Acunetix Reviews

Name: Acunetix
Brand: Invicti
Rating: 3.9 (31 reviews)

3.9 out of 5

31 reviews
86% willing to recommend

1,598 followers

What is Acunetix?

Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.

Get the Acunetix Buyer's Guide and find out what your peers are saying about Acunetix, SonarQube Server (formerly SonarQube), Veracode and more!

Acunetix is the #6 ranked solution in top DevSecOps solutions, #13 ranked solution in AST tools, #16 ranked solution in application security solutions, and #20 ranked solution in top Vulnerability Management solutions. PeerSpot users give Acunetix an average rating of 7.8 out of 10. Based on the analysis of the 31 most recent Acunetix reviews, the overall sentiment is positive, with a sentiment score of 7.3. Acunetix is most commonly compared to SonarQube Server (formerly SonarQube): Acunetix vs SonarQube Server (formerly SonarQube). Acunetix is popular among the large enterprise segment, accounting for 59% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 17% of all views.

Helped 816,406 peers since 2012

Featured reviews

AnubhavGoswami

Compliance Manager at Compunnel

The primary use is mainly related to vulnerability assessment, including both public and internal IP addresses By using this tool, we have reduced the workload and increased the productivity of users. It generates automated reports. This feature is beneficial when sharing reports with clients as…

Read full review

Andrei Bigdan

Executive Manager at B2B-Solutions LLC

The primary use case of the solution is to scan our web applications for vulnerabilities The most valuable feature of the solution is the speed at which it can scan multiple domains in just a few hours. The solution can be improved by adding the ability to scan subdomains automatically, and by…

Read full review

JanetMuhia

Cyber Security Engineer at Spartec

Just by scanning, Acunetix provides proof of exploit and gives the specific code affected. You can also see a categorized list of vulnerabilities. From there, you can easily create a report. It integrates with multiple tools in the CI/CD pipeline, like Jira and web application firewalls. Acunetix automation improved our customer's security testing process. By integrating with CI/CD tools, it enables a shift-left approach in the development process. This helps find vulnerabilities earlier rather than after the application is published.

Read full review

Acunetix mindshare

Product category:

As of November 2024, the mindshare of Acunetix in the Application Security Tools category stands at 2.5%, up from 2.3% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Application Security Tools

Key learnings from peers

Last updated Nov 21, 2024

Valuable Features

Acunetix stands out for its scheduling capabilities, web-based graphical interface, speed, and log-sequence feature. Users appreciate its Interactive Application Security Testing, vulnerability scanning, and crawl-only scan options. Reporting is detailed and allows for segregation and various formats. False positives are minimal, and its scalability and integration options are praised. The tool is user-friendly with a straightforward setup, making it accessible for developers to identify and fix vulnerabilities efficiently. Its quick scan time is also highlighted.

"I find it to be one of the most comprehensive tools, with support for manual intervention."
"I find it to be one of the most comprehensive tools, with support for manual intervention."
"It generates automated reports."

Room for Improvement

Acunetix could improve the IAST module, enhance database capabilities, and support more OWASP vulnerabilities. Users face issues with manual replication of vulnerabilities, false positives, licensing models, and password management. There's a need for better scanning speed, advanced authentication settings, and mobile app support. Cost and scan limits are concerns, as is the integration of newer technologies like SD1. Improved reporting, integration with tools, and reduced jargon would benefit users, alongside enhanced support for web services and subdomains.

"The solution is generally stable, however, there might be room for improvement regarding glitches or bugs."
"There was an issue related to updates from the internet."
"The cost can be reduced as management has noted it to be on the higher side."

ROI

Many organizations report Acunetix enhances security and saves time by reducing testing needs and improving processes. Though precise cost savings aren't specified, Acunetix detects numerous vulnerabilities, demonstrating ROI. Automatic tools like Acunetix reduce reliance on personal testers and hold off risk during application releases. Despite difficulties in quantifying long-term savings, consistent license renewals and claims of a 300% ROI underline its perceived value. Some credit Acunetix with preventing potential damage from hacks.

Pricing

Enterprise users report that Acunetix’s pricing has increased significantly, with some experiencing up to a 3.5-fold rise. Annual licenses can range from $3,000 to $14,000 for limited applications, and domain-based pricing may inflate costs. While historically perceived as good value, recent changes have aligned Acunetix with competitors' pricing. Some users find the cost reasonable but note the need for multiple licenses or support packages. Transparency in pricing is identified as an area for improvement.

"The price is exceptionally high."
"The solution is expensive."
"The cost is based on two types of licenses, ConsultLite, and ConsultPlus, as well as the number of domains that are scanned."

Popular Use Cases

The primary use of Acunetix is for dynamic application security testing, focusing on scanning web applications to identify vulnerabilities. It is employed for internal penetration testing, security assessments, and vulnerability scans across various sectors such as banking and fintech. Organizations use it globally for assessing OWASP top vulnerabilities, ensuring PCI DSS compliance, and conducting security evaluations on networks and websites. It aids in automating black-box analysis and reducing assessment time.

Service and Support

Acunetix's customer service is described as helpful and responsive, though not 24-hour, often involving ticketing through resellers. Some users find response times to be delayed, especially for critical issues, while others are satisfied with assistance and feature responsiveness. Training and faster issue resolution are desired. The service from Malta and India is praised for being informative and available, although not universally consistent in problem-solving capabilities. Complaints about slow response times and backlog were mentioned.

Deployment

Many users found initial setup straightforward, with deployment taking from minutes to a few hours. Some described it as simple and easy, highlighting web-based features, while others encountered challenges, especially with earlier versions and Linux compatibility. Automation for installation was suggested as a potential improvement. Support was needed by certain users, particularly for upgrades. Documentation and instructions on the website aided several users, and expertise level influenced installation time.

Scalability

Acunetix offers good scalability, particularly when used with cloud configurations. Users report ease of scalability for expanding targets such as websites and applications. The adaptability allows usage adjustment based on workload demands, making it suitable for enterprises. Challenges may occur with licensing and some technical limitations on desktop versions. Users across organizations find the scalability sufficient but are exploring improvements to handle larger and more complex web applications.

Stability

Acunetix exhibits high stability with consistent performance. Users report no service drops or critical issues, and maintenance requires minimal effort. Some updates have caused minor inconveniences, but tech support effectively resolves these. Users find stability satisfactory, with reliable logs and reports, and minimal bugs or glitches observed. Occasional room for improvement exists, yet most rate the tool's stability very positively. Acunetix continues to maintain a stable environment for web application security.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Acunetix Buyer's Guide for additional reliable information.