Try our new research platform with insights from 80,000+ expert users

Acunetix vs Snyk comparison

Invicti and Snyk are both solutions in the Application Security Tools category. Invicti is ranked #12 with an average rating of 8.4, while Snyk is ranked #4 with an average rating of 7.9. Invicti holds a 2.5% mindshare in AS, compared to Snyk’s 7.6% mindshare. Additionally, 86% of Invicti users are willing to recommend the solution, compared to 100% of Snyk users who would recommend it.
Acunetix
Read 31 Acunetix reviews
  • 3,761 Views
  • 2,973 Comparison Views
86% willing to recommend
Snyk
Read 44 Snyk reviews
  • 13,724 Views
  • 10,048 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024

Acunetix and Snyk are leading security tools competing in the application protection category. Snyk is seen as superior due to its comprehensive features and smoother integration into workflows, which justify its cost.

Features: Acunetix offers comprehensive vulnerability scanning that consistently identifies critical threats. It also provides competitive pricing and solid customer support, making it attractive to budget-conscious buyers. Snyk, on the other hand, integrates seamlessly with developer workflows, offers real-time vulnerability fixes, and supports complex environments, with users favoring its flexible integration capabilities.

Room for Improvement: Acunetix users express the need for enhanced reporting functionalities, wider range of environment support, and increased responsiveness in customer service. Snyk could improve in expanding language support, refining administrative controls, and offering more comprehensive deployment documentation for users looking for better guidance.

Ease of Deployment and Customer Service: Acunetix provides straightforward deployment options but has varied feedback regarding customer support responsiveness. Snyk offers flexible deployment solutions with higher customer satisfaction and reliable support, making it favored for its consistent deployment approach.

Pricing and ROI: Acunetix has cost-effective setups, appreciated by cost-sensitive buyers with a good ROI over time. Snyk demands a higher initial investment but justifies it with essential features, quicker ROI realization, and user confidence in long-term gains. Its broader features make the higher cost worthwhile for many users.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Acunetix vs. Snyk Report (Updated: November 2024).
Buyer's Guide
Acunetix vs. Snyk
November 2024
Download the complete report
Helped 824,053 peers since 2012
 

Categories and Ranking

Acunetix
Ranking in Application Security Tools
12th
Ranking in DevSecOps
5th
Average Rating
7.8
Reviews Sentiment
7.0
Number of Reviews
31
Ranking in other categories
Static Application Security Testing (SAST) (11th), Vulnerability Management (17th)
Snyk
Ranking in Application Security Tools
4th
Ranking in DevSecOps
1st
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
44
Ranking in other categories
Container Security (7th), Software Composition Analysis (SCA) (3rd), Software Development Analytics (2nd)
 

Mindshare comparison

As of December 2024, in the Application Security Tools category, the mindshare of Acunetix is 2.5%, up from 2.3% compared to the previous year. The mindshare of Snyk is 7.6%, down from 8.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools
 

Featured Reviews

AnubhavGoswami - PeerSpot reviewer
Attractive automated reports with boost user productivity and an easy setup
The primary use is mainly related to vulnerability assessment, including both public and internal IP addresses By using this tool, we have reduced the workload and increased the productivity of users. It generates automated reports. This feature is beneficial when sharing reports with clients as…
Read full review
Jayashree Acharyya - PeerSpot reviewer
Used for image scanning and identifying vulnerabilities, but its integration with other services could be improved
The solution has improved or streamlined our process a lot for securing container images. We wanted to make sure we are deploying the secure Docker images. Snyk allowed us to check whether it is following our standard of docker images or not. We use Azure DevOps as our platform, and Snyk's integration with Azure DevOps was okay. However, Snyk's integration with JFrog Artifactory didn't go well. We use JFrog Artifactory to store the artifacts we download. We wanted to integrate Snyk with JFrog Artifactory to scan the binary artifacts we downloaded, but that broke our JFrog Artifactory for some reason. Instead of using it there, we are calling it directly from the pipeline. Snyk's automation features significantly reduced remediation times a couple of times. Sometimes, our developers scan the code from the environment and find some Java vulnerabilities. We fixed those vulnerabilities in the lower environment itself. The solution does not require any maintenance. The accuracy of Snyk's vulnerability detection is pretty good compared to other tools. I rate the solution's vulnerability detection feature an eight out of ten. I would recommend Snyk to other users because it is easy to implement and integrate with Azure DevOps and GitHub. Overall, I rate the solution a seven out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It generates automated reports."
"Our developers can run the attacks directly from their environments, desktops."
"The automated approach to these repetitive discovery attempts would take days to do manually and therefore it helps reduce the time needed to do an assessment."
"Acunetix has an awesome crawler. It gives a referral site map of near targets and also goes really deep to find all the inputs without issues. This was valuable because it helped me find some files or directories, like web admin panels without authentication, which were hidden."
"The vulnerability scanning option for analyzing the security loopholes on the websites is the most valuable feature of this solution."
"The usability and overall scan results are good."
"The most valuable feature of Acunetix is the UI and the scan results are simple."
"We are able to create a report which shows the PCI DSS scoring and share it with the application teams. Then, they can correlate and see exactly what they need to fix, and why."
More Acunetix pros
"It is easy for developers to use. The documentation is clear as well as the APIs are good and easily readable. It's a good solution overall."
"The most valuable features include enriched information around the vulnerabilities for better triaging, in terms of the vulnerability layer origin and vulnerability tree."
"The most valuable feature is that they add a lot of their own information to the vulnerabilities. They describe vulnerabilities and suggest their own mitigations or version upgrades. The information was the winning factor when we compared Snyk to others. This is what gave it more impact."
"The most valuable feature of Snyk is the software composition analysis."
"Our overall security has improved. We are running fewer severities and vulnerabilities in our packages. We fixed a lot of the vulnerabilities that we didn't know were there."
"The code scans on the source code itself were valuable."
"Snyk has given us really good results because it is fully automated. We don't have to scan projects every time to find vulnerabilities, as it already stores the dependencies that we are using. It monitors 24/7 to find out if there are any issues that have been reported out on the Internet."
"A main feature of Snyk is that when you go with SCA, you do get properly done security composition, also from the licensing and open-source parameters perspective. A lot of companies often use open-source libraries or frameworks in their code, which is a big security concern. Snyk deals with all the things and provides you with a proper report about whether any open-source code or framework that you are using is vulnerable. In that way, Snyk is very good as compared to other tools."
More Snyk pros
 

Cons

"The jargon used makes it difficult for project managers to understand the issues, and the technical explanations used make it difficult for developers to understand issues. These things should be simplified much more. That would be very helpful for us when explaining to them what needs to be fixed. The report output needs to be simplified."
"The solution limits the number of scans. It would be much better if we could have unlimited scans."
"The vulnerability identification speed should be improved."
"The only problem that they have is the price. It is a bit expensive, and you cannot change the number of applications for the whole year."
"Currently only supports web scanning."
"I had some issues with the JSON parameters where it found some strange vulnerabilities, but it didn't alert the person using it or me about these vulnerabilities, e.g., an error for SQL injection."
"It should be easier to recreate something manually, with the manual tool, because Acunetix is an automatic tool. If it finds something, it should be easier to manually replicate it. Sometimes you don't get the raw data from the input and output, so that could be improved."
"There is room for improvement in the pricing."
More Acunetix cons
"There are some new features that we would like to see added, e.g., more visibility into library usage for the code. Something along the lines where it's doing the identification of where vulnerabilities are used, etc. This would cause them to stand out in the market as a much different platform."
"It can be improved from the reporting perspective and scanning perspective. They can also improve it on the UI front."
"The tool needs improvement in license compliance. I would like to see the integration of better policy management in the product's future release. When it comes to the organization that I work for, there are a lot of business units since we are a group of companies. Each of these companies has its specific requirements and its own appetite for risk. This should be able to reflect in flexible policies. We need to be able to configure policies that can be adjusted later or overridden by the business unit that is using the product."
"Snyk's API and UI features could work better in terms of speed."
"DAST has shortcomings, and Snyk needs to improve and overcome such shortcomings."
"We were using Microsoft Docker images. It was reporting some vulnerabilities, but we were not able to figure out the fix for them. It was reporting some vulnerabilities in the Docker images given by Microsoft, which were out of our control. That was the only limitation. Otherwise, it was good."
"Snyk has several limitations, including issues with Gradle, NPM, and Xcode, and trouble with AutoPR."
"We would like to have upfront knowledge on how easy it should be to just pull in an upgraded dependency, e.g., even introduce full automation for dependencies supposed to have no impact on the business side of things. Therefore, we would like some output when you get the report with the dependencies. We want to get additional information on the expected impact of the business code that is using the dependency with the newer version. This probably won't be easy to add, but it would be helpful."
More Snyk cons
 

Pricing and Cost Advice

"It is a bit expensive. If you need to check five applications, you have to pay almost 14,000. It is an agreement for two years at 7,000 per year for only five applications. You cannot change the applications in the license. So, you are stuck with the same license for the five applications for one full year."
"The pricing is a little high, and moreover, it's kind of domain-based."
"I would say that Acunetix is expensive because there are products on the market with similar features that are equally or better-priced."
"When we looked at all other vendors and what they were asking for, to provide a third of what Acunetix was capable of doing, it was an easy decision... But now that it's coming to a cost where it's line with market value, it becomes more of a competition... Acunetix is raising the cost of licensing. It's 3.5 times what we were initially quoted."
"The costs aren't very expensive. It costs around $3000 or $4000."
"The price is exceptionally high."
"All things considered, I think it has a good price/value ratio."
"The pricing and licensing are reasonable to a point. In order to run multiple scans at a time, we are going to have to purchase a 100 count license, which is an overkill. Though, compared to what we were paying for, the cost seems reasonable."
More Acunetix pricing and cost advice
"Presently, my company uses an open-source version of the solution. The solution's pricing can be considered quite reasonable owing to the features they offer."
"Snyk is a premium-priced product, so it's kind of expensive. The big con that I find frustrating is when a company charges extra for single sign-on (SSO) into their SaaS app. Snyk is one of the few that I'm willing to pay that add-on charge, but generally I disqualify products that charge an extra fee to do integrated authentication to our identity provider, like Okta or some other SSO. That is a big negative. We had to pay extra for that. That little annoyance aside, it is expensive. You get a lot out of it, but you're paying for that premium."
"We are using the open-source version for the scans."
"It is pretty expensive. It is not a cheap product."
"The price is good. Snyk had a good price compared to the competition, who had higher pricing than them. Also, their licensing and billing are clear."
"With Snyk, you get what you pay for. It is not a cheap solution, but you get a comprehensiveness and level of coverage that is very good. The dollars in the security budget only go so far. If I can maximize my value and be able to have some funds left over for other initiatives, I want to do that. That is what drives me to continue to say, "What's out there in the market? Snyk's expensive, but it's good. Is there something as good, but more affordable?" Ultimately, I find we could go cheaper, but we would lose the completeness of vision or scope. I am not willing to do that because Snyk does provide a pretty important benefit for us."
"The solution is less expensive than Black Duck."
"It's good value. That's the primary thing. It's not cheap-cheap, but it's good value."
More Snyk pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
See recommendations
824,053 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
13%
Government
9%
Manufacturing Company
8%
Financial Services Firm
16%
Computer Software Company
15%
Manufacturing Company
9%
Insurance Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Acunetix Vulnerability Scanner?
The tool's most valuable feature is scan configurations. We use it for external physical applications. The scanning time depends on the application's code.
See all answers
What is your primary use case for Acunetix Vulnerability Scanner?
I use Acunetix for penetration testing purposes. This is the primary use case.
See all answers
What advice do you have for others considering Acunetix Vulnerability Scanner?
I rate the overall solution nine out of ten. I prefer Acunetix for its more precise and accurate results.
See all answers
How does Snyk compare with SonarQube?
Snyk does a great job identifying and reducing vulnerabilities. This solution is fully automated and monitors 24/7 to find any issues reported on the internet. It will store dependencies that you a...
See all answers
What do you like most about Snyk?
The most effective feature in securing project dependencies stems from its ability to highlight security vulnerabilities.
See all answers
What needs improvement with Snyk?
Snyk has several limitations, including issues with Gradle, NPM, and Xcode, and trouble with AutoPR. It lacks the ability to select branches on its Web UI, forcing users to rely on CLI or CI/CD for...
See all answers
 

Comparisons

OWASP Zap vs Acunetix Logo
OWASP Zap vs Acunetix
Compared 16% of the time
PortSwigger Burp Suite Professional vs Acunetix Logo
PortSwigger Burp Suite Professional vs Acunetix
Compared 12% of the time
HCL AppScan vs Acunetix Logo
HCL AppScan vs Acunetix
Compared 10% of the time
Tenable.io Web Application Scanning vs Acunetix Logo
Tenable.io Web Application Scanning vs Acunetix
Compared 8% of the time
More Acunetix Competitors
GitHub Advanced Security vs Snyk Logo
GitHub Advanced Security vs Snyk
Compared 13% of the time
SonarQube Server (formerly SonarQube) vs Snyk Logo
SonarQube Server (formerly SonarQube) vs Snyk
Compared 11% of the time
Black Duck vs Snyk Logo
Black Duck vs Snyk
Compared 10% of the time
Wiz vs Snyk Logo
Wiz vs Snyk
Compared 7% of the time
Fortify Static Code Analyzer vs Snyk Logo
Fortify Static Code Analyzer vs Snyk
Compared 6% of the time
More Snyk Competitors
 

Product Reports

Buyer's Guide
Acunetix
December 2024
Acunetix reportDownload Acunetix product report
Buyer's Guide
Snyk
November 2024
Snyk reportDownload Snyk product report
 

Also Known As

AcuSensor
No data available
 

Learn More

Invicti
Snyk
 

Overview

Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.

Snyk is a user-friendly security solution that enables users to safely develop and use open source code. Users can create automatic scans that allow them to keep a close eye on their code and prevent bad actors from exploiting vulnerabilities. This enables users to find and remove vulnerabilities soon after they appear.

Benefits of Snyk

Some of the benefits of using Snyk include:

  • Conserves resources: Snyk easily integrates with other security solutions and uses their security features to ensure that the work that users are doing is completely secure. These integrations allow them to protect themselves without pulling resources from their continued integration or continued delivery workflows. Resources can be conserved for areas of the greatest need.
  • Highly flexible: Snyk enables users to customize the system’s security automation features to meet their needs. Users can guarantee that the automation performs the functions that are most essential for their current project. Additionally, users are able to maintain platform governance consistency across their system.
  • Keeps users ahead of emerging threats. Snyk employs a database of threats that help it detect and keep track of potential issues. This database is constantly being updated to reflect the changes that take place in the realm of cybersecurity. It also uses machine learning. Users are prepared to deal with new issues as they arise.
  • Automatically scans projects for threats. Snyk’s command-line interface enables users to schedule the solution to run automatic scans of their projects. Time and manpower can be conserved for the areas of greatest need without sacrificing security.

Reviews from Real Users

Snyk is a security platform for developers that stands out among its competitors for a number of reasons. Two major ones are its ability to integrate with other security solutions and important insights that it can enable users to discover. Snyk enables users to combine its already existing security features with those of other solutions to create far more robust and flexible layers of security than what it can supply on its own. It gives users the ability to dig into the security issues that they may experience. Users are given a clear view of the root causes of these problems. This equips them to address the problem and prevent similar issues in the future.

Cameron G., a security software engineer at a tech company, writes, “The most valuable features are their GitLab and JIRA integrations.The GitLab integration lets us pull projects in pretty easily, so that it's pretty minimal for developers to get it set up. Using the JIRA integration, it's also pretty easy to get the information that is generated, as a result of that GitLab integration, back to our teams in a non-intrusive way and in a workflow that we are already using. Snyk is something of a bridge that we use; we get our projects into it and then get the information out of it. Those two integrations are crucial for us to be able to do that pretty simply.”

Sean M., the chief information security officer of a technology vendor, writes, "From the software composition analysis perspective, it first makes sure that we understand what is happening from a third-party perspective for the particular product that we use. This is very difficult when you are building software and incorporating dependencies from other libraries, because those dependencies have dependencies and that chain of dependencies can go pretty deep. There could be a vulnerability in something that is seven layers deep, and it would be very difficult to understand that is even affecting us. Therefore, Snyk provides fantastic visibility to know, "Yes, we have a problem. Here is where it ultimately comes from." It may not be with what we're incorporating, but something much deeper than that."

 

Sample Customers

Joomla!, Digicure, Team Random, Credit Suisse, Samsung, Air New Zealand
StartApp, Segment, Skyscanner, DigitalOcean, Comic Relief
Buyer's Guide
Acunetix vs. Snyk
November 2024
Free Report: Acunetix vs. Snyk
Find out what your peers are saying about Acunetix vs. Snyk and other solutions. Updated: November 2024.
DOWNLOAD NOW
824,053 professionals have used our research since 2012.
See our Acunetix vs. Snyk report.
See our list of best Application Security Tools vendors and best DevSecOps vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.