Acunetix vs OpenText Core Application Security comparison

Invicti and OpenText are both solutions in the Application Security Tools category. Invicti is ranked #14 with an average rating of 8.1, while OpenText is ranked #13 with an average rating of 7.3. Invicti holds a 2.4% mindshare in AS, compared to OpenText’s 3.4% mindshare. Additionally, 87% of Invicti users are willing to recommend the solution, compared to 89% of OpenText users who would recommend it.

Acunetix

Read 37 Acunetix reviews

5,979 Views
2,870 Comparison Views

87% willing to recommend

OpenText Core Application S...

Read 62 OpenText Core Application Security reviews

6,541 Views
4,840 Comparison Views

89% willing to recommend

Acunetix

OpenText Core Application S...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 28, 2025

Acunetix and OpenText Core Application Security are both robust application security solutions competing in the domain of vulnerability management and protection. Based on overall features and user feedback, Acunetix might have a slight edge due to its rapid scanning and detailed reporting abilities.

Features: Acunetix specializes in advanced scheduling, login session recordings, and a user-friendly interface, facilitating efficient vulnerability assessments. OpenText Core Application Security excels in integrated reporting, extensive language support, and superior static and dynamic analysis capabilities.

Room for Improvement: Acunetix users suggest improving false-positive management, licensing flexibility, and third-party tool integration. OpenText Core Application Security could enhance its tool integration, reduce false positive rates, and consider more competitive pricing strategies.

Ease of Deployment and Customer Service: Acunetix offers deployment across multiple environments, including on-premises and cloud, though its customer service reviews are mixed regarding responsiveness. OpenText Core Application Security provides diverse deployment options, receiving commendations for efficient support despite requests for more immediate assistance.

Pricing and ROI: Acunetix has been critiqued for its pricing model complexity and recent cost hikes, but many users still find it valuable. OpenText Core Application Security is perceived as moderately priced with flexible licensing, although some regard it as expensive. Both solutions potentially deliver strong ROI by enhancing security processes and reducing manual vulnerability management workload.

To learn more, read our detailed Acunetix vs. OpenText Core Application Security Report (Updated: December 2025).

Buyer's Guide

Acunetix vs. OpenText Core Application Security

December 2025

Download the complete report

Helped 879,259 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

ROI

Sentiment score

7.4

Acunetix enhances security by detecting vulnerabilities, improving efficiency, reducing testing dependency, and increasing ROI through operational effectiveness.

Sentiment score

3.5

OpenText Core enhances security by proactively reducing risks and saving time, ensuring operational continuity and data protection.

It saves a significant amount of time by covering attack surfaces.

Abdullah Ozkan

Information Security Engineer at Tübitak Bilgem

I have seen a return on investment, as Acunetix helps reduce the man-days and effort needed for scanning bulk applications through automated assessments.

Rahul Kumar

Senior Engineer - Penetration Tester at a government with 10,001+ employees

I have seen a return on investment with Acunetix, including time saved and cost reduction, because it provides us threats on our web application servers.

Mohamed Fouad

Cybersecurity Team Leader at EMAK For Integrated Solutions

For more quotes and insights, download the Acunetix report

No quotes available

For more quotes and insights, download the OpenText Core Application Security report

Customer Service

Sentiment score

6.6

Acunetix customer service is responsive with varied satisfaction in speed, quality, feature integration, and vulnerability management updates.

Sentiment score

4.8

OpenText Core Application Security support is effective but mixed, with slow responses and communication gaps affecting issue resolution.

For high-severity issues, they reach out within two to three hours, and for critical issues, a response is received within 15 minutes.

Himanshu_Tyagi

Lead Cybersecurity at TBO

The technical support from Invicti is very good and fast.

Abdullah Ozkan

Information Security Engineer at Tübitak Bilgem

Support staff not being familiar with the problem.

Rahul Kumar

Senior Engineer - Penetration Tester at a government with 10,001+ employees

For more quotes and insights, download the Acunetix report

Support tickets often stay open for one month to three months, which leads to customer frustration.

Diego Caicedo Lescano

Chief Innovation Officer at SAGGA

I had direct interaction with them, which facilitated how we onboarded Fortify.

Himanshu_Tyagi

Lead Cybersecurity at TBO

For more quotes and insights, download the OpenText Core Application Security report

Scalability Issues

Sentiment score

7.1

Acunetix is highly scalable, easily adaptable to various environments, with few scalability concerns, mostly regarding licenses or operating systems.

Sentiment score

6.9

OpenText Core Application Security is praised for scalability and enterprise adaptability, though pricing flexibility presents challenges for some users.

Acunetix can handle increasing workloads and more applications easily.

Rahul Kumar

Senior Engineer - Penetration Tester at a government with 10,001+ employees

Acunetix's scalability for my growing needs is great; it is a very scalable product compared to others.

Mohamed Fouad

Cybersecurity Team Leader at EMAK For Integrated Solutions

For more quotes and insights, download the Acunetix report

If a customer wants to know the tools and the technology used for their application to scan their application, they provide less information on that.

Himanshu_Tyagi

Lead Cybersecurity at TBO

For more quotes and insights, download the OpenText Core Application Security report

Stability Issues

Sentiment score

8.2

Acunetix offers high stability with minimal maintenance, reliable results, rare issues, and varying user stability ratings.

Sentiment score

8.8

OpenText Core is reliable and stable, with occasional resource issues and high system requirements, often rated 7-10/10.

I did not need to reach customer support because the product is very stable.

Mohamed Fouad

Cybersecurity Team Leader at EMAK For Integrated Solutions

For more quotes and insights, download the Acunetix report

No quotes available

For more quotes and insights, download the OpenText Core Application Security report

Room For Improvement

Acunetix needs improvements in false positives, scan speed, integration, flexibility, customization, and compatibility with modern development tools.

OpenText Core needs improved reporting, integration, automation, language support, pricing clarity, CI/CD features, and enhanced interface for security.

The main concern is related to false positives; Acunetix needs to work on identifying valid and invalid findings.

Himanshu_Tyagi

Lead Cybersecurity at TBO

Acunetix should have better integration with newer tools such as GitHub and Azure DevOps.

KashifJamil

CEO at Xcelliti

I believe Acunetix can improve customer support, as the dedicated support staff are often unfamiliar with problems and troubleshooting, leading to communication gaps that delay issue resolution.

Rahul Kumar

Senior Engineer - Penetration Tester at a government with 10,001+ employees

For more quotes and insights, download the Acunetix report

It would be beneficial if Fortify could check for CVEs (Common Vulnerabilities and Exposures) in third-party libraries, which I currently use a separate dependency checker tool for.

reviewer2646048

Lead Developer at a legal firm with 1,001-5,000 employees

One thing I would highlight is if Fortify can focus more on the centralized dashboard of the tools because nowadays, tools such as SentinelOne also exist for identifying security issues, but they have a centralized dashboard that merges their cloud solution and application security side solution together.

Himanshu_Tyagi

Lead Cybersecurity at TBO

It would be better for Fortify on Demand if they could analyze not only the security pillar but also maintainability, portability, and reliability, covering all pillars of ISO 25000.

Diego Caicedo Lescano

Chief Innovation Officer at SAGGA

For more quotes and insights, download the OpenText Core Application Security report

Setup Cost

Acunetix pricing is high but offers competitive value, with flexible licensing and features justifying the cost for some.

Enterprise buyers find OpenText Core Application Security expensive, yet appreciate its robust features and scalable, cost-effective cloud options.

The pricing cost is affordable for small and mid-sized organizations, and when compared to Checkmarx, it is significantly affordable, as Checkmarx is quite expensive.

Himanshu_Tyagi

Lead Cybersecurity at TBO

We secured a special licensing model for penetration testing companies, which is cost-effective.

Abdullah Ozkan

Information Security Engineer at Tübitak Bilgem

The pricing of Acunetix is pretty expensive and could be improved.

Srinivas Walikar

Senior Business Development Manager at Intouch World

For more quotes and insights, download the Acunetix report

No quotes available

For more quotes and insights, download the OpenText Core Application Security report

Valuable Features

Acunetix offers fast, automated scanning, insightful reporting, and flexibility, efficiently identifying vulnerabilities like cross-site scripting and SQL injection.

OpenText Core ensures compliance, accurate security scans, DevOps integration, and cost-effective code analysis with low false positives.

Its most valuable role is in enhancing security by identifying potential vulnerabilities efficiently.

Srinivas Walikar

Senior Business Development Manager at Intouch World

The solution is excellent at detecting SQL injection and cross-site scripting vulnerabilities.

KashifJamil

CEO at Xcelliti

Rahul Kumar

Senior Engineer - Penetration Tester at a government with 10,001+ employees

For more quotes and insights, download the Acunetix report

Fortify helps me find serious issues, such as developers inadvertently leaving access tokens, including API access tokens, in the source code.

reviewer2646048

Lead Developer at a legal firm with 1,001-5,000 employees

On demand you have two levels of reports: the first from the tool, which is the same as we can get from Fortify on-premises, and a next level reporting made by experts from OpenText, leading to a more condensed and precise report as level three.

Diego Caicedo Lescano

Chief Innovation Officer at SAGGA

Additionally, you can integrate Fortify in CICD pipeline, so you get real-time updates about the security issues in your pipeline.

Himanshu_Tyagi

Lead Cybersecurity at TBO

For more quotes and insights, download the OpenText Core Application Security report

Categories and Ranking

Acunetix

Ranking in Application Security Tools

14th

Ranking in Static Application Security Testing (SAST)

9th

Average Rating

7.8

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Vulnerability Management (25th), DevSecOps (6th)

OpenText Core Application S...

Ranking in Application Security Tools

13th

Ranking in Static Application Security Testing (SAST)

12th

Average Rating

8.0

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of December 2025, in the Application Security Tools category, the mindshare of Acunetix is 2.4%, down from 2.5% compared to the previous year. The mindshare of OpenText Core Application Security is 3.4%, down from 4.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Application Security Tools Market Share Distribution
Product	Market Share (%)
OpenText Core Application Security	3.4%
Acunetix	2.4%
Other	94.2%

Application Security Tools

Featured Reviews

Rahul Kumar

Senior Engineer - Penetration Tester at a government with 10,001+ employees

Identifies vulnerabilities across bulk web applications but needs better support and cleaner reports

The best feature Acunetix offers is the centralized dashboard and the quality of reports it generates, which includes various options for selecting reports and developer options for directly sharing the reports with developers. The centralized dashboard of Acunetix gives visibility into the security aspects of mass applications; for instance, with more than 200 applications, it provides a valuable overview of findings and necessary fixes, along with a high-level summary that helps us achieve compliance through monthly and sometimes weekly scanning. In terms of reporting, Acunetix is excellent because it can generate different types of reports, such as an executive summary report, detailed reports, and developer reports that can be shared directly with developers. Acunetix positively impacts my organization by helping identify outdated libraries and applications, including legacy applications vulnerable to old attacks based on OWASP Top 10, thus aiding in compliance checks for PCI DSS and OWASP. Acunetix provides a centralized report with compliance-related aspects and a vulnerability timeline, effectively helping reduce vulnerabilities and save time.

Read full review

Himanshu_Tyagi

Lead Cybersecurity at TBO

Supports secure development pipelines and improves issue detection but limits internal visibility and needs broader dashboard integration

If you have an internal team and you want your internal team to validate false positives, basically to determine whether it's a valid issue or an invalid issue, then I wouldn't recommend it much. That was the only reason we migrated from Fortify on Demand to another solution. Fortify has another tool which is Fortify WebInspect. On Demand is the outsourcing solution, and WebInspect you can use with your in-house team, which is basically the product developed by the Fortify team. For automated scanning, Fortify helps a lot. Regarding the visibility for the internal team, everyone is moving toward the DevSecOps side, and Fortify team has made good progress that you can integrate into your CICD pipeline. One thing I would highlight is if Fortify can focus more on the centralized dashboard of the tools because nowadays, tools such as SentinelOne also exist for identifying security issues, but they have a centralized dashboard that merges their cloud solution and application security side solution together. If you have one tool that works for different solutions, it helps a lot. They are doing good, but they should invest more on the AI side as well because AI security is evolving these days. On the cloud side, they have already made good progress, but I believe they should explore the new area related to AI security as well.

Read full review

See which vendors are best for you

Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.

See recommendations

879,259 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

12%

Manufacturing Company

10%

University

Financial Services Firm

18%

Manufacturing Company

14%

Computer Software Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	15
Midsize Enterprise	8
Large Enterprise	16

By reviewers
Company Size	Count
Small Business	17
Midsize Enterprise	8
Large Enterprise	44

Questions from the Community

What do you like most about Acunetix Vulnerability Scanner?

The tool's most valuable feature is scan configurations. We use it for external physical applications. The scanning time depends on the application's code.

See all answers

What is your primary use case for Acunetix Vulnerability Scanner?

My main use case for Acunetix is using it as a web security and web vulnerability scanner. I use Acunetix in my day-to-day work to perform web vulnerability assessments for our web servers.

See all answers

What advice do you have for others considering Acunetix Vulnerability Scanner?

I would rate Acunetix a 10 out of 10. I gave Acunetix a 10 because of its accuracy. My advice to others looking into using Acunetix is that it will be one of the best web vulnerability scanners, pr...

See all answers

What do you like most about Micro Focus Fortify on Demand?

It helps deploy and track changes easily as per time-to-time market upgrades.

See all answers

What is your experience regarding pricing and costs for Micro Focus Fortify on Demand?

In comparison with other tools, they're competitive. It is not more expensive than other solutions, but their pricing is competitive. The licenses for Fortify On Demand are generally bought in unit...

See all answers

What needs improvement with Micro Focus Fortify on Demand?

See all answers

Comparisons

OWASP Zap vs Acunetix

Compared 15% of the time

PortSwigger Burp Suite Professional vs Acunetix

Compared 8% of the time

Invicti vs Acunetix

Compared 8% of the time

HCL AppScan vs Acunetix

Compared 6% of the time

SonarQube vs Acunetix

Compared 5% of the time

More Acunetix Competitors

SonarQube vs OpenText Core Application Security

Compared 15% of the time

Checkmarx One vs OpenText Core Application Security

Compared 12% of the time

Coverity Static vs OpenText Core Application Security

Compared 9% of the time

Veracode vs OpenText Core Application Security

Compared 7% of the time

GitHub Advanced Security vs OpenText Core Application Security

Compared 6% of the time

More OpenText Core Application Security Competitors

Product Reports

Buyer's Guide

Acunetix

December 2025

Download Acunetix product report

Buyer's Guide

OpenText Core Application Security

December 2025

OpenText Core Application Security report

Download OpenText Core Application Security product report

Also Known As

AcuSensor

Micro Focus Fortify on Demand

Overview

Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.

Invicti

OpenText Core Application Security offers robust features like static and dynamic scanning, real-time vulnerability tracking, and seamless integration with development platforms, designed to enhance code security and reduce operational costs.

OpenText Core Application Security is a cloud-based, on-demand service providing accurate and deep scanning capabilities with detailed reporting. Its integrations with development platforms ensure an enhanced security layer in the development lifecycle, benefiting users by lowering operational costs and facilitating efficient remediation. The platform addresses needs for intuitive interfaces, API support, and comprehensive vulnerability assessments, helping improve code security and accelerate time-to-market. Despite its strengths, challenges exist around false positives, report clarity, and language support, alongside confusing pricing and package options. Enhancements are sought in areas like CI/CD pipeline configuration, report visualization, scan times, and integration with third-party tools such as GitLab, container scanning, and software composition analysis.

What features define OpenText Core Application Security?

Static and Dynamic Scanning: Offers thorough analysis to identify vulnerabilities during development.
Real-time Vulnerability Tracking: Continuously updates and monitors potential security threats.
Seamless Development Platform Integration: Enhances security processes without disrupting workflows.
Cloud-Based Service: Provides flexible, on-demand security capabilities with accurate results.
API Support: Allows smooth integration and automation within existing systems.

What benefits should users look for in reviews?

Reduced Operational Costs: Optimizes resources by lowering costs associated with security management.
Efficient Remediation: Speeds up the process of identifying and resolving vulnerabilities.
Enhanced Code Security: Strengthens overall application security during the development lifecycle.
Accelerated Time-to-Market: Streamlines development stages by integrating essential security tools.

Industries like mobile applications, e-commerce, and banking leverage OpenText Core Application Security for its ability to identify vulnerabilities such as SQL injections. Integrating seamlessly with DevSecOps and security auditing processes, this tool supports developers in writing safer code, ensuring secure application deployment and enhancing software assurance.

OpenText

Sample Customers

Joomla!, Digicure, Team Random, Credit Suisse, Samsung, Air New Zealand

SAP, Aaron's, British Gas, FICO, Cox Automative, Callcredit Information Group, Vital and more.

Buyer's Guide

Acunetix vs. OpenText Core Application Security

December 2025

Free Report: Acunetix vs. OpenText Core Application Security

Find out what your peers are saying about Acunetix vs. OpenText Core Application Security and other solutions. Updated: December 2025.

DOWNLOAD NOW

879,259 professionals have used our research since 2012.

See our Acunetix vs. OpenText Core Application Security report.

See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.