Try our new research platform with insights from 80,000+ expert users

Acunetix vs Rapid7 InsightAppSec comparison

The compared Invicti and Rapid7 solutions aren't in the same category. Invicti is ranked #12 in AS , with an average rating of 8.4, and holds a 2.5% mindshare in the category. Rapid7 is ranked #4 in DAST , with an average rating of 8.2, and holds a 12.1% mindshare. Additionally, 86% of Invicti users are willing to recommend the solution, compared to 100% of Rapid7 users who would recommend it.
Acunetix
Read 31 Acunetix reviews
  • 3,761 Views
  • 2,973 Comparison Views
86% willing to recommend
Rapid7 InsightAppSec
Read 13 Rapid7 InsightAppSec reviews
  • 365 Views
  • 261 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Acunetix and Rapid7 InsightAppSec based on real PeerSpot user reviews.

Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Acunetix vs. Rapid7 InsightAppSec Report (Updated: May 2022).
Buyer's Guide
Acunetix vs. Rapid7 InsightAppSec
May 2022
Download the complete report
Helped 824,067 peers since 2012
 

Categories and Ranking

Acunetix
Average Rating
7.8
Reviews Sentiment
7.0
Number of Reviews
31
Ranking in other categories
Application Security Tools (12th), Static Application Security Testing (SAST) (11th), Vulnerability Management (17th), DevSecOps (5th)
Rapid7 InsightAppSec
Average Rating
8.6
Reviews Sentiment
7.1
Number of Reviews
13
Ranking in other categories
Dynamic Application Security Testing (DAST) (4th)
 

Mindshare comparison

While both are Quality Assurance solutions, they serve different purposes. Acunetix is designed for Application Security Tools and holds a mindshare of 2.5%, up 2.3% compared to last year.
Rapid7 InsightAppSec, on the other hand, focuses on Dynamic Application Security Testing (DAST), holds 12.1% mindshare, down 13.0% since last year.
Application Security Tools
Dynamic Application Security Testing (DAST)
 

Featured Reviews

AnubhavGoswami - PeerSpot reviewer
Attractive automated reports with boost user productivity and an easy setup
The primary use is mainly related to vulnerability assessment, including both public and internal IP addresses By using this tool, we have reduced the workload and increased the productivity of users. It generates automated reports. This feature is beneficial when sharing reports with clients as…
Read full review
Vikas Dusa - PeerSpot reviewer
Helps to check multiple websites, particularly dynamic and e-commerce websites, for vulnerabilities within the code
In Rapid7 InsightAppSec, a distinctive feature is the provision of a CDM for integrating web servers and web applications. To establish the connection between these applications, you only need to paste the provided CDN into your metadata. Once connected, every piece of information, including vulnerabilities, can be accessed. It also offers demo sessions. If there is any malicious network traffic targeting a specific web application, it is designed to detect and showcase the entire scenario. It provides insights into potential vulnerabilities, including issues related to process scripting or content security policy vulnerabilities. Setting up and configuring scans within the tool is easy, and I would rate it a nine out of ten. It provides videos on YouTube, along with documentation that breaks down the process into step-by-step instructions.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"One of the features that I feel is groundbreaking, that I would like to see expanded on, is the IAS feature: The Interactive Application Security Testing module that gets loaded onto an application on a server, for more in-depth, granular findings. I think that is really neat. I haven't seen a lot of competitors doing that."
"Their technical support has been very active. If I have an issue, I can reach out to them and get an answer pretty quick."
"Acunetix is the best service in the world. It is easy to manage. It gives a lot of information to the users to see and identify problems in their site or applications. It works very well."
"I find it to be one of the most comprehensive tools, with support for manual intervention."
"By integrating with CI/CD tools, it enables a shift-left approach in the development process."
"It can operate both as a standalone and it can be integrated with other applications, which makes it a very versatile solution to have."
"We are able to create a report which shows the PCI DSS scoring and share it with the application teams. Then, they can correlate and see exactly what they need to fix, and why."
"Acunetix has an awesome crawler. It gives a referral site map of near targets and also goes really deep to find all the inputs without issues. This was valuable because it helped me find some files or directories, like web admin panels without authentication, which were hidden."
More Acunetix pros
"In Rapid7 InsightAppSec, a distinctive feature is the provision of a CDM for integrating web servers and web applications. To establish the connection between these applications, you only need to paste the provided CDN into your metadata. Once connected, every piece of information, including vulnerabilities, can be accessed. It also offers demo sessions."
"It's very easy to use and user-friendly. It does the job."
"It is a very robust solution."
"The initial setup for us was easy enough. We didn't face too many issues. Deployment took maybe 30 minutes. It's quite quick and doesn't cause too much trouble at the outset."
"It uses a signature-based method to check for problems with your code and will provide an alert if anything is found."
"The product’s most valuable feature is UI. It is easy to manage and find vulnerabilities in the application."
"You have various attack modules, and you also have the Attack Replay feature for the attack sequence. You can reproduce an attack and see it. That is a very good feature I noticed in this solution. It helps developers as well."
"The solution is stable."
More Rapid7 InsightAppSec pros
 

Cons

"There is room for improvement in website authentication because I've seen other products that can do it much better."
"The cost can be reduced as management has noted it to be on the higher side."
"The solution can be improved by adding the ability to scan subdomains automatically, and by providing reports that can be exported to external databases to share with other solutions."
"The jargon used makes it difficult for project managers to understand the issues, and the technical explanations used make it difficult for developers to understand issues. These things should be simplified much more. That would be very helpful for us when explaining to them what needs to be fixed. The report output needs to be simplified."
"The only problem that they have is the price. It is a bit expensive, and you cannot change the number of applications for the whole year."
"It should be easier to recreate something manually, with the manual tool, because Acunetix is an automatic tool. If it finds something, it should be easier to manually replicate it. Sometimes you don't get the raw data from the input and output, so that could be improved."
"I had some issues with the JSON parameters where it found some strange vulnerabilities, but it didn't alert the person using it or me about these vulnerabilities, e.g., an error for SQL injection."
"When monitoring the traffic we always have issues with the bandwidth consumption and the throttling of traffic."
More Acunetix cons
"The dynamic scanning feature has simplified and improved the security testing process. I suggest adding a SaaS feature to the solution to support scanning SaaS applications, making it more comprehensive. It would be beneficial if the solution could also scan mobile applications. It only scans web applications and should also cover mobile applications, including firmware recommendations."
"The only concern I have with Rapid7 is that it does not provide enough information about vulnerabilities within AppSec."
"In the future, if they can have integration with a lot of ticketing systems then it would be amazing."
"They should add more features. I would like to see them do a little more on static analysis and also interactivity analysis. Currently, it does very basic static analysis. It could do a little more static analysis, which is something that would help. A lot more interactivity analysis should also be there. It should basically look at security during interactivity."
"Rapid7 InsightAppSec needs improvement in detecting phishing pages."
"The interface should be a little bit easier to manage. Sometimes, the logic that they use is kind of strange. They need to work a little bit more on their interface to make it more understandable. The interface is the only problem. I'm using Rapid7, which is very intuitive. There are other applications available in the market with a better interface. They can include more techniques or options to test different types of security because the templates are limited. It would be great to see them follow the MITRE ATT&CK framework or what is there in tools like Veracode and Synopsys."
"When you add new projects for the same product, it either duplicates or replaces the scan configuration. If I run a scan for the same product with a different scan configuration, it should keep the previous scan configuration and not replace it with the new scan configuration. It should just add the new scan configuration. That would be helpful. They do keep the results as it is, but the scan configuration keeps changing. For example, I have set a scan configuration to a full scan, and next week, I want to run a new scan for the same product with some changes or new functionalities. I want to run a partial scan. Currently, if I change the scan configuration to partial, it changes the old one also to partial. That should be improved."
"I would like more details of what the product can do."
More Rapid7 InsightAppSec cons
 

Pricing and Cost Advice

"When we looked at all other vendors and what they were asking for, to provide a third of what Acunetix was capable of doing, it was an easy decision... But now that it's coming to a cost where it's line with market value, it becomes more of a competition... Acunetix is raising the cost of licensing. It's 3.5 times what we were initially quoted."
"The cost is based on two types of licenses, ConsultLite, and ConsultPlus, as well as the number of domains that are scanned."
"The pricing and licensing are reasonable to a point. In order to run multiple scans at a time, we are going to have to purchase a 100 count license, which is an overkill. Though, compared to what we were paying for, the cost seems reasonable."
"The costs aren't very expensive. It costs around $3000 or $4000."
"The solution is expensive."
"The pricing is a little high, and moreover, it's kind of domain-based."
"Acunetix was around the same price as all the other vendors we looked at, nothing special."
"All things considered, I think it has a good price/value ratio."
More Acunetix pricing and cost advice
"They offer a good price, but I don't remember its cost. It is fair as compared to the competition. We have opted for project-based licensing, not user-based. We can add any number of users. That doesn't matter. It is worth the money."
"Rapid7 InsightAppSec is cheap."
"I rate Rapid7 InsightAppSec’s pricing an eight out of ten."
"The price of this product is very cheap."
"I'm not sure how much it costs exactly, but I know it's expensive."
"Its price is competitive. It is not expensive."
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
See recommendations
824,067 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
13%
Government
9%
Manufacturing Company
8%
Computer Software Company
20%
Financial Services Firm
14%
Manufacturing Company
10%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Acunetix Vulnerability Scanner?
The tool's most valuable feature is scan configurations. We use it for external physical applications. The scanning time depends on the application's code.
See all answers
What is your primary use case for Acunetix Vulnerability Scanner?
I use Acunetix for penetration testing purposes. This is the primary use case.
See all answers
What advice do you have for others considering Acunetix Vulnerability Scanner?
I rate the overall solution nine out of ten. I prefer Acunetix for its more precise and accurate results.
See all answers
What do you like most about Rapid7 InsightAppSec?
In Rapid7 InsightAppSec, a distinctive feature is the provision of a CDM for integrating web servers and web applications. To establish the connection between these applications, you only need to p...
See all answers
What needs improvement with Rapid7 InsightAppSec?
The dynamic scanning feature has simplified and improved the security testing process. I suggest adding a SaaS feature to the solution to support scanning SaaS applications, making it more comprehe...
See all answers
What is your primary use case for Rapid7 InsightAppSec?
We use Rapid7 InsightAppSec for dynamic application security scanning. We scan our web applications to identify vulnerabilities and then address the issues based on the report. It is a task solutio...
See all answers
 

Comparisons

OWASP Zap vs Acunetix Logo
OWASP Zap vs Acunetix
Compared 16% of the time
PortSwigger Burp Suite Professional vs Acunetix Logo
PortSwigger Burp Suite Professional vs Acunetix
Compared 12% of the time
HCL AppScan vs Acunetix Logo
HCL AppScan vs Acunetix
Compared 10% of the time
Tenable.io Web Application Scanning vs Acunetix Logo
Tenable.io Web Application Scanning vs Acunetix
Compared 8% of the time
Snyk vs Acunetix Logo
Snyk vs Acunetix
Compared 2% of the time
More Acunetix Competitors
Rapid7 AppSpider vs Rapid7 InsightAppSec Logo
Rapid7 AppSpider vs Rapid7 InsightAppSec
Compared 29% of the time
PortSwigger Burp Suite Professional vs Rapid7 InsightAppSec Logo
PortSwigger Burp Suite Professional vs Rapid7 InsightAppSec
Compared 15% of the time
OWASP Zap vs Rapid7 InsightAppSec Logo
OWASP Zap vs Rapid7 InsightAppSec
Compared 13% of the time
Fortify WebInspect vs Rapid7 InsightAppSec Logo
Fortify WebInspect vs Rapid7 InsightAppSec
Compared 8% of the time
Qualys Web Application Scanning vs Rapid7 InsightAppSec Logo
Qualys Web Application Scanning vs Rapid7 InsightAppSec
Compared 4% of the time
More Rapid7 InsightAppSec Competitors
 

Product Reports

Buyer's Guide
Acunetix
December 2024
Acunetix reportDownload Acunetix product report
Buyer's Guide
Rapid7 InsightAppSec
December 2024
Rapid7 InsightAppSec reportDownload Rapid7 InsightAppSec product report
 

Also Known As

AcuSensor
InsightAppSec
 

Learn More

Invicti
Rapid7
 

Overview

Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.

Your web applications may be complex, but your application security testing tool doesn’t need to be. InsightAppSec brings Rapid7’s proven Dynamic Application Security Testing (DAST) technology to the Insight platform, combining powerful application crawling and attack capabilities, flexibility in scan scope and scheduling, and accuracy in results with a modern UI, intuitive workflows, and sensible data organization. This enables you to identify XSS, SQL injection, CSRF, and other vulnerabilities with unparalleled ease. The best part? All of these capabilities are delivered via the cloud so that you’re up and running in minutes to identify the critical security risks that exist in your applications.

 

Sample Customers

Joomla!, Digicure, Team Random, Credit Suisse, Samsung, Air New Zealand
CenterPoint Energy, CPA Australia, Hypertherm, First American Financial Corporation, Rackspace
Buyer's Guide
Acunetix vs. Rapid7 InsightAppSec
May 2022
Free Report: Acunetix vs. Rapid7 InsightAppSec
Find out what your peers are saying about Acunetix vs. Rapid7 InsightAppSec and other solutions. Updated: May 2022.
DOWNLOAD NOW
824,067 professionals have used our research since 2012.
See our Acunetix vs. Rapid7 InsightAppSec report.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.