We performed a comparison between Invicti and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."When we try to manually exploit the vulnerabilities, it often takes time to realize what's going on and what needs to be done."
"It has a comprehensive resulting mechanism. It is a one-stop solution for all your security testing mechanisms."
"The dashboard is really cool, and the features are really good. It tells you about the software version you're using in your web application. It gives you the entire technology stack, and that really helps. Both web and desktop apps are good in terms of application scanning. It has a lot of security checks that are easily customizable as per your requirements. It also has good customer support."
"Invicti's best feature is the ability to identify vulnerabilities and manually verify them."
"Scan, proxify the application, and then detailed report along with evidence and remediations to problems."
"The most valuable feature of Invicti is getting baseline scanning and incremental scan."
"The most attractive feature was the reporting review tool. The reporting review was very impressive and produced very fruitful reports."
"The scanner and the result generator are valuable features for us."
"The vulnerability management feature is a strong one. And also the patch management feature."
"It is a very stable solution."
"The simplicity of exporting reports and the simplicity and clarity of the reports included with the product are good."
"With our vulnerabilities under control, it's putting our services in compliance and minimizing our risk for exposure."
"The feature that I have found most valuable is the progressive scan. It is good. It's done in 24 hours."
"It is easy to use."
"It is a good product for website penetration testing to detect vulnerabilities."
"The interface is user-friendly and easy to understand."
"Maybe the ability to make a good reporting format is needed."
"It would be better for listing and attacking Java-based web applications to exploit vulnerabilities."
"Right now, they are missing the static application security part, especially web application security."
"Asset scanning could be better. Once, it couldn't scan assets, and the issue was strange. The price doesn't fit the budget of small and medium-sized businesses."
"The solution needs to make a more specific report."
"The scanning time, complexity, and authentication features of Invicti could be improved."
"Netsparker doesn't provide the source code of the static application security testing."
"The solution's false positive analysis and vulnerability analysis libraries could be improved."
"In certain cases, this product does have false positives, which the company should work on."
"The reporting contains too many false positives."
"We receive false positives sometimes when using a solution that could be improved. However, the technical team provides us with the exact explanation why it was giving us that kind of error."
"Sometimes the response time is low because the handshake fails, and then you have to re-login and start again."
"The solution needs to adjust its pricing. They should make it more affordable."
"There should be better visibility into the application."
"The virus code updates are not frequent enough."
"When comparing this solution to Veracode, Veracode has good interactive features and gives a clear understanding of what the vulnerabilities are, which error line of the vulnerability is on and what can be done. It gives interactive features, whereas this solution does not give a clear understanding of where or how to fix the problem."
More Qualys Web Application Scanning Pricing and Cost Advice →
Invicti is ranked 20th in Application Security Tools with 25 reviews while Qualys Web Application Scanning is ranked 19th in Application Security Tools with 31 reviews. Invicti is rated 8.2, while Qualys Web Application Scanning is rated 7.8. The top reviewer of Invicti writes "A customizable security testing solution with good tech support, but the price could be better". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". Invicti is most compared with OWASP Zap, Acunetix, PortSwigger Burp Suite Professional, Fortify WebInspect and HCL AppScan, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and ImmuniWeb. See our Invicti vs. Qualys Web Application Scanning report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.