No more typing reviews! Try our Samantha, our new voice AI agent.

FlexNet Code Insight vs Invicti comparison

Revenera and Invicti are both solutions in the Software Composition Analysis (SCA) category. Revenera is ranked #20, while Invicti is ranked #8 with an average rating of 8.5. Revenera holds a 1.4% mindshare in SCA, compared to Invicti’s 1.6% mindshare. Additionally, 96% of Invicti users are willing to recommend the solution.
FlexNet Code Insight
Read 1 FlexNet Code Insight review
  • 597 Views
  • 597 Comparison Views
0% willing to recommend
Invicti
Read 31 Invicti reviews
  • 4,405 Views
  • 793 Comparison Views
96% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between FlexNet Code Insight and Invicti based on real PeerSpot user reviews.

Find out what your peers are saying about Black Duck, Veracode, Snyk and others in Software Composition Analysis (SCA).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Software Composition Analysis (SCA) Report (Updated: April 2026).
Buyer's Guide
Software Composition Analysis (SCA)
April 2026
Download the complete report
Helped 886,932 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

FlexNet Code Insight
Ranking in Software Composition Analysis (SCA)
20th
Average Rating
4.0
Number of Reviews
1
Ranking in other categories
No ranking in other categories
Invicti
Ranking in Software Composition Analysis (SCA)
8th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
31
Ranking in other categories
Static Application Security Testing (SAST) (10th), Container Security (24th), API Security (8th), Dynamic Application Security Testing (DAST) (4th), Application Security Posture Management (ASPM) (5th)
 

Mindshare comparison

As of April 2026, in the Software Composition Analysis (SCA) category, the mindshare of FlexNet Code Insight is 1.4%, up from 0.7% compared to the previous year. The mindshare of Invicti is 1.6%, up from 0.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Software Composition Analysis (SCA) Mindshare Distribution
ProductMindshare (%)
Invicti1.6%
FlexNet Code Insight1.4%
Other97.0%
Software Composition Analysis (SCA)
 

Featured Reviews

it_user1061121 - PeerSpot reviewer
it_user1061121
Works
A decent web interface for reports, but the snippet style code matching requires too much effort
Due to the "snippet match" nature of the scans, we found that it was too much effort to properly validate and catalog each open source component with every new project/product. Incremental results were also difficult to achieve even after consulting with the vendor. We found there were too many false positives and the code-snippet validator had bugs and presented too many false positives. My experience with this tool has turned me away from "snippet"-focused composition analysis. We have switched to one that uses more complete code signatures that do not require validation and review of findings in most cases.
Read full review
Valavan Sivgalingam - PeerSpot reviewer
Valavan Sivgalingam
Senior Manager, Security Engineering at ESS
Dynamic testing regularly identifies web vulnerabilities and has strong false positive confirmations
It has good false positive confirmations, confirmed issues identification, and proof of exploit-related features as part of it. We use Invicti for these things in our portfolios. The solution includes Proof-Based Scanning technology. Invicti is part of our SSDLC portfolio, and DAST dynamic testing is very important for our web applications and portfolios. For both the API endpoints and web applications, we do regular testing on a monthly basis for all our releases. Invicti does a good job. The only concern is on the performance side, but other than that, we find it really helpful in identifying web vulnerabilities. A full scan takes more time based on your website and other factors, but for us, it takes more than two to three days. The scan performance can be improved upon. When we check with them, they discuss proof-based scanning and related aspects. However, there could be intermittent results that could help us.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It had a web interface into the reporting tools that was decent, and open source components could be reported per project and/or aggregated similar to other software composition tools."
"It had a web interface into the reporting tools that was decent, and open source components could be reported per project and/or aggregated similar to other software composition tools."
"I would definitely recommend it to those who really want to know in-depth details of their applications/products regarding security."
"High level of accuracy and quick scanning."
"It has very good integration with the CI/CD pipeline."
"I am impressed by the whole technology that they are using in this solution. It is really fast. When using netscan, the confirmation that it gives on the vulnerabilities is pretty cool. It is really easy to configure a scan in Netsparker Web Application Security Scanner. It is also really easy to deploy."
"The most attractive feature was the reporting review tool. The reporting review was very impressive and produced very fruitful reports."
"Invicti is a good product, and its API testing is also good."
"Invicti's proactive scanning measures vulnerabilities each time we deploy or push code to a new environment."
"Its ability to crawl a web application is quite different than another similar scanner, and sometimes it can find more vulnerabilities that another scanner can’t."
More Invicti pros
 

Cons

"My experience with this tool has turned me away from "snippet"-focused composition analysis."
"I found the user interface cumbersome and difficult to use."
"Right now, they are missing the static application security part, especially web application security."
"I think that it freezes without any specific reason at times."
"Perhaps the custom attack preparation screen might be improved."
"Right now, they are missing the static application security part, especially web application security."
"Invicti's reporting capabilities need enhancement. We need enterprise-level information instead of repo-level details. Unlike Appiro, Invicti does not provide portfolio-level insights into vulnerability remediation over time."
"Improvement could be made in the area of production."
"Maybe the ability to make a good reporting format is needed."
"It would be better for listing and attacking Java-based web applications to exploit vulnerabilities."
More Invicti cons
 

Pricing and Cost Advice

Information not available
"It is competitive in the security market."
"We are using an NFR license and I do not know the exact price of the NFR license. I think 20 FQDN for three years would cost around 35,000 US Dollars."
"The solution is very expensive. It comes with a yearly subscription. We were paying 6000 dollars yearly for unlimited scans. We have three licenses; basic, business, and ultimate. We need ultimate because it has unlimited scan numbers."
"Invicti is best suited for large enterprises. I don't think small and medium-sized businesses can afford it. Maintenance costs aren't that great."
"Netsparker is one of the costliest products in the market. It would help if they could allow us to scan multiple URLs on the same license."
"I think that price it too high, like other Security applications such as Acunetix, WebInspect, and so on."
"OWASP Zap is free and it has live updates, so that's a big plus."
"We never had any issues with the licensing; the price was within our assigned limits."
More Invicti pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Software Composition Analysis (SCA) solutions are best for your needs.
See recommendations
886,932 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Financial Services Firm
15%
Manufacturing Company
9%
Computer Software Company
7%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business14
Midsize Enterprise4
Large Enterprise13
 

Questions from the Community

Ask a question
Earn 20 points
What is your experience regarding pricing and costs for Netsparker Web Application Security Scanner?
The setup cost is pretty competitive. For example, if you want to talk about the SAST license, it comes to about $150 or sometimes less than $100, depending on the conversion or the number of licen...
See all answers
What needs improvement with Invicti?
At this time, there is nothing that comes to mind. However, most of the products in the market are pretty much neck-to-neck competitors. Speaking about it, there are a couple of factors which they ...
See all answers
What is your primary use case for Invicti?
I have worked on a couple of products, specifically in web application security. I have worked on Invicti, and with respect to PAM, I have worked with BeyondTrust. I have not worked specifically fo...
See all answers
 

Comparisons

Black Duck SCA vs FlexNet Code Insight Logo
Black Duck SCA vs FlexNet Code Insight
Compared 45% of the time
Mend.io vs FlexNet Code Insight Logo
Mend.io vs FlexNet Code Insight
Compared 35% of the time
FOSSA vs FlexNet Code Insight Logo
FOSSA vs FlexNet Code Insight
Compared 14% of the time
Veracode vs FlexNet Code Insight Logo
Veracode vs FlexNet Code Insight
Compared 6% of the time
More FlexNet Code Insight Competitors
Veracode vs Invicti Logo
Veracode vs Invicti
Compared 9% of the time
Acunetix vs Invicti Logo
Acunetix vs Invicti
Compared 8% of the time
OpenText Dynamic Application Security Testing vs Invicti Logo
OpenText Dynamic Application Security Testing vs Invicti
Compared 5% of the time
SonarQube vs Invicti Logo
SonarQube vs Invicti
Compared 5% of the time
Snyk vs Invicti Logo
Snyk vs Invicti
Compared 4% of the time
More Invicti Competitors
 

Product Reports

Buyer's Guide
Software Composition Analysis (SCA)
April 2026
FlexNet Code Insight reportDownload FlexNet Code Insight product report
Buyer's Guide
Invicti
April 2026
Invicti reportDownload Invicti product report
 

Also Known As

No data available
Netsparker
 

Overview

FlexNet Code Insight is a single integrated solution for open source license compliance and security. Find vulnerabilities and remediate associated risk, while you build your products and during their lifecycle. Manage open source license compliance. And add automation to your processes and implement a formal OSS strategy and policy that balances business benefits and risk management.

Revenera

Invicti helps DevSecOps teams automate security tasks and save hundreds of hours each month by identifying web vulnerabilities that matter. Combining dynamic with interactive testing (DAST + IAST) and software composition analysis (SCA), Invicti scans every corner of an app to find what other tools miss with 99.98% accuracy, delivering on the promise of Zero Noise AppSec. Invicti helps discover all web assets — even ones that are lost, forgotten, or created by rogue departments. With an array of out-of-the-box integrations, DevSecOps teams can get ahead of their workloads to hit critical deadlines, improve processes, and communicate more effectively while reducing risk and hitting the ROI goals.

Invicti
 

Sample Customers

Information Not Available
Samsung, The Walt Disney Company, T-Systems, ING Bank
Buyer's Guide
Software Composition Analysis (SCA)
April 2026
Download Free Report
Find out what your peers are saying about Black Duck, Veracode, Snyk and others in Software Composition Analysis (SCA). Updated: April 2026.
DOWNLOAD NOW
886,932 professionals have used our research since 2012.
See our list of best Software Composition Analysis (SCA) vendors.

We monitor all Software Composition Analysis (SCA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.