No more typing reviews! Try our Samantha, our new voice AI agent.

Invicti vs Ixia BreakingPoint comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 8, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Invicti
Ranking in Static Application Security Testing (SAST)
12th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
31
Ranking in other categories
Container Security (26th), Software Composition Analysis (SCA) (10th), API Security (10th), Dynamic Application Security Testing (DAST) (4th), Application Security Posture Management (ASPM) (8th)
Ixia BreakingPoint
Ranking in Static Application Security Testing (SAST)
32nd
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
8
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Static Application Security Testing (SAST) category, the mindshare of Invicti is 1.8%, up from 1.6% compared to the previous year. The mindshare of Ixia BreakingPoint is 0.7%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST) Mindshare Distribution
ProductMindshare (%)
Invicti1.8%
Ixia BreakingPoint0.7%
Other97.5%
Static Application Security Testing (SAST)
 

Featured Reviews

Valavan Sivgalingam - PeerSpot reviewer
Senior Manager, Security Engineering at ESS
Dynamic testing regularly identifies web vulnerabilities and has strong false positive confirmations
It has good false positive confirmations, confirmed issues identification, and proof of exploit-related features as part of it. We use Invicti for these things in our portfolios. The solution includes Proof-Based Scanning technology. Invicti is part of our SSDLC portfolio, and DAST dynamic testing is very important for our web applications and portfolios. For both the API endpoints and web applications, we do regular testing on a monthly basis for all our releases. Invicti does a good job. The only concern is on the performance side, but other than that, we find it really helpful in identifying web vulnerabilities. A full scan takes more time based on your website and other factors, but for us, it takes more than two to three days. The scan performance can be improved upon. When we check with them, they discuss proof-based scanning and related aspects. However, there could be intermittent results that could help us.
Sai Prasad - PeerSpot reviewer
Staff QA Engineer at Virsec
Works better for testing traffic, mix profile, and enrollment scenarios than other solutions
Once, when I raised a ticket regarding a hardware or software issue, the solution's support team visited our company to discuss and find out ways to solve the problem. Sometimes, they asked us to send several photos from the back and front end to identify the issue. It was time-consuming as we were occupied with some other testing simultaneously. Instead, it would have been great if they could have visited our company and rectified the problem.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"When we try to manually exploit the vulnerabilities, it often takes time to realize what's going on and what needs to be done."
"The most valuable feature of Invicti is getting baseline scanning and incremental scan."
"I would definitely recommend to those who really want to know in-depth details of their applications/products regarding the security of their web system."
"Netsparker has done an awesome job with its crawler, as it has found all of the links (also thanks to its good DOM parser)."
"Invicti is a good product, and its API testing is also good."
"OWASP Zap is free and it has live updates, so that's a big plus."
"It has improved the security of our code by scanning it and finding security defects."
"One of the features I like about this program is the low number of false positives and the support it offers."
"It is a scalable solution."
"What Ixia BreakingPoint brings to the end customer is the use case."
"There is a virtual version of the product which is scaled to 100s of virtual testing blades."
"I like that we can test cloud applications."
"The most valuable feature of Ixia BreakingPoint is the ransomware and malware database for simulated attacks."
"BPS VE evaluation was used for testing LTE Network elements with a focus on user plane testing BPS VE along with its UI and new concepts to reduce the complexity of manual testing to a large extent."
"We use Ixia BreakingPoint for Layer 7 traffic generation. That's what we like."
"The most valuable feature is Layer 7 traffic generation such as Facebook, Netflix, WhatsApp."
 

Cons

"The higher level vulnerabilities like Cross-Site Scripting, SQL Injection, and other higher level injection attacks are difficult to highlight using Netsparker."
"They don't really provide the proof of concept up to the level that we need in our organization. We are a consultancy firm, and we provide consultancy for the implementation and deployment solutions to our customers. When you run the scans and the scan is completed, it only shows the proof of exploit, which really doesn't work because the tool is running the scan and exploiting on the read-only form. You don't really know whether it is actually giving the proof of exploit. We cannot prove it manually to a customer that the exploit is genuine. It is really hard to perform it manually and prove it to the concerned development, remediation, and security teams. It is currently missing the static application security part of the application security, especially web application security. It would be really cool if they can integrate a SAS tool with their dynamic one."
"Currently, there is nothing I would like to improve."
"They need to improve their support in the documentation. Their support mechanism is missing. Their responsiveness, technical staff, and these types of things need to be improved, and comprehensive documentation is required. They should have good self-service portal enhancement"
"The scan performance can be improved upon."
"Right now, they are missing the static application security part, especially web application security."
"Maybe supported clients can be improved. It still does not search vulnerabilities in DB2 databases, for example."
"The support's response time could be faster since we are in different time zones."
"The SSL simulation is realistic but some kinds of tests work imperfectly."
"The integration could improve in Ixia BreakingPoint."
"The price could be better."
"They should improve UI mode packages for the users."
"The quality of the traffic generation could be improved with Ixia BreakingPoint, i.e. to get closer to being accurate in what a real user will do."
"Currently BPS VE's REST API was just developed (some specific functionalities are implemented) and can be improved for better control over the tool using scripts, which help in test automation."
"I would appreciate some preconfigured network neighborhoods, which are predefined settings for testing networks."
"The production traffic simulations are not realistic enough for some types of DDoS attacks."
 

Pricing and Cost Advice

"OWASP Zap is free and it has live updates, so that's a big plus."
"Invicti is best suited for large enterprises. I don't think small and medium-sized businesses can afford it. Maintenance costs aren't that great."
"I think that price it too high, like other Security applications such as Acunetix, WebInspect, and so on."
"We never had any issues with the licensing; the price was within our assigned limits."
"The price should be 20% lower"
"It is competitive in the security market."
"Netsparker is one of the costliest products in the market. It would help if they could allow us to scan multiple URLs on the same license."
"We are using an NFR license and I do not know the exact price of the NFR license. I think 20 FQDN for three years would cost around 35,000 US Dollars."
"There is no differentiation in licenses for Breaking Point. For one license, you will get all the features. There is no complexity in that."
"or us, the pricing is somewhere around $12,000 a year. I'm unsure as to what new licenses now cost."
"We have a one year subscription license for $25,000 US Dollars."
"The price of the solution is expensive."
"The solution is expensive."
"The price is high. We pay for the license monthly."
report
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
16%
Manufacturing Company
9%
Construction Company
7%
Computer Software Company
7%
Manufacturing Company
16%
Financial Services Firm
9%
Construction Company
9%
Outsourcing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business14
Midsize Enterprise4
Large Enterprise13
By reviewers
Company SizeCount
Small Business7
Large Enterprise3
 

Questions from the Community

What is your experience regarding pricing and costs for Netsparker Web Application Security Scanner?
The setup cost is pretty competitive. For example, if you want to talk about the SAST license, it comes to about $150 or sometimes less than $100, depending on the conversion or the number of licen...
What needs improvement with Invicti?
At this time, there is nothing that comes to mind. However, most of the products in the market are pretty much neck-to-neck competitors. Speaking about it, there are a couple of factors which they ...
What is your primary use case for Invicti?
I have worked on a couple of products, specifically in web application security. I have worked on Invicti, and with respect to PAM, I have worked with BeyondTrust. I have not worked specifically fo...
Ask a question
Earn 20 points
 

Also Known As

Netsparker
No data available
 

Overview

 

Sample Customers

Samsung, The Walt Disney Company, T-Systems, ING Bank
Corsa Technology
Find out what your peers are saying about Invicti vs. Ixia BreakingPoint and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.