Try our new research platform with insights from 80,000+ expert users

Apiiro vs ImmuniWeb comparison

Apiiro and ImmuniWeb are both solutions in the Static Application Security Testing (SAST) category. Apiiro is ranked #21 with an average rating of 8.5, while ImmuniWeb is ranked #29 with an average rating of 7.8. Apiiro holds a 0.5% mindshare in SAST, compared to ImmuniWeb’s 0.3% mindshare. Additionally, 100% of Apiiro users are willing to recommend the solution, compared to 85% of ImmuniWeb users who would recommend it.
Apiiro
Read 2 Apiiro reviews
  • 547 Views
  • 332 Comparison Views
100% willing to recommend
ImmuniWeb
Read 7 ImmuniWeb reviews
  • 965 Views
  • 386 Comparison Views
85% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024

ImmuniWeb and Apiiro are key players in cybersecurity and development safety. Based on an analysis, Apiiro has an advantage with advanced features, while ImmuniWeb is competitive with pricing and support.

Features: ImmuniWeb includes robust vulnerability scanning, AI-driven analytics, and noteworthy accuracy. Apiiro offers comprehensive risk assessment, superior integration capabilities, and efficient management of complex environments.

Room for Improvement: ImmuniWeb could improve integration options and reporting capabilities. Apiiro would benefit from streamlined processes and a more intuitive setup, with setup efficiency being a significant concern.

Ease of Deployment and Customer Service: ImmuniWeb is straightforward to deploy, supported by a responsive team. Apiiro provides detailed documentation, but users may find it complex. ImmuniWeb's ease and customer support are highly regarded.

Pricing and ROI: ImmuniWeb is preferred for competitive pricing and ROI for budget-conscious users. Apiiro, despite higher initial costs, offers significant ROI with its feature-rich platform, appealing to those prioritizing comprehensive security.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Apiiro vs. ImmuniWeb Report (Updated: April 2025).
Buyer's Guide
Apiiro vs. ImmuniWeb
April 2025
Download the complete report
Helped 850,028 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Apiiro
Ranking in Static Application Security Testing (SAST)
21st
Average Rating
8.6
Reviews Sentiment
7.7
Number of Reviews
2
Ranking in other categories
Software Composition Analysis (SCA) (10th), API Security (9th), Software Supply Chain Security (8th), Risk-Based Vulnerability Management (12th), Application Security Posture Management (ASPM) (2nd)
ImmuniWeb
Ranking in Static Application Security Testing (SAST)
29th
Average Rating
8.2
Reviews Sentiment
7.8
Number of Reviews
7
Ranking in other categories
Attack Surface Management (ASM) (16th)
 

Mindshare comparison

As of May 2025, in the Static Application Security Testing (SAST) category, the mindshare of Apiiro is 0.5%, up from 0.4% compared to the previous year. The mindshare of ImmuniWeb is 0.3%, down from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST)
 

Featured Reviews

Ryan-Murphy - PeerSpot reviewer
A great secrets detection feature, good visibility, and integrates well
The biggest benefit of Apiiro for us was the visibility it gave us into our GitHub organization, which we didn't have much of before. The benefit of adding Apiiro early is that it would be integrated into our pipeline from the start. Since we have had some of our software products for many years, we would have to do a lot of cleaning up before integrating Apiiro into our developer workflow. Integrating Apiiro early allows us to stay ahead of the curve on security issues and address them as they arise, rather than having a huge backlog for developers to fix. Apiiro's ability to provide visibility into the risk of our application components is great. This was a selling feature for us. Apiiro was a less mature product a little over a year ago when they were still early on in their development. However, they have made fantastic advancements over the last year, which has given us much more visibility into that sort of thing. Apiiro has helped prevent business-critical risks by making recommendations based on what it thinks is a high or critical issue. I think it does a pretty good job at that, but those recommendations still need a manual review from us. In general, if Apiiro flags a critical issue, it is usually pretty close to identifying whether it is business-critical or not. It is something we should review, even if we end up downgrading it. Apiiro raises valid concerns, and I am happy that it does.
Read full review
Vivek Ashvinbhai Pancholi - PeerSpot reviewer
Commendable Solution with Robust Vulnerability Detection Mechanism Suitable for Global Market
The solution helped us with one of our clients in the New York area contacted us about a data breach. In response, we swiftly organized a case meeting involving our client, internal, and email customer support teams. Together, we conducted an incident response, facilitating offline assistance for proper planning and risk management processes. We delved into the details of the data breach, identified how it occurred, and collaborated to rectify the issue. The client expressed satisfaction with the resolution process.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The workflow automation is likely the best aspect of the solution."
"Apiiro's secrets detection feature has saved us several times, which we appreciate greatly."
"After the assessment, you clearly know which assets require penetration testing."
"ImmuniWeb boasts a robust vulnerability detection mechanism, formidable threat mitigation, and an efficient remediation process, incorporating automation techniques and ALM strategies. The solution is highly stable. The solution is scalable. Editing Key Points for Review "Review about ImmuniWeb" What is our primary use case? We use the solution when we face challenges and urgent attention is needed for complex cases from our clients. To address this, we collaborate with the middleware, internal, and client teams to analyze and sort through intricate logs concerning our business cybersecurity program. How has it helped my organization? The solution helped us with one of our clients in the New York area contacted us about a data breach. In response, we swiftly organized a case meeting involving our client, internal, and email customer support teams. Together, we conducted an incident response, facilitating offline assistance for proper planning and risk management processes. We delved into the details of the data breach, identified how it occurred, and collaborated to rectify the issue. The client expressed satisfaction with the resolution process. What is most valuable? ImmuniWeb boasts a robust vulnerability detection mechanism, formidable threat mitigation, and an efficient remediation process, incorporating automation techniques and ALM strategies. It also focuses on consumer satisfaction and operates in English-speaking markets, primarily required by the UAE, the United States, Canada, and Australia, among other developed countries. For how long have I used the solution? We have been using this product for the past one and half years. What do I think about the stability of the solution? The solution is highly stable. I rate it a perfect ten. What do I think about the scalability of the solution? The solution is scalable. I rate it a nine out of ten. How are customer service and support? Support is generally excellent"
"The solution's most valuable feature is reporting."
"The initial setup process is user-friendly."
"I like the fully automated continuous discovery run by ImmuniWeb in the background. We do not need to rerun the same tests or the same scanning against our resources. We need to supply our IP addresses, domain names, and significant resources with special domain names and URLs, and we need to do it only once. Then we always have an up-to-date picture. I also like the integration with our single sign-on system. We do not need to maintain a separate set of usernames or user accounts. We can plug this ImmuniWeb service into our authentication technology, enabling two-factor authentication. We have secure authentication right out of the box. The other important feature I like is the executive view. You can easily switch from a technical view to an executive view and have a helicopter view of the compliance status. We can see how much effort is required and our current status."
"ImmuniWeb is stable."
"The most valuable features are the SLA of Zero false-positives, less time of service development, validation of unlimited patched vulnerabilities, and several others."
 

Cons

"User management is a little bit clunky."
"I would like support for our self-hosted Git server, other than GitHub, just regular Git."
"The deployment process on the cloud is straightforward, while on-premise can be complex. Support is generally excellent, although there can be delays in ticket resolution."
"ImmuniWeb sometimes shows previous scans instead of running tests."
"It would be better if they had an automated tagging feature. The tagging functionality currently requires manual tagging, and that's probably the most needed feature from my standpoint. We also do not have enough tools, enough features, or options to display different resources in the way we need. There are basic grouping and some filtering features, but we still cannot fully separate some flavors of our resources. However, we may not be aware of the latest features."
"The product’s interface for the web applications could be similar to Android and iOS versions."
"A great idea would be to make a mobile application for the ImmuniWeb portal so that all information would be available on the go and from a mobile phone as well. It would be much more convenient."
"Its technical support could be better."
"A great idea would be to support using Discovery on the internal network, allowing delivery of all the features of the current Discovery to internal network resources."
 

Pricing and Cost Advice

Information not available
"The platform is expensive if a large development is involved. However, it is less expensive for scheduled-based testing, quarterly or in a year."
"It is pretty expensive."
"There should be the flexibility to change or add pricing, especially for pay-per-use cases."
"I use the product's free version. The tool costs around 229 dollars."
"It is pretty expensive."
"ImmuniWeb is relatively cheap. It's a competitive price compared to other products in the marketplace. It's worth the money we are paying for it."
"The values of ImmuniWeb are currently significantly below what is valued in the Chilean market for these services and solutions."
report
See which vendors are best for you
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
See recommendations
850,028 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
20%
Financial Services Firm
12%
Comms Service Provider
8%
Manufacturing Company
7%
Financial Services Firm
19%
Computer Software Company
14%
Comms Service Provider
9%
University
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Apiiro?
Apiiro's secrets detection feature has saved us several times, which we appreciate greatly.
See all answers
What is your experience regarding pricing and costs for Apiiro?
My understanding is the pricing is pretty competitive.
See all answers
What needs improvement with Apiiro?
Apiiro recently integrated SaaS, and we would love to see them expand on that. They provide many integrations to different products, including SaaS products such as Snyk. Ideally, Apiiro would incl...
See all answers
What do you recommend for a securing Web Application?
In addition to Sitelock and Immuniweb, another option to consider for a 24/7 automated vulnerability monitoring tool to protect web applications is Modshield SB Modshield SB is a web application fi...
See all answers
What do you like most about ImmuniWeb?
ImmuniWeb is stable.
See all answers
What is your experience regarding pricing and costs for ImmuniWeb?
I use the product's free version. The tool costs around 229 dollars.
See all answers
 

Comparisons

Snyk vs Apiiro Logo
Snyk vs Apiiro
Compared 28% of the time
Cycode vs Apiiro Logo
Cycode vs Apiiro
Compared 20% of the time
Ox Security vs Apiiro Logo
Ox Security vs Apiiro
Compared 16% of the time
Legit Security vs Apiiro Logo
Legit Security vs Apiiro
Compared 9% of the time
SonarQube Server (formerly SonarQube) vs Apiiro Logo
SonarQube Server (formerly SonarQube) vs Apiiro
Compared 8% of the time
More Apiiro Competitors
Acunetix vs ImmuniWeb Logo
Acunetix vs ImmuniWeb
Compared 48% of the time
Qualys Web Application Scanning vs ImmuniWeb Logo
Qualys Web Application Scanning vs ImmuniWeb
Compared 26% of the time
PortSwigger Burp Suite Professional vs ImmuniWeb Logo
PortSwigger Burp Suite Professional vs ImmuniWeb
Compared 14% of the time
Veracode vs ImmuniWeb Logo
Veracode vs ImmuniWeb
Compared 13% of the time
More ImmuniWeb Competitors
 

Product Reports

Buyer's Guide
Application Security Posture Management (ASPM)
April 2025
Apiiro reportDownload Apiiro product report
Buyer's Guide
ImmuniWeb
April 2025
ImmuniWeb reportDownload ImmuniWeb product report
 

Also Known As

Apiiro Control Plane (ASOC), Apiiro API Security (SAST), Apiiro Open Source (SCA)
No data available
 

Overview

Apiiro is the leader in application security posture management (ASPM), unifying risk visibility, prioritization, and remediation with deep code analysis and runtime context.

Companies like Morgan Stanley, SoFi, Rakuten, and Navan leverage Apiiro's ASPM to...

Get complete application and risk visibility: Apiiro takes a deep, code-based approach to ASPM. Its Cloud Application Security Platform analyzes source code and pulls in runtime context to build a continuous, graph-based inventory of application and software supply chain components.

Prioritize risks with code-to-runtime context: With its proprietary Risk Graph™️, Apiiro contextualizes security alerts from third-party tools and native security solutions based on the likelihood and impact of risk to uniquely minimize alert backlogs and triage time by 95%.

Fix and prevent risks that matter—faster: By tying risks to code owners, providing LLM-enriched remediation guidance, and embedding risk-based guardrails directly into developer tools and workflows, Apiiro improves remediation times (MTTR) by up to 85%.

Apiiro's native security solutions include API security testing in code, secrets detection and validation, software bill of materials (SBOM) generation, sensitive data exposure prevention, software composition analysis (SCA), and CI/CD and SCM security.



Apiiro

ImmuniWeb is a global application security company operating in over 50 countries, headquartered in Geneva, Switzerland. Most of ImmuniWeb's customers come from regulated industries, such as banking, healthcare, and e-commerce.

ImmuniWeb® AI Platform leverages award-winning AI and Machine Learning technology for acceleration and intelligent automation of Attack Surface Management and Dark Web Monitoring. The data is later leveraged for threat-aware and risk-based Application Penetration Testing for web, mobile, and API security testing. ImmuniWeb is the only company that offers a contractual zero false-positives SLA with a money-back guarantee. ImmuniWeb’s AI technology is a recipient of numerous awards and recognitions, including Gartner Cool Vendor, IDC Innovator, and the winner of “SC Award Europe” in the “Best Usage of Machine Learning and AI” category.

ImmuniWeb® Community Edition runs over 100,000 daily tests, being one of the largest application security communities. ImmuniWeb SA is an ISO 27001 certified and CREST-accredited company.

https://www.immuniweb.com.

ImmuniWeb
 

Sample Customers

Morgan Stanley, Rakuten, Jack Henry, SoFi, Colgate, Navan
Ebay, United Nations, Next Bank Credit Agricole, Geneva Swiss Bank, Banca Stato, Celgene, SIM University, Heymarket, Swissquote, more...
Buyer's Guide
Apiiro vs. ImmuniWeb
April 2025
Free Report: Apiiro vs. ImmuniWeb
Find out what your peers are saying about Apiiro vs. ImmuniWeb and other solutions. Updated: April 2025.
DOWNLOAD NOW
850,028 professionals have used our research since 2012.
See our Apiiro vs. ImmuniWeb report.
See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.