Try our new research platform with insights from 80,000+ expert users
Acunetix Logo

Acunetix pros and cons

Vendor: Invicti
3.9 out of 5
1,598 followers
Post review

Pros & Cons summary

Acunetix Interactive Application Security Testing offers granular findings and detailed reports with PCI DSS scoring, aiding compliance. It features robust automated scanning and scheduling for efficiency, backed by responsive technical support. However, there are integration challenges with CI/CD and tools like JIRA, and issues in replicating findings. Limited mobile integration and a restrictive licensing model are concerns. Pricing and cost management are considered high, prompting calls for reduction.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Acunetix features an Interactive Application Security Testing module for in-depth and granular findings, distinguishing it from competitors.
Scheduling scans adds efficiency and flexibility to the security process.
Technical support is highly responsive, providing quick answers to issues.
Integration capabilities with other applications enhance its versatility, making it suitable for a variety of setups.
The tool performs well in scalability, capable of functioning both independently and as part of integrated systems.

CONS

Integration into other tools is very limited, creating issues when incorporating a CI/CD process with JIRA, Jenkins, and Chef.
The licensing model has become restrictive, with previously flexible options now limiting the user.
Pricing is considered high, with suggestions for cost reduction to make it more accessible.
There are issues related to bandwidth consumption and throttling during traffic monitoring.
There is a need for improvement in vulnerability identification speed and simplification of technical explanations in reports.
 

Acunetix Pros review quotes

SeniorSe5762 - PeerSpot reviewer
Feb 3, 2019
One of the features that I feel is groundbreaking, that I would like to see expanded on, is the IAS feature: The Interactive Application Security Testing module that gets loaded onto an application on a server, for more in-depth, granular findings. I think that is really neat. I haven't seen a lot of competitors doing that.
Read full review
SJ
Oct 21, 2020
It's very user-friendly for the testing teams. It's very easy for them to understand things and to fix vulnerabilities.
Read full review
SS
Oct 15, 2020
I haven't seen reporting of that level in any other tool.
Read full review
Buyer's Guide
Acunetix
November 2024
Free Report: Acunetix Reviews and More
Learn what your peers think about Acunetix. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
DOWNLOAD NOW
816,406 professionals have used our research since 2012.
Securityf8d4 - PeerSpot reviewer
Apr 3, 2019
Their technical support has been very active. If I have an issue, I can reach out to them and get an answer pretty quick.
Read full review
SeniorSe98b1 - PeerSpot reviewer
Apr 8, 2019
We are able to create a report which shows the PCI DSS scoring and share it with the application teams. Then, they can correlate and see exactly what they need to fix, and why.
Read full review
LeadInfo77fb - PeerSpot reviewer
Feb 3, 2019
The most important feature is that it's a web-based graphical user interface. That is a great addition. Also, the ability to schedule scans is great.
Read full review
it_user1441263 - PeerSpot reviewer
Nov 11, 2020
Acunetix has an awesome crawler. It gives a referral site map of near targets and also goes really deep to find all the inputs without issues. This was valuable because it helped me find some files or directories, like web admin panels without authentication, which were hidden.
Read full review
JS
Sep 4, 2023
It comes equipped with an internal applicator, which automatically identifies and addresses vulnerabilities within the program.
Read full review
AG
Jun 18, 2021
There is a lot of documentation on their website which makes setting it up and using it quite simple.
Read full review
reviewer1218672 - PeerSpot reviewer
Nov 17, 2019
Our developers can run the attacks directly from their environments, desktops.
Read full review
Show 10 more reviews (out of 29)
 

Acunetix Cons review quotes

SeniorSe5762 - PeerSpot reviewer
Feb 3, 2019
Integration into other tools is very limited for Acunetix. While we're trying to incorporate a CI/CD process where we're integrating with JIRA and we're integrating with Jenkins and Chef, it becomes problematic. Other tools give you a high integration capability to connect into different solutions that you may already have, like JIRA.
Read full review
SJ
Oct 21, 2020
The jargon used makes it difficult for project managers to understand the issues, and the technical explanations used make it difficult for developers to understand issues. These things should be simplified much more. That would be very helpful for us when explaining to them what needs to be fixed. The report output needs to be simplified.
Read full review
SS
Oct 15, 2020
The vulnerability identification speed should be improved.
Read full review
Buyer's Guide
Acunetix
November 2024
Free Report: Acunetix Reviews and More
Learn what your peers think about Acunetix. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
DOWNLOAD NOW
816,406 professionals have used our research since 2012.
Securityf8d4 - PeerSpot reviewer
Apr 3, 2019
You can't actually change your password after you've set it unless you go back into the administration account and you change it there. Thus, if you're locked out and don't remember your password, that's a thing.
Read full review
SeniorSe98b1 - PeerSpot reviewer
Apr 8, 2019
We have had issues during upgrades where their scans worked on some apps better with previous versions. Then, we had to work with their tech support, who were great, to get it fixed for the next version.
Read full review
LeadInfo77fb - PeerSpot reviewer
Feb 3, 2019
It should be easier to recreate something manually, with the manual tool, because Acunetix is an automatic tool. If it finds something, it should be easier to manually replicate it. Sometimes you don't get the raw data from the input and output, so that could be improved.
Read full review
it_user1441263 - PeerSpot reviewer
Nov 11, 2020
I had some issues with the JSON parameters where it found some strange vulnerabilities, but it didn't alert the person using it or me about these vulnerabilities, e.g., an error for SQL injection.
Read full review
JS
Sep 4, 2023
There's a clear need for a reduction in pricing to make the service more accessible.
Read full review
AG
Jun 18, 2021
The pricing is a bit on the higher side.
Read full review
reviewer1218672 - PeerSpot reviewer
Nov 17, 2019
Tools that would allow us to work more efficiently with the mobile environment, with Android and iOS.
Read full review
Show 10 more reviews (out of 29)

Product Categories

Product Categories
Application Security Tools
Static Application Security Testing (SAST)
Vulnerability Management
DevSecOps

Popular Comparisons

Popular Comparisons
SonarQube Server (formerly SonarQube) vs Acunetix Logo
SonarQube Server (formerly SonarQube) vs Acunetix
Veracode vs Acunetix Logo
Veracode vs Acunetix
GitLab vs Acunetix Logo
GitLab vs Acunetix
Checkmarx One vs Acunetix Logo
Checkmarx One vs Acunetix
Snyk vs Acunetix Logo
Snyk vs Acunetix
Fortify on Demand vs Acunetix Logo
Fortify on Demand vs Acunetix
Sonatype Lifecycle vs Acunetix Logo
Sonatype Lifecycle vs Acunetix
PortSwigger Burp Suite Professional vs Acunetix Logo
PortSwigger Burp Suite Professional vs Acunetix
HCL AppScan vs Acunetix Logo
HCL AppScan vs Acunetix
Qualys Web Application Scanning vs Acunetix Logo
Qualys Web Application Scanning vs Acunetix
Tenable.io Web Application Scanning vs Acunetix Logo
Tenable.io Web Application Scanning vs Acunetix
Fortify Application Defender vs Acunetix Logo
Fortify Application Defender vs Acunetix
Contrast Security Protect vs Acunetix Logo
Contrast Security Protect vs Acunetix
w3af vs Acunetix Logo
w3af vs Acunetix
Syhunt Hybrid vs Acunetix Logo
Syhunt Hybrid vs Acunetix
See all alternatives

Product Categories

Product Categories
Application Security Tools
Static Application Security Testing (SAST)
Vulnerability Management
DevSecOps

Popular Comparisons

Popular Comparisons
SonarQube Server (formerly SonarQube) vs Acunetix Logo
SonarQube Server (formerly SonarQube) vs Acunetix
Veracode vs Acunetix Logo
Veracode vs Acunetix
GitLab vs Acunetix Logo
GitLab vs Acunetix
Checkmarx One vs Acunetix Logo
Checkmarx One vs Acunetix
Snyk vs Acunetix Logo
Snyk vs Acunetix
Fortify on Demand vs Acunetix Logo
Fortify on Demand vs Acunetix
Sonatype Lifecycle vs Acunetix Logo
Sonatype Lifecycle vs Acunetix
PortSwigger Burp Suite Professional vs Acunetix Logo
PortSwigger Burp Suite Professional vs Acunetix
HCL AppScan vs Acunetix Logo
HCL AppScan vs Acunetix
Qualys Web Application Scanning vs Acunetix Logo
Qualys Web Application Scanning vs Acunetix
Tenable.io Web Application Scanning vs Acunetix Logo
Tenable.io Web Application Scanning vs Acunetix
Fortify Application Defender vs Acunetix Logo
Fortify Application Defender vs Acunetix
Contrast Security Protect vs Acunetix Logo
Contrast Security Protect vs Acunetix
w3af vs Acunetix Logo
w3af vs Acunetix
Syhunt Hybrid vs Acunetix Logo
Syhunt Hybrid vs Acunetix
See all alternatives
Related questions
  • 997
If you had to both encrypt and compress data during transmission, which would you do first and why?
  • 104
When evaluating Application Security, what aspect do you think is the most important to look for?
  • 212
What are the Top 5 cybersecurity trends in 2022?
  • 175
What are the threats associated with using ‘bogus’ cybersecurity tools?
  • 28
Which application security solutions include both vulnerability scans and quality checks?
  • 78
We're evaluating Tripwire, what else should we consider?
  • 2,251
Is SonarQube the best tool for static analysis?
  • 48
Why Do I Need Application Security Software?
  • 94
Which Email Security enterprise solution would you choose: Cisco Secure Email vs Forcepoint Email Security vs Barracuda Email Security Gateway?
  • 131
SAST vs. DAST: Which is better for application security testing?