No more typing reviews! Try our Samantha, our new voice AI agent.

Invicti vs Tenable Cloud Security comparison

Invicti and Tenable are both solutions in the Container Security category. Invicti is ranked #24 with an average rating of 8.5, while Tenable is ranked #22 with an average rating of 8.3. Invicti holds a 0.7% mindshare in Container Security, compared to Tenable’s 1.8% mindshare. Additionally, 96% of Invicti users are willing to recommend the solution, compared to 77% of Tenable users who would recommend it.
Invicti
Read 31 Invicti reviews
  • 3,717 Views
  • 669 Comparison Views
96% willing to recommend
Tenable Cloud Security
Read 12 Tenable Cloud Security reviews
  • 3,296 Views
  • 1,714 Comparison Views
77% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Invicti and Tenable Cloud Security based on real PeerSpot user reviews.

Find out in this report how the two Container Security solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Invicti vs. Tenable Cloud Security Report (Updated: March 2026).
Buyer's Guide
Invicti vs. Tenable Cloud Security
March 2026
Download the complete report
Helped 885,311 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Invicti
Ranking in Container Security
24th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
31
Ranking in other categories
Static Application Security Testing (SAST) (11th), Software Composition Analysis (SCA) (8th), API Security (8th), Dynamic Application Security Testing (DAST) (4th), Application Security Posture Management (ASPM) (5th)
Tenable Cloud Security
Ranking in Container Security
22nd
Average Rating
8.4
Reviews Sentiment
6.5
Number of Reviews
12
Ranking in other categories
Identity and Access Management as a Service (IDaaS) (IAMaaS) (13th), Cloud Workload Protection Platforms (CWPP) (13th), Cloud Security Posture Management (CSPM) (16th), Cloud-Native Application Protection Platforms (CNAPP) (11th), Cloud Infrastructure Entitlement Management (CIEM) (3rd)
 

Mindshare comparison

As of March 2026, in the Container Security category, the mindshare of Invicti is 0.7%, up from 0.3% compared to the previous year. The mindshare of Tenable Cloud Security is 1.8%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Container Security Mindshare Distribution
ProductMindshare (%)
Tenable Cloud Security1.8%
Invicti0.7%
Other97.5%
Container Security
 

Featured Reviews

Valavan Sivgalingam - PeerSpot reviewer
Valavan Sivgalingam
Senior Manager, Security Engineering at ESS
Dynamic testing regularly identifies web vulnerabilities and has strong false positive confirmations
It has good false positive confirmations, confirmed issues identification, and proof of exploit-related features as part of it. We use Invicti for these things in our portfolios. The solution includes Proof-Based Scanning technology. Invicti is part of our SSDLC portfolio, and DAST dynamic testing is very important for our web applications and portfolios. For both the API endpoints and web applications, we do regular testing on a monthly basis for all our releases. Invicti does a good job. The only concern is on the performance side, but other than that, we find it really helpful in identifying web vulnerabilities. A full scan takes more time based on your website and other factors, but for us, it takes more than two to three days. The scan performance can be improved upon. When we check with them, they discuss proof-based scanning and related aspects. However, there could be intermittent results that could help us.
Read full review
CD
DragosCernat
Information Security Architect at WSP
Has significantly improved proactive monitoring through automated asset discovery and seamless integration with cloud environments
Making the system smarter would be beneficial. Adding modules for integration with AWS and Azure would be helpful. Adding capabilities for the scanner to automatically pick up changes and add assets automatically would be valuable. When discussing a big company, it is mandatory to have tools that will assist us rather than waiting for manual input to add hosts. Adding assets manually is prone to mistakes. Humans might forget to add an asset or make errors when adding multiple assets. Taking the human element out of the context and making it more streamlined is the future for security. The human should be involved where expertise is needed, such as analysis and decision-making. Currently, with resource constraints, we need tools to collect and aggregate data, eliminate false positives as much as possible, and present relevant information to employees for action.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It correctly parses DOM and JS and has really good support for URL Rewrite rules, which is important for today's websites."
"Scan, proxify the application, and then detailed report along with evidence and remediations to problems."
"It has improved the security of our code by scanning it and finding security defects."
"We use simultaneous products, but I found this to be the best of the lot."
"Netsparker offers some pretty features: Crawling feature: Netsparker has very detail crawling steps and mechanisms, this feature expands the attack surface, Attacking feature: Actually, attacking is not a solo feature, it contains many attack engines, Hawk, and many properties, but Netsparker's attacking mechanism is very flexible, this increases the vulnerability detection rate, also, Netsparker made the Hawk for real-time interactive command-line-based exploit testing, it's very valuable for a vulnerability scanner, and a very useful API for automating the scans."
"Its ability to crawl a web application is quite different than another similar scanner."
"The most valuable features that I've found in this solution was the level of accuracy and also that the process of scanning was very quick and we're easily able to change the frame of a scan."
"One of the features I like about this program is the low number of false positives and the support it offers."
More Invicti pros
"The product's visibility and remediation work fine for me."
"Ermetic can provide super visibility for our cloud environment (we are using AWS), the dashboard is simple to use, the findings provide all of the information you require, it provides detection and remediation, and creating a Jira ticket from a finding is just one click away."
"Element is precisely what we needed for close to real-time external surface monitoring, and the automatic integration capabilities, particularly with DNS, Azure, and AWS, are extremely valuable."
"Ermetic can provide super visibility for our cloud environment (we are using AWS)."
"Tenable Cloud Security excels in vulnerability detection, one of its strongest features. Another valuable feature is software composition analysis, which highlights and automates the detection of security flaws. Additionally, their knowledge base is excellent; if anything goes wrong, they provide clear guidance on what needs to be done to address specific vulnerabilities."
"The analytical and reporting capabilities are pretty straightforward and show every transaction and major attempt to attack the application in the cloud."
"The product's deployment phase is easy."
"Scanning and reporting are the most valuable features of Tenable Cloud Security"
More Tenable Cloud Security pros
 

Cons

"The scanner itself should be improved because it is a little bit slow."
"Improvement could be made in the area of production."
"Maybe the ability to make a good reporting format is needed."
"The proxy review, the use report views, the current use tool and the subset requests need some improvement."
"The scannings are not sufficiently updated."
"The support's response time could be faster since we are in different time zones."
"Invicti's reporting capabilities need enhancement."
"Reporting should be improved. The reporting options should be made better for end-users. Currently, it is possible, but it's not the best. Being able to choose what I want to see in my reports rather than being given prefixed information would make my life easier. I had to depend on the API for getting the content that I wanted. If they could fix the reporting feature to make it more comprehensive and user-friendly, it would help a lot of end-users. Everything else was good about this product."
More Invicti cons
"The product must provide more features."
"If Tenable Cloud Security offers a complete Cnapp solution with CWP, CIEM, and Waap security, it will be able to compete with other competitors."
"I have faced several bug incidents with the solution"
"Due to its robust nature, the platform's adoption can be overwhelming initially. However, once organizations start using it, they tend to get used to it. I haven't had much direct interaction with the support team, but some partners have reported a desire for better support for the product."
"There is a need for the support team to improve their response time since it is one of the areas where the product's technical team has certain shortcomings."
"Tenable needs to offer a patch-based solution since it is an area where the tool lacks a bit."
"I didn't find anything that wasn't useful or needed to be added."
"In my experience, Tenable Cloud Security is not very stable."
More Tenable Cloud Security cons
 

Pricing and Cost Advice

"The price should be 20% lower"
"OWASP Zap is free and it has live updates, so that's a big plus."
"It is competitive in the security market."
"The solution is very expensive. It comes with a yearly subscription. We were paying 6000 dollars yearly for unlimited scans. We have three licenses; basic, business, and ultimate. We need ultimate because it has unlimited scan numbers."
"We never had any issues with the licensing; the price was within our assigned limits."
"I think that price it too high, like other Security applications such as Acunetix, WebInspect, and so on."
"Netsparker is one of the costliest products in the market. It would help if they could allow us to scan multiple URLs on the same license."
"Invicti is best suited for large enterprises. I don't think small and medium-sized businesses can afford it. Maintenance costs aren't that great."
More Invicti pricing and cost advice
"The tool's pricing is fair."
"The tool's price is good compared to other brands. The tool's subscription is for a year."
"There is a need to opt for a subscription-based pricing model to use Tenable Cloud Security. I rate the product price an eight on a scale of one to ten, where one is low price and ten is high price."
report
See which vendors are best for you
Use our free recommendation engine to learn which Container Security solutions are best for your needs.
See recommendations
885,311 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Manufacturing Company
9%
Computer Software Company
8%
Government
7%
Government
12%
Computer Software Company
10%
Financial Services Firm
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business14
Midsize Enterprise4
Large Enterprise13
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise2
Large Enterprise5
 

Questions from the Community

What is your experience regarding pricing and costs for Netsparker Web Application Security Scanner?
The setup cost is pretty competitive. For example, if you want to talk about the SAST license, it comes to about $150 or sometimes less than $100, depending on the conversion or the number of licen...
See all answers
What needs improvement with Invicti?
At this time, there is nothing that comes to mind. However, most of the products in the market are pretty much neck-to-neck competitors. Speaking about it, there are a couple of factors which they ...
See all answers
What is your primary use case for Invicti?
I have worked on a couple of products, specifically in web application security. I have worked on Invicti, and with respect to PAM, I have worked with BeyondTrust. I have not worked specifically fo...
See all answers
What do you like most about Tenable Cloud Security?
The solution’s vulnerability management feature has helped us identify and mitigate risks well.
See all answers
What needs improvement with Tenable Cloud Security?
Making the system smarter would be beneficial. Adding modules for integration with AWS and Azure would be helpful. Adding capabilities for the scanner to automatically pick up changes and add asset...
See all answers
What is your primary use case for Tenable Cloud Security?
We had other solutions that we used. One solution was that we did not have something exactly similar to what Element is doing. For example, we were using Bitsight, Evelin, and also Tenable Cloud Se...
See all answers
 

Comparisons

Acunetix vs Invicti Logo
Acunetix vs Invicti
Compared 9% of the time
Veracode vs Invicti Logo
Veracode vs Invicti
Compared 9% of the time
SonarQube vs Invicti Logo
SonarQube vs Invicti
Compared 6% of the time
OpenText Dynamic Application Security Testing vs Invicti Logo
OpenText Dynamic Application Security Testing vs Invicti
Compared 5% of the time
Rapid7 InsightAppSec vs Invicti Logo
Rapid7 InsightAppSec vs Invicti
Compared 4% of the time
More Invicti Competitors
Wiz vs Tenable Cloud Security Logo
Wiz vs Tenable Cloud Security
Compared 11% of the time
Prisma Cloud by Palo Alto Networks vs Tenable Cloud Security Logo
Prisma Cloud by Palo Alto Networks vs Tenable Cloud Security
Compared 7% of the time
Orca Security vs Tenable Cloud Security Logo
Orca Security vs Tenable Cloud Security
Compared 5% of the time
FortiCNAPP vs Tenable Cloud Security Logo
FortiCNAPP vs Tenable Cloud Security
Compared 5% of the time
Microsoft Defender for Cloud vs Tenable Cloud Security Logo
Microsoft Defender for Cloud vs Tenable Cloud Security
Compared 5% of the time
More Tenable Cloud Security Competitors
 

Product Reports

Buyer's Guide
Invicti
March 2026
Invicti reportDownload Invicti product report
Buyer's Guide
Tenable Cloud Security
March 2026
Tenable Cloud Security reportDownload Tenable Cloud Security product report
 

Also Known As

Netsparker
Ermetic, Ermetic Identity Governance for AWS
 

Overview

Invicti helps DevSecOps teams automate security tasks and save hundreds of hours each month by identifying web vulnerabilities that matter. Combining dynamic with interactive testing (DAST + IAST) and software composition analysis (SCA), Invicti scans every corner of an app to find what other tools miss with 99.98% accuracy, delivering on the promise of Zero Noise AppSec. Invicti helps discover all web assets — even ones that are lost, forgotten, or created by rogue departments. With an array of out-of-the-box integrations, DevSecOps teams can get ahead of their workloads to hit critical deadlines, improve processes, and communicate more effectively while reducing risk and hitting the ROI goals.

Invicti



Tenable Cloud Security is a comprehensive solution designed to help organizations secure their cloud environments across various platforms, including AWS, Azure, and Google Cloud. It offers continuous visibility, compliance management, and threat detection to ensure that cloud infrastructure and applications are protected from vulnerabilities and misconfigurations.

Tenable Cloud Security exemplifies a comprehensive Cloud-Native Application Protection Platform (CNAPP) by providing a unified solution that covers the entire cloud security lifecycle, from development to runtime. This platform is designed to address vulnerabilities, misconfigurations, threats, and compliance risks across multi-cloud environments, making it an essential tool for organizations adopting cloud-native architectures. In practice, Tenable Cloud Security integrates security into the development process through its shift-left approach, particularly with Infrastructure as Code (IaC) security. This ensures that security measures are embedded early in the development lifecycle, allowing teams to identify and mitigate vulnerabilities before they reach production. Once in production, the platform continues to provide real-time visibility into cloud environments, enabling continuous monitoring and proactive threat detection.

The solution's comprehensive protection spans various aspects of cloud security, including the identification and remediation of misconfigurations, automated compliance management, and advanced threat intelligence. By automating these processes, Tenable Cloud Security reduces the manual effort required to manage cloud security, freeing up resources for more strategic initiatives.

What are the key features of Tenable Cloud Security?

  • Unified Platform: Covers the entire cloud security lifecycle, from development to runtime, providing comprehensive protection.
  • Shift-Left Approach with IaC Security: Integrates security early in the development process, ensuring that vulnerabilities are caught and remediated before deployment.
  • Continuous Monitoring: Offers real-time visibility and monitoring of cloud environments, enabling proactive threat detection and response.
  • Automation: Streamlines security operations, reducing the need for manual intervention and increasing operational efficiency.
  • Comprehensive Threat and Compliance Management: Identifies and mitigates vulnerabilities, misconfigurations, and compliance risks across multi-cloud environments.

What are the benefits of using Tenable Cloud Security?

  • Improved Security Posture: Early detection and remediation of vulnerabilities lead to a stronger overall security posture.
  • Operational Efficiency: Automation reduces the workload on security teams, allowing them to focus on higher-priority tasks.
  • Risk Reduction: Proactively identifies and addresses risks before they impact production environments.
  • Simplified Compliance: Helps organizations meet and maintain compliance with industry standards, reducing the complexity and cost of audits.

Tenable Cloud Security is particularly valuable in industries with stringent regulatory requirements, such as finance, healthcare, and retail. For example, in the financial sector, it helps organizations ensure compliance with regulations like PCI-DSS while safeguarding sensitive data across cloud environments.


In summary, Tenable Cloud Security is a robust CNAPP solution that integrates security throughout the cloud lifecycle, providing comprehensive protection and operational efficiency for cloud-native environments.

Tenable
 

Sample Customers

Samsung, The Walt Disney Company, T-Systems, ING Bank
Tyler Technologies, Bilfinger, BarkBox, MongoDB, airSlate, Adama, Latch, Cloudinary, Riskified, AppsFlyer, IntelyCare, Aidoc, 42Dot, and more.
Buyer's Guide
Invicti vs. Tenable Cloud Security
March 2026
Free Report: Invicti vs. Tenable Cloud Security
Find out what your peers are saying about Invicti vs. Tenable Cloud Security and other solutions. Updated: March 2026.
DOWNLOAD NOW
885,311 professionals have used our research since 2012.
See our Invicti vs. Tenable Cloud Security report.
See our list of best Container Security vendors.

We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.