ImmuniWeb vs Snyk comparison

ImmuniWeb and Snyk are both solutions in the Static Application Security Testing (SAST) category. ImmuniWeb is ranked #24 with an average rating of 8.7, while Snyk is ranked #7 with an average rating of 7.7. ImmuniWeb holds a 0.3% mindshare in SAST, compared to Snyk’s 4.5% mindshare. Additionally, 85% of ImmuniWeb users are willing to recommend the solution, compared to 100% of Snyk users who would recommend it.

ImmuniWeb

Read 7 ImmuniWeb reviews

887 Views
75 Comparison Views

85% willing to recommend

Snyk

Read 47 Snyk reviews

7,682 Views
543 Comparison Views

100% willing to recommend

ImmuniWeb

Snyk

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jun 4, 2025

ImmuniWeb and Snyk are prominent cybersecurity tools, with ImmuniWeb focusing on comprehensive application security and Snyk emphasizing integrated tools for developers. While ImmuniWeb is praised for affordability and customer support, Snyk is perceived to offer more long-term value due to its advanced features and developer-friendly integrations, even at a higher cost.

Features: ImmuniWeb offers an extensive vulnerability assessment, continuous monitoring, and a holistic approach to application security. Snyk excels in seamless integration, focusing on open-source dependencies, and enhancing flexibility and scalability in diverse environments.

Room for Improvement: ImmuniWeb could enhance integration capabilities and scalability. Improving its feature set to match advanced developer needs is also important. Snyk should work on providing more personalized service, expanding customer support options, and addressing high pricing concerns.

Ease of Deployment and Customer Service: ImmuniWeb ensures straightforward deployment with personalized support and tailored service solutions. Snyk enables rapid deployment through developer-centric tools and integrations, but its customer service may feel less personalized, which may affect non-tech-savvy teams.

Pricing and ROI: ImmuniWeb offers cost-effective solutions with good ROI due to lower initial costs and strong customer service support. In contrast, Snyk, despite higher pricing, is seen to deliver substantial ROI through its advanced feature set and alignment with modern DevOps practices, offering robust long-term value for tech-savvy clients.

To learn more, read our detailed ImmuniWeb vs. Snyk Report (Updated: June 2025).

Buyer's Guide

ImmuniWeb vs. Snyk

June 2025

Download the complete report

Helped 859,129 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

ImmuniWeb

Ranking in Static Application Security Testing (SAST)

24th

Average Rating

8.2

Reviews Sentiment

7.8

Number of Reviews

Ranking in other categories

Attack Surface Management (ASM) (19th)

Snyk

Ranking in Static Application Security Testing (SAST)

7th

Average Rating

8.0

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Application Security Tools (5th), Cloud Management (16th), Container Security (5th), Software Composition Analysis (SCA) (2nd), Software Development Analytics (2nd), Cloud Security Posture Management (CSPM) (16th), DevSecOps (2nd), Application Security Posture Management (ASPM) (1st)

Mindshare comparison

As of June 2025, in the Static Application Security Testing (SAST) category, the mindshare of ImmuniWeb is 0.3%, down from 0.3% compared to the previous year. The mindshare of Snyk is 4.5%, down from 5.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Static Application Security Testing (SAST)

Featured Reviews

Vivek Ashvinbhai Pancholi

Senior Cybersecurity Consultant at a tech consulting company with 1,001-5,000 employees

Commendable Solution with Robust Vulnerability Detection Mechanism Suitable for Global Market

The solution helped us with one of our clients in the New York area contacted us about a data breach. In response, we swiftly organized a case meeting involving our client, internal, and email customer support teams. Together, we conducted an incident response, facilitating offline assistance for proper planning and risk management processes. We delved into the details of the data breach, identified how it occurred, and collaborated to rectify the issue. The client expressed satisfaction with the resolution process.

Read full review

meetharoon

CEO at a computer software company with 10,001+ employees

Affordable tool boosts code scanning efficiency but faces integration hurdles

The most important feature of Snyk is its cost-effectiveness compared to other solutions such as Check Point. It is easy to consolidate Snyk across multiple entities within a large organization. Additionally, our integration of Snyk into GitHub allows us to automatically scan codebases and identify issues, which has improved efficiency.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"ImmuniWeb boasts a robust vulnerability detection mechanism, formidable threat mitigation, and an efficient remediation process, incorporating automation techniques and ALM strategies. The solution is highly stable. The solution is scalable. Editing Key Points for Review "Review about ImmuniWeb" What is our primary use case? We use the solution when we face challenges and urgent attention is needed for complex cases from our clients. To address this, we collaborate with the middleware, internal, and client teams to analyze and sort through intricate logs concerning our business cybersecurity program. How has it helped my organization? The solution helped us with one of our clients in the New York area contacted us about a data breach. In response, we swiftly organized a case meeting involving our client, internal, and email customer support teams. Together, we conducted an incident response, facilitating offline assistance for proper planning and risk management processes. We delved into the details of the data breach, identified how it occurred, and collaborated to rectify the issue. The client expressed satisfaction with the resolution process. What is most valuable? ImmuniWeb boasts a robust vulnerability detection mechanism, formidable threat mitigation, and an efficient remediation process, incorporating automation techniques and ALM strategies. It also focuses on consumer satisfaction and operates in English-speaking markets, primarily required by the UAE, the United States, Canada, and Australia, among other developed countries. For how long have I used the solution? We have been using this product for the past one and half years. What do I think about the stability of the solution? The solution is highly stable. I rate it a perfect ten. What do I think about the scalability of the solution? The solution is scalable. I rate it a nine out of ten. How are customer service and support? Support is generally excellent"

"ImmuniWeb is stable."

"After the assessment, you clearly know which assets require penetration testing."

"I like the fully automated continuous discovery run by ImmuniWeb in the background. We do not need to rerun the same tests or the same scanning against our resources. We need to supply our IP addresses, domain names, and significant resources with special domain names and URLs, and we need to do it only once. Then we always have an up-to-date picture. I also like the integration with our single sign-on system. We do not need to maintain a separate set of usernames or user accounts. We can plug this ImmuniWeb service into our authentication technology, enabling two-factor authentication. We have secure authentication right out of the box. The other important feature I like is the executive view. You can easily switch from a technical view to an executive view and have a helicopter view of the compliance status. We can see how much effort is required and our current status."

"The initial setup process is user-friendly."

"The solution's most valuable feature is reporting."

"The most valuable features are the SLA of Zero false-positives, less time of service development, validation of unlimited patched vulnerabilities, and several others."

"A main feature of Snyk is that when you go with SCA, you do get properly done security composition, also from the licensing and open-source parameters perspective. A lot of companies often use open-source libraries or frameworks in their code, which is a big security concern. Snyk deals with all the things and provides you with a proper report about whether any open-source code or framework that you are using is vulnerable. In that way, Snyk is very good as compared to other tools."

"It's very easy for developers to use. Onboarding was an easy process for all of the developers within the company. After a quick, half-an-hour to an hour session, they were fully using it on their own. It's very straightforward. Usability is definitely a 10 out of 10."

"The advantage of Snyk is that Snyk automatically creates a pull request for all the findings that match or are classified according to the policy that we create. So, once we review the PR within Snyk and we approve the PR, Snyk auto-fixes the issue, which is quite interesting and which isn't there in any other product out there. So, Snyk is a step ahead in this particular area."

"From the software composition analysis perspective, it first makes sure that we understand what is happening from a third-party perspective for the particular product that we use. This is very difficult when you are building software and incorporating dependencies from other libraries, because those dependencies have dependencies and that chain of dependencies can go pretty deep. There could be a vulnerability in something that is seven layers deep, and it would be very difficult to understand that is even affecting us. Therefore, Snyk provides fantastic visibility to know, "Yes, we have a problem. Here is where it ultimately comes from." It may not be with what we're incorporating, but something much deeper than that."

"What is valuable about Snyk is its simplicity."

"From a compliance and visibility reporting perspective, the fact that it can be applicable for multi-cloud environments is very helpful."

"The most valuable feature is that they add a lot of their own information to the vulnerabilities. They describe vulnerabilities and suggest their own mitigations or version upgrades. The information was the winning factor when we compared Snyk to others. This is what gave it more impact."

"Snyk has given us really good results because it is fully automated. We don't have to scan projects every time to find vulnerabilities, as it already stores the dependencies that we are using. It monitors 24/7 to find out if there are any issues that have been reported out on the Internet."

More Snyk pros

Cons

"A great idea would be to support using Discovery on the internal network, allowing delivery of all the features of the current Discovery to internal network resources."

"The product’s interface for the web applications could be similar to Android and iOS versions."

"ImmuniWeb sometimes shows previous scans instead of running tests."

"It would be better if they had an automated tagging feature. The tagging functionality currently requires manual tagging, and that's probably the most needed feature from my standpoint. We also do not have enough tools, enough features, or options to display different resources in the way we need. There are basic grouping and some filtering features, but we still cannot fully separate some flavors of our resources. However, we may not be aware of the latest features."

"Its technical support could be better."

"A great idea would be to make a mobile application for the ImmuniWeb portal so that all information would be available on the go and from a mobile phone as well. It would be much more convenient."

"The deployment process on the cloud is straightforward, while on-premise can be complex. Support is generally excellent, although there can be delays in ticket resolution."

"The solution's integration with JFrog Artifactory could be improved."

"It would be helpful if we get a recommendation while doing the scan about the necessary things we need to implement after identifying the vulnerabilities."

"We use Bamboo for CI.CD, and we had problems integrating Snyk with it. Ultimately, we got the two solutions to work together, but it was difficult."

"It would be ideal if there was customization with a focus on specific cybersecurity areas or capabilities."

"The solution could improve the reports. They have been working on improving the reports but more work could be done."

"We would like to have upfront knowledge on how easy it should be to just pull in an upgraded dependency, e.g., even introduce full automation for dependencies supposed to have no impact on the business side of things. Therefore, we would like some output when you get the report with the dependencies. We want to get additional information on the expected impact of the business code that is using the dependency with the newer version. This probably won't be easy to add, but it would be helpful."

"The general input I have is that there is an opportunity for them to better align with other similar tools and better align with similar capabilities that cloud suppliers deliver natively."

"The log export function could be easier when shipping logs to other platforms such as Splunk."

More Snyk cons

Pricing and Cost Advice

"ImmuniWeb is relatively cheap. It's a competitive price compared to other products in the marketplace. It's worth the money we are paying for it."

"I use the product's free version. The tool costs around 229 dollars."

"The platform is expensive if a large development is involved. However, it is less expensive for scheduled-based testing, quarterly or in a year."

"There should be the flexibility to change or add pricing, especially for pay-per-use cases."

"It is pretty expensive."

"The values of ImmuniWeb are currently significantly below what is valued in the Chilean market for these services and solutions."

"The solution is less expensive than Black Duck."

"It is pretty expensive. It is not a cheap product."

"We do have some missing licenses issues, especially with non-SPDX compliant one, but we expect this to be fixed soon"

"The pricing is reasonable."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing a three. It is a cheap solution."

"Despite Snyk's coverage, scalability, reliability, and stability, it is available at a very competitive price."

"I didn't think the price was that great, but it wasn't that bad, either. I'd rate their pricing as average in the market."

"It's good value. That's the primary thing. It's not cheap-cheap, but it's good value."

More Snyk pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.

See recommendations

859,129 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

18%

Computer Software Company

13%

Comms Service Provider

University

Financial Services Firm

16%

Computer Software Company

14%

Manufacturing Company

Insurance Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you recommend for a securing Web Application?

In addition to Sitelock and Immuniweb, another option to consider for a 24/7 automated vulnerability monitoring tool to protect web applications is Modshield SB Modshield SB is a web application fi...

See all answers

What do you like most about ImmuniWeb?

ImmuniWeb is stable.

See all answers

What is your experience regarding pricing and costs for ImmuniWeb?

I use the product's free version. The tool costs around 229 dollars.

See all answers

How does Snyk compare with SonarQube?

Snyk does a great job identifying and reducing vulnerabilities. This solution is fully automated and monitors 24/7 to find any issues reported on the internet. It will store dependencies that you a...

See all answers

What do you like most about Snyk?

The most effective feature in securing project dependencies stems from its ability to highlight security vulnerabilities.

See all answers

What needs improvement with Snyk?

There are a lot of false positives that need to be identified and separated. The inclusion of AI to remove false positives would be beneficial. So far, I've not seen any AI features to enhance vuln...

See all answers

Comparisons

Acunetix vs ImmuniWeb

Compared 42% of the time

Qualys Web Application Scanning vs ImmuniWeb

Compared 25% of the time

Veracode vs ImmuniWeb

Compared 11% of the time

PortSwigger Burp Suite Professional vs ImmuniWeb

Compared 11% of the time

OWASP Zap vs ImmuniWeb

Compared 10% of the time

More ImmuniWeb Competitors

GitHub Advanced Security vs Snyk

Compared 11% of the time

SonarQube Server (formerly SonarQube) vs Snyk

Compared 8% of the time

Trivy vs Snyk

Compared 8% of the time

Wiz vs Snyk

Compared 8% of the time

Black Duck vs Snyk

Compared 6% of the time

More Snyk Competitors

Product Reports

Buyer's Guide

ImmuniWeb

June 2025

Download ImmuniWeb product report

Buyer's Guide

Snyk

May 2025

Download Snyk product report

Also Known As

No data available

Fugue

Overview

ImmuniWeb is a global application security company operating in over 50 countries, headquartered in Geneva, Switzerland. Most of ImmuniWeb's customers come from regulated industries, such as banking, healthcare, and e-commerce.

ImmuniWeb® AI Platform leverages award-winning AI and Machine Learning technology for acceleration and intelligent automation of Attack Surface Management and Dark Web Monitoring. The data is later leveraged for threat-aware and risk-based Application Penetration Testing for web, mobile, and API security testing. ImmuniWeb is the only company that offers a contractual zero false-positives SLA with a money-back guarantee. ImmuniWeb’s AI technology is a recipient of numerous awards and recognitions, including Gartner Cool Vendor, IDC Innovator, and the winner of “SC Award Europe” in the “Best Usage of Machine Learning and AI” category.

ImmuniWeb® Community Edition runs over 100,000 daily tests, being one of the largest application security communities. ImmuniWeb SA is an ISO 27001 certified and CREST-accredited company.

https://www.immuniweb.com.

ImmuniWeb

Snyk's AI Trust Platform empowers developers to innovate securely in AI-driven environments, ensuring rapid and secure software development with enhanced policy governance.

Snyk’s platform integrates AI-ready engines across the software development lifecycle, offering broad coverage with high speed and accuracy essential for fast-paced coding environments. AI-driven features include visibility, prioritization, and tailored security policies that enable proactive threat prevention and quick remediation. By focusing on LLM engineering and AI code analysis, Snyk supports secure and productive development processes. The platform's partnerships, including GenAI code assistants, enhance AI application security by addressing new threats and code velocity challenges.

What are the key features of Snyk?

Easy Integration: Snyk integrates with CI/CD pipelines, GitHub, and JIRA for seamless security management.
Multilingual Support: It offers extensive programming language support, enhancing project compatibility.
Actionable Insights: Provides accurate vulnerability detection with actionable remediation guidance.
Cloud and Container Security: Offers comprehensive checks for cloud and container environments, improving security posture.
Automation & Notifications: Automates vulnerability alerts and notifications for early threat identification in development.

What benefits should users consider in reviews?

Time Efficiency: Speeds up development by identifying and fixing vulnerabilities early in the software lifecycle.
Risk Reduction: Minimizes security risks with extensive vulnerability scanning and proactive alerting.
Productivity Boost: Enhances productivity by integrating security directly into developers' workflows.
Improved Compliance: Aids in maintaining license compliance and managing open-source dependencies effectively.

Snyk is implemented across industries focusing on agile development and DevSecOps, enhancing software delivery speed and security. It is widely used for continuous monitoring and adherence to security and licensing standards, especially in environments relying on Docker image security and CI/CD pipeline integration.

Snyk

Sample Customers

Ebay, United Nations, Next Bank Credit Agricole, Geneva Swiss Bank, Banca Stato, Celgene, SIM University, Heymarket, Swissquote, more...

StartApp, Segment, Skyscanner, DigitalOcean, Comic Relief

Buyer's Guide

ImmuniWeb vs. Snyk

June 2025

Free Report: ImmuniWeb vs. Snyk

Find out what your peers are saying about ImmuniWeb vs. Snyk and other solutions. Updated: June 2025.

DOWNLOAD NOW

859,129 professionals have used our research since 2012.

See our ImmuniWeb vs. Snyk report.

See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.