We performed a comparison between Invicti and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The scanner is light on the network and does not impact the network when scans are running."
"The most valuable feature of Invicti is getting baseline scanning and incremental scan."
"Invicti's best feature is the ability to identify vulnerabilities and manually verify them."
"High level of accuracy and quick scanning."
"I like that it's stable and technical support is great."
"Crawling feature: Netsparker has very detail crawling steps and mechanisms. This feature expands the attack surface."
"Its ability to crawl a web application is quite different than another similar scanner."
"Invicti is a good product, and its API testing is also good."
"Qualys WAS' most valuable features are the navigation flow of the UI and the option for a different layer of security (identification and operation through email and mobile)."
"It combines both web application vulnerability management and internal vulnerability management on one platform and dashboard. Usually, you have to purchase separate tools."
"The interface is user-friendly and easy to understand."
"Licensing is the most valuable. Qualys provides the best licensing for companies. It is the best product for the development purposes of web applications. The product has a lot of integrations."
"The Qualys Web Application Scanning solution offers a single comprehensive console and consolidated reporting, covering all aspects from on-prem to cloud and compliance, etcetera."
"The most valuable feature of Qualys Web Application Scanning is the effective scanning that can be done."
"This product is designed for easy scalability and can easily scale up without major challenges."
"It is easy to use."
"The solution needs to make a more specific report."
"Asset scanning could be better. Once, it couldn't scan assets, and the issue was strange. The price doesn't fit the budget of small and medium-sized businesses."
"The scanner itself should be improved because it is a little bit slow."
"The scanning time, complexity, and authentication features of Invicti could be improved."
"The higher level vulnerabilities like Cross-Site Scripting, SQL Injection, and other higher level injection attacks are difficult to highlight using Netsparker."
"The proxy review, the use report views, the current use tool and the subset requests need some improvement. It was hard to understand how to use them."
"The scannings are not sufficiently updated."
"Right now, they are missing the static application security part, especially web application security."
"The reporting contains too many false positives."
"We procured around 110 licenses for Web Application Scanning, but we have issues running concurrent scans. I don't currently have the option to trigger scans for all 100-plus websites. The default limit is around 10 conference scans. It's not very scalable, to be honest, because of the limitation that they put on concurrent scans."
"It should have better automatic reporting."
"The product should allow users to upload their payloads."
"Deployment can be complicated."
"Qualys Web Application Scanning is very complex to use, and its graphical interface is not very user-friendly."
"The support could be faster."
"The product's pricing could be better."
More Qualys Web Application Scanning Pricing and Cost Advice →
Invicti is ranked 20th in Application Security Tools with 25 reviews while Qualys Web Application Scanning is ranked 18th in Application Security Tools with 31 reviews. Invicti is rated 8.2, while Qualys Web Application Scanning is rated 7.8. The top reviewer of Invicti writes "A customizable security testing solution with good tech support, but the price could be better". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". Invicti is most compared with OWASP Zap, Acunetix, PortSwigger Burp Suite Professional, Fortify WebInspect and Rapid7 AppSpider, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and ImmuniWeb. See our Invicti vs. Qualys Web Application Scanning report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.