Invicti vs Tenable.io Web Application Scanning comparison

Invicti
Read 26 Invicti reviews
  • 3,246 Views
  • 1,665 Comparison Views
96% willing to recommend
Tenable.io Web Application ...
Read 14 Tenable.io Web Application Scanning reviews
  • 3,450 Views
  • 2,641 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Invicti and Tenable.io Web Application Scanning based on real PeerSpot user reviews.

Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Invicti vs. Tenable.io Web Application Scanning Report (Updated: May 2024).
Buyer's Guide
Invicti vs. Tenable.io Web Application Scanning
May 2024
Download the complete report
Helped 787,061 peers since 2012
 

Categories and Ranking

Invicti
Ranking in Application Security Tools
20th
Average Rating
8.2
Number of Reviews
26
Ranking in other categories
Static Application Security Testing (SAST) (15th)
Tenable.io Web Application ...
Ranking in Application Security Tools
24th
Average Rating
7.6
Number of Reviews
14
Ranking in other categories
No ranking in other categories
 

Market share comparison

As of June 2024, in the Application Security Tools category, the market share of Invicti is 1.2% and it decreased by 6.6% compared to the previous year. The market share of Tenable.io Web Application Scanning is 1.9% and it increased by 4.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools
Unique Categories:
Static Application Security Testing (SAST)
1.1%
No other categories found
 

Featured Reviews

Amr Abdelnaser - PeerSpot reviewer
Aug 14, 2023
A safe solution used to detective vulnerabilities for dynamic and complex testing
We use this solution to initialize our applications before releasing them to our clients. The first step is deploying our application and scanning it using Invicti. We configure the scanner for our application’s specific server issues, types, and language. After the scan is complete, Invicti will…
Read full review
Jahanzeb Feroze Khan - PeerSpot reviewer
Nov 14, 2023
Highly Recommended Solution with Latest Scanning Methods
The fundamental objective of this product is to enhance the overall security, be it through verification within the organization or at the user's end All the features are valuable to us as they offer cutting-edge scanning methods and address the latest issues with a contemporary approach. We…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"When we try to manually exploit the vulnerabilities, it often takes time to realize what's going on and what needs to be done."
"It has a comprehensive resulting mechanism. It is a one-stop solution for all your security testing mechanisms."
"Attacking feature: Actually, attacking is not a solo feature. It contains many attack engines, Hawk, and many properties. But Netsparker's attacking mechanism is very flexible. This increases the vulnerability detection rate. Also, Netsparker made the Hawk for real-time interactive command-line-based exploit testing. It's very valuable for a vulnerability scanner."
"I am impressed with Invictus’ proof-based scanning. The solution has reduced the incidence of false positive vulnerabilities. It has helped us reduce our time and focus on vulnerabilities."
"The dashboard is really cool, and the features are really good. It tells you about the software version you're using in your web application. It gives you the entire technology stack, and that really helps. Both web and desktop apps are good in terms of application scanning. It has a lot of security checks that are easily customizable as per your requirements. It also has good customer support."
"The scanner is light on the network and does not impact the network when scans are running."
"The best features of Invicti are its ability to confirm access vulnerabilities, SSL injection vulnerabilities, and its connectors to other security tools."
"One of the features I like about this program is the low number of false positives and the support it offers."
More Invicti pros
"Tenable.io Web Application Scanning is very easy to use."
"Our customers adopt this solution because of the replication testing and the vulnerability assessment it can do. It is a multi-faceted product."
"The most valuable features of Tenable.io Web Application Scanning are the integration into specific use cases and scanning. All of the features of the solution are useful."
"The most effective feature of the product is the ability to scan the entire environment."
"The initial setup is straightforward."
"It collects the vulnerabilities on the hostnames and sends them to the Tenable.io cloud. Tenable has its own cloud where Tenable.io is running, but there are many connectors to other cloud solutions. Tenable can do vulnerability scanning for other cloud managers such as Azure, Amazon, and so on."
"We use the tool for our websites. We have a vulnerable subdomain. The tool helps to scan it for vulnerabilities."
"We can get detailed information about vulnerabilities."
More Tenable.io Web Application Scanning pros
 

Cons

"Netsparker doesn't provide the source code of the static application security testing."
"The custom attack preparation screen might be improved."
"The higher level vulnerabilities like Cross-Site Scripting, SQL Injection, and other higher level injection attacks are difficult to highlight using Netsparker."
"Maybe the ability to make a good reporting format is needed."
"They could enhance the support for data swap testing for the platform."
"It would be better for listing and attacking Java-based web applications to exploit vulnerabilities."
"The scanner itself should be improved because it is a little bit slow."
"Reporting should be improved. The reporting options should be made better for end-users. Currently, it is possible, but it's not the best. Being able to choose what I want to see in my reports rather than being given prefixed information would make my life easier. I had to depend on the API for getting the content that I wanted. If they could fix the reporting feature to make it more comprehensive and user-friendly, it would help a lot of end-users. Everything else was good about this product."
More Invicti cons
"Tenable.io Web Application Scanning could improve by offering faster fuzzing."
"The reporting has a very limited customization capability."
"I would like for them to add proxy filtering, where you can transfer and alter the package. It is fully automated. Other web application testers programs are actually proxy software, and the proxy software gives you the flexibility of modifying the outgoing package, which will actually help you in exploiting any vulnerability in detail."
"It isn't easy to manage vulnerabilities in Tenable."
"The cloud and the on-premises versions have their own controllers, and there is no way to centrally manage controllers."
"Tenable.io Web Application Scanning is not very user-friendly and you need a lot of information to get proper reports. The tool's support is not very responsive."
"The solution's dashboards could be improved and made more user-friendly."
"Tenable.io Web Application Scanning conducts a general scan, which wastes time. The scan needs to be specific."
More Tenable.io Web Application Scanning cons
 

Pricing and Cost Advice

"Invicti is best suited for large enterprises. I don't think small and medium-sized businesses can afford it. Maintenance costs aren't that great."
"Netsparker is one of the costliest products in the market. It would help if they could allow us to scan multiple URLs on the same license."
"The solution is very expensive. It comes with a yearly subscription. We were paying 6000 dollars yearly for unlimited scans. We have three licenses; basic, business, and ultimate. We need ultimate because it has unlimited scan numbers."
"We never had any issues with the licensing; the price was within our assigned limits."
"I think that price it too high, like other Security applications such as Acunetix, WebInspect, and so on."
"The price should be 20% lower"
"It is competitive in the security market."
"We are using an NFR license and I do not know the exact price of the NFR license. I think 20 FQDN for three years would cost around 35,000 US Dollars."
More Invicti pricing and cost advice
"I rate the product's pricing a four out of ten."
"Tenable.io Web Application Scanning is expensive for small businesses."
"The price of the solution is reasonable compared to the competitors. The license cost is based on the number of users and the annual usage."
"The application is extremely affordable. There are no additional costs involved with licensing. We switched to Tenable.io Web Application Scanning from other solutions due to pricing."
"It follows the same licensing scheme as Tenable.io and Tenable. sc."
"The pricing is okay."
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
See recommendations
787,061 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
52%
Financial Services Firm
8%
Computer Software Company
6%
Manufacturing Company
5%
Computer Software Company
15%
Financial Services Firm
12%
Government
11%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What is your experience regarding pricing and costs for Netsparker Web Application Security Scanner?
The solution is very expensive. It comes with a yearly subscription. We were paying 6000 dollars yearly for unlimited scans. We have three licenses; basic, business, and ultimate. We need ultimate ...
See all answers
What do you like most about Invicti?
The most valuable feature of Invicti is getting baseline scanning and incremental scan.
See all answers
What needs improvement with Invicti?
The solution's false positive analysis and vulnerability analysis libraries could be improved.
See all answers
What do you like most about Tenable.io Web Application Scanning?
The most effective feature of the product is the ability to scan the entire environment.
See all answers
What needs improvement with Tenable.io Web Application Scanning?
The platform's technical support services could be better.
See all answers
What advice do you have for others considering Tenable.io Web Application Scanning?
Implementing Tenable.io Web Application Scanning has been beneficial in identifying numerous vulnerabilities within application code. I rate its scanning capabilities in terms of user-friendliness ...
See all answers
 

Comparisons

OWASP Zap vs Invicti Logo
OWASP Zap vs Invicti
Compared 19% of the time
Acunetix vs Invicti Logo
Acunetix vs Invicti
Compared 14% of the time
PortSwigger Burp Suite Professional vs Invicti Logo
PortSwigger Burp Suite Professional vs Invicti
Compared 9% of the time
Qualys Web Application Scanning vs Invicti Logo
Qualys Web Application Scanning vs Invicti
Compared 7% of the time
SonarQube vs Invicti Logo
SonarQube vs Invicti
Compared 5% of the time
More Invicti Competitors
Acunetix vs Tenable.io Web Application Scanning Logo
Acunetix vs Tenable.io Web Application Scanning
Compared 28% of the time
Qualys Web Application Scanning vs Tenable.io Web Application Scanning Logo
Qualys Web Application Scanning vs Tenable.io Web Application Scanning
Compared 11% of the time
Fortify on Demand vs Tenable.io Web Application Scanning Logo
Fortify on Demand vs Tenable.io Web Application Scanning
Compared 11% of the time
PortSwigger Burp Suite Professional vs Tenable.io Web Application Scanning Logo
PortSwigger Burp Suite Professional vs Tenable.io Web Application Scanning
Compared 10% of the time
AWS WAF vs Tenable.io Web Application Scanning Logo
AWS WAF vs Tenable.io Web Application Scanning
Compared 4% of the time
More Tenable.io Web Application Scanning Competitors
 

Product Reports

Buyer's Guide
Invicti
June 2024
Invicti reportDownload Invicti product report
Buyer's Guide
Application Security Tools
June 2024
Tenable.io Web Application Scanning reportDownload Tenable.io Web Application Scanning product report
 

Also Known As

Mavituna Netsparker
No data available
 

Learn More

Invicti
Tenable
 

Overview

Invicti helps DevSecOps teams automate security tasks and save hundreds of hours each month by identifying web vulnerabilities that matter. Combining dynamic with interactive testing (DAST + IAST) and software composition analysis (SCA), Invicti scans every corner of an app to find what other tools miss with 99.98% accuracy, delivering on the promise of Zero Noise AppSec. Invicti helps discover all web assets — even ones that are lost, forgotten, or created by rogue departments. With an array of out-of-the-box integrations, DevSecOps teams can get ahead of their workloads to hit critical deadlines, improve processes, and communicate more effectively while reducing risk and hitting the ROI goals.

Tenable.io Web Application Scanning safely, accurately and automatically scans your web applications, providing deep visibility into vulnerabilities and valuable context to prioritize remediation.

 

Sample Customers

Samsung, The Walt Disney Company, T-Systems, ING Bank
IMDEX
Buyer's Guide
Invicti vs. Tenable.io Web Application Scanning
May 2024
Free Report: Invicti vs. Tenable.io Web Application Scanning
Find out what your peers are saying about Invicti vs. Tenable.io Web Application Scanning and other solutions. Updated: May 2024.
DOWNLOAD NOW
787,061 professionals have used our research since 2012.
See our Invicti vs. Tenable.io Web Application Scanning report.
See our list of best Application Security Tools vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.