixing. If you can figure out an open-source bug earlier, rather than in production, it can save a lot of,... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Our developers can run the attacks directly from their environments, desktops.""I haven't seen reporting of that level in any other tool.""One of the features that I feel is groundbreaking, that I would like to see expanded on, is the IAS feature: The Interactive Application Security Testing module that gets loaded onto an application on a server, for more in-depth, granular findings. I think that is really neat. I haven't seen a lot of competitors doing that.""The usability and overall scan results are good.""Their technical support has been very active. If I have an issue, I can reach out to them and get an answer pretty quick.""It's very user-friendly for the testing teams. It's very easy for them to understand things and to fix vulnerabilities.""Acunetix is the best service in the world. It is easy to manage. It gives a lot of information to the users to see and identify problems in their site or applications. It works very well.""Acunetix has an awesome crawler. It gives a referral site map of near targets and also goes really deep to find all the inputs without issues. This was valuable because it helped me find some files or directories, like web admin panels without authentication, which were hidden."

More Acunetix Pros →

"It gives us full visibility into what we're using, what needs to be updated, and what's vulnerable, which helps us make better decisions.""The results and the dashboard they provide are good.""Attribution and license due diligence reports help us with aggregating the necessary data that we, in turn, have to provide to satisfy the various licenses copyright and component usage disclosures in our software.""We use a lot of open sources with a variety of containers, and the different open sources come with different licenses. Some come with dual licenses, some are risky and some are not. All our three use cases are equally important to us and we found WhiteSource handles them decently.""Enables scanning/collecting third-party libraries and classifying license types. In this way we ensure our third-party software policy is followed.""We set the solution up and enabled it and we had everything running pretty quickly.""The best feature is that the Mend R&D team does their due diligence for all the vulnerabilities. In case they observe any important or critical vulnerabilities, such as the Log4j-related vulnerability, we usually get a dedicated email from our R&D team saying that this particular vulnerability has been exploited in the world, and we should definitely check our project for this and take corrective actions.""For us, the most valuable tool was open-source licensing analysis."

More Mend.io Pros →

Cons
"The solution's pricing could be better.""There is room for improvement in website authentication because I've seen other products that can do it much better.""The pricing is a bit on the higher side.""Acunetix needs to be dynamic with JavaScript code, unlike Netsparker which can scan complex agents.""We have had issues during upgrades where their scans worked on some apps better with previous versions. Then, we had to work with their tech support, who were great, to get it fixed for the next version.""The solution can be improved by adding the ability to scan subdomains automatically, and by providing reports that can be exported to external databases to share with other solutions.""When monitoring the traffic we always have issues with the bandwidth consumption and the throttling of traffic.""Currently only supports web scanning."

More Acunetix Cons →

"If anything, I would spend more time making this more user-friendly, better documenting the CLI, and adding more examples to help expand the current documentation.""The dashboard UI and UX are problematic.""WhiteSource Prioritize should be expanded to cover more than Java and JavaScript.""Some detected libraries do not specify a location of where in the source they were matched from, which is something that should be enhanced to enable quicker troubleshooting.""We specifically use this solution within our CICD pipelines in Azure DevOps, and we would like to have a gate so that if the score falls below a certain value then we can block the pipeline from running.""The turnaround time for upgrading databases for this tool as well as the accuracy could be improved.""At times, the latency of getting items out of the findings after they're remediated is higher than it should be.""We have been looking at how we could improve the automation to human involvement ratio from 60:40 to 70:30, or even potentially 80:20, as there is room for improvement here. We are discussing this internally and with Mend; they are very accommodating to us. We think they openly receive our feedback and do their best to implement our thoughts into the roadmap."

More Mend.io Cons →

Pricing and Cost Advice
  • "When we looked at all other vendors and what they were asking for, to provide a third of what Acunetix was capable of doing, it was an easy decision... But now that it's coming to a cost where it's line with market value, it becomes more of a competition... Acunetix is raising the cost of licensing. It's 3.5 times what we were initially quoted."
  • "Acunetix was around the same price as all the other vendors we looked at, nothing special."
  • "The pricing and licensing are reasonable to a point. In order to run multiple scans at a time, we are going to have to purchase a 100 count license, which is an overkill. Though, compared to what we were paying for, the cost seems reasonable."
  • "All things considered, I think it has a good price/value ratio."
  • "The costs aren't very expensive. It costs around $3000 or $4000."
  • "I would say that Acunetix is expensive because there are products on the market with similar features that are equally or better-priced."
  • "The pricing is a little high, and moreover, it's kind of domain-based."
  • "When compared with other products, the pricing is a little bit high. But it gives value for the price. It serves the purpose and is worthwhile for the price we pay."

    • More Acunetix Pricing and Cost Advice →

  • "We are paying a lot of money to use WhiteSource. In our company, it is not easy to argue that it is worth the price. ​"
  • "The version that we are using, WhiteSource Bolt, is a free integration with Azure DevOps."
  • "Pricing is competitive."
  • "The solution involves a yearly licensing fee."
  • "As we were using an SaaS-based service, the solution must be scalable, although my understanding is that this is based on the licensing model one is using."
  • "WhiteSource is much more affordable than Veracode."
  • "This is an expensive solution."
  • "When comparing the price of WhiteSource to the competition it is priced well. The cost for 50 users is approximately $18,000 annually."

    • More Mend.io Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
    See Recommendations
    769,662 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Acunetix Vulnerability Scanner?
    Top Answer:The tool's most valuable feature is scan configurations. We use it for external physical applications. The scanning time depends on the application's code.
    Read all 25 answers   →
    What needs improvement with Acunetix Vulnerability Scanner?
    Top Answer:There are some versions of the solution that are not as stable as others.
    Read all 20 answers   →
    What is your primary use case for Acunetix Vulnerability Scanner?
    Top Answer:We use the product for dynamic analysis. It also helps us to scan web applications.
    Read all 23 answers   →
    How does WhiteSource compare with SonarQube?
    Top Answer:Red Hat Ceph does well in simplifying storage integration by replacing the need for numerous storage solutions. This solution allows for multiple copies of replicated and coded pools to be kept, easy… more »
    How does WhiteSource compare with Black Duck?
    Top Answer:We researched Black Duck but ultimately chose WhiteSource when looking for an application security tool. WhiteSource is a software solution that enables agile open source security and license… more »
    What do you like most about Mend.io?
    Top Answer:The best feature is that the Mend R&D team does their due diligence for all the vulnerabilities. In case they observe any important or critical vulnerabilities, such as the Log4j-related… more »
    Read all 23 answers   →
    Ranking
    17th
    out of 74 in Application Security Tools
    Views
    4,925
    Comparisons
    3,728
    Reviews
    6
    Average Words per Review
    291
    Rating
    8.5
    5th
    out of 74 in Application Security Tools
    Views
    10,208
    Comparisons
    5,972
    Reviews
    10
    Average Words per Review
    1,324
    Rating
    8.5
    Comparisons
    OWASP Zap logo
    OWASP Zap vs. Acunetix
    Compared 17% of the time.
    HCL AppScan logo
    HCL AppScan vs. Acunetix
    Compared 8% of the time.
    Fortify WebInspect logo
    Fortify WebInspect vs. Acunetix
    Compared 7% of the time.
    More Acunetix Competitors   →
    SonarQube logo
    SonarQube vs. Mend.io
    Compared 26% of the time.
    Black Duck logo
    Black Duck vs. Mend.io
    Compared 17% of the time.
    Snyk logo
    Snyk vs. Mend.io
    Compared 9% of the time.
    Veracode logo
    Veracode vs. Mend.io
    Compared 9% of the time.
    Checkmarx One logo
    Checkmarx One vs. Mend.io
    Compared 8% of the time.
    More Mend.io Competitors   →
    Also Known As
    AcuSensor
    WhiteSource, Mend SCA
    Learn More
    Invicti
    Mend.io
    Overview

    Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.

    Mend.io is a software composition analysis tool that secures what developers create. The solution provides an automated reduction of the software attack surface, reduces developer burdens, and accelerates app delivery. Mend.io provides open-source analysis with its in-house and other multiple sources of software vulnerabilities. In addition, the solution offers license and policy violation alerts, has great pipeline integration, and, since it is a SaaS (software as a service), it doesn’t require you to physically maintain servers or data centers for any implementation. Not only does Mend.io reduce enterprise application security risk, it also helps developers meet deadlines faster.

    Mend.io Features

    Mend.io has many valuable key features. Some of the most useful ones include:

    • Vulnerability analysis
    • Automated remediation
    • Seamless integration
    • Business prioritization
    • Limitless scalability
    • Intuitive interface
    • Language support
    • Integration
    • Continuous monitoring
    • Remediation suggestions
    • Customization

    Mend.io Benefits

    There are many benefits to implementing Mend.io. Some of the biggest advantages the solution offers include:

    • Easy to use: The Mend.io platform is very user-friendly and easy to set up.
    • Third-party libraries: The solution eases the process of keeping track of all the used third-party dependencies within a product. It not only scans for the pure occurrence (also transitively) but also takes care of licenses and vulnerabilities.
    • Static code analysis: With Mend.io’s static code analysis, you can quickly identify security weaknesses in custom code across desktop, web, and mobile applications.
    • Broad support: Mend.io provides 27 different programming languages and various programming frameworks.
    • Easy integration: Mend.io makes integration very easy with existing DevOps environments and CI/CD pipelines so developers don’t need to manually configure or trigger the scan.
    • Ultra-fast scanning engine: The solution’s scanning engine generates results up to ten times faster than legacy SAST solutions.
    • Unified developer experience: Mend.io has a unified developer experience inside the code repository that shows side-by-side security alerts and remediation suggestions for custom code and open-source code.

    Reviews from Real Users

    Below are some reviews and helpful feedback written by PeerSpot users currently using the Mend.io solution.

    Jeffrey H., System Manager of Cloud Engineering at Common Spirit, says, “Finding vulnerabilities is pretty easy. Mend.io (formerly WhiteSource) does a great job of that and we had quite a few when we first put this in place. Mend.io does a very good job of finding the open-source, checking the versions, and making sure they're secure. They notify us of critical high, medium, and low impacts, and if anything is wrong. We find the product very easy to use and we use it as a core part of our strategy for scanning product code moving toward release.”

    PeerSpot reviewer Ben D., Head of Software Engineering at a legal firm, mentions, “The way WhiteSource scans the code is great. It’s easy to identify and remediate open source vulnerabilities using this solution. WhiteSource helped reduce our mean time to resolution since we adopted the product. In terms of integration, it's pretty easy.”

    An IT Service Manager at a wholesaler/distributor comments, “Mend.io provides threat detection and an excellent UI in a highly stable solution, with outstanding technical support.”

    Another reviewer, Kevin D., Intramural OfficialIntramural at Northeastern University, states, "The vulnerability analysis is the best aspect of the solution."

    Sample Customers
    Joomla!, Digicure, Team Random, Credit Suisse, Samsung, Air New Zealand
    Microsoft, Autodesk, NCR, Target, IBM, vodafone, Siemens, GE digital, KPMG, LivePerson, Jack Henry and Associates
    Top Industries
    REVIEWERS
    Financial Services Firm33%
    Comms Service Provider13%
    Computer Software Company13%
    Insurance Company7%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Financial Services Firm11%
    Government9%
    Comms Service Provider7%
    REVIEWERS
    Computer Software Company33%
    Financial Services Firm11%
    Wholesaler/Distributor6%
    University6%
    VISITORS READING REVIEWS
    Financial Services Firm17%
    Computer Software Company16%
    Manufacturing Company10%
    Insurance Company5%
    Company Size
    REVIEWERS
    Small Business42%
    Midsize Enterprise19%
    Large Enterprise38%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise19%
    Large Enterprise59%
    REVIEWERS
    Small Business36%
    Midsize Enterprise7%
    Large Enterprise57%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise14%
    Large Enterprise67%
    Buyer's Guide
    Acunetix vs. Mend.io
    May 2024
    Free Report: Acunetix vs. Mend.io
    Find out what your peers are saying about Acunetix vs. Mend.io and other solutions. Updated: May 2024.
    DOWNLOAD NOW
    769,662 professionals have used our research since 2012.

    Acunetix is ranked 17th in Application Security Tools with 26 reviews while Mend.io is ranked 5th in Application Security Tools with 29 reviews. Acunetix is rated 7.6, while Mend.io is rated 8.4. The top reviewer of Acunetix writes "Fantastic reporting features hindered by slow scanning ". On the other hand, the top reviewer of Mend.io writes "Easy to use, great for finding vulnerabilities, and simple to set up". Acunetix is most compared with OWASP Zap, Tenable.io Web Application Scanning, PortSwigger Burp Suite Professional, HCL AppScan and Fortify WebInspect, whereas Mend.io is most compared with SonarQube, Black Duck, Snyk, Veracode and Checkmarx One. See our Acunetix vs. Mend.io report.

    See our list of best Application Security Tools vendors.

    We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.