Try our new research platform with insights from 80,000+ expert users

Invicti vs Kiuwan comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 8, 2024
 

Categories and Ranking

Invicti
Ranking in Static Application Security Testing (SAST)
14th
Average Rating
8.2
Number of Reviews
27
Ranking in other categories
API Security (5th), Dynamic Application Security Testing (DAST) (3rd)
Kiuwan
Ranking in Static Application Security Testing (SAST)
15th
Average Rating
8.6
Number of Reviews
23
Ranking in other categories
Application Security Tools (19th)
 

Mindshare comparison

As of November 2024, in the Static Application Security Testing (SAST) category, the mindshare of Invicti is 1.3%, up from 1.3% compared to the previous year. The mindshare of Kiuwan is 0.9%, down from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST)
 

Featured Reviews

Akshay Waghmare - PeerSpot reviewer
Nov 9, 2023
A stable and user-friendly solution that can be used for dynamic application security testing
We use Invicti for dynamic application security testing and to integrate files into the pipeline The most valuable feature of Invicti is getting baseline scanning and incremental scan. The solution's false positive analysis and vulnerability analysis libraries could be improved. I have been…
Mustufa Bhavnagarwala - PeerSpot reviewer
Nov 27, 2023
Though a stable tool, the UI needs improvement
Kiuwan is useful because it provides functions related to secure code review, source code review, detection of security vulnerabilities, and development of proper input validations to get proper output and coding to see if all the systems in our environment are properly used. Some SQL queries are…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Invicti is getting baseline scanning and incremental scan."
"The scanner is light on the network and does not impact the network when scans are running."
"Invicti's best feature is the ability to identify vulnerabilities and manually verify them."
"Scan, proxify the application, and then detailed report along with evidence and remediations to problems."
"One of the features I like about this program is the low number of false positives and the support it offers."
"Attacking feature: Actually, attacking is not a solo feature. It contains many attack engines, Hawk, and many properties. But Netsparker's attacking mechanism is very flexible. This increases the vulnerability detection rate. Also, Netsparker made the Hawk for real-time interactive command-line-based exploit testing. It's very valuable for a vulnerability scanner."
"The platform is stable."
"The solution generates reports automatically and quickly."
"I personally like the way it breaks down security vulnerabilities with LoC at first glance."
"We are using this solution to increase the quality of our software and to test the vulnerabilities in our tools before the customers find them."
"I like that I can scan the code without sending it to the Kiuwan cloud. I can do it locally on my device. When the local analyzer finishes, the results display on the dashboard in the cloud. It's essential for security purposes to be able to scan my code locally."
"The feature that I have found the most valuable in Kiuwan is the speed of scanning. Compared to other SaaS tools I have used, Kiuwan is much quicker in performing scans. I have not yet used it on a large code base, but from what I have experienced, it is efficient and accurate. Additionally, I have used it both manually and in an automated pipeline, and both methods have been effective. The speed of scanning is what makes it valuable to me."
"I've found the reporting features the most helpful."
"The solution offers very good technical support."
"I find it immensely helpful because it's not just about generating code; it's about ensuring efficiency in the execution."
"I have found the security and QA in the source code to be most valuable."
 

Cons

"The scanner itself should be improved because it is a little bit slow."
"Asset scanning could be better. Once, it couldn't scan assets, and the issue was strange. The price doesn't fit the budget of small and medium-sized businesses."
"The scannings are not sufficiently updated."
"It would be better for listing and attacking Java-based web applications to exploit vulnerabilities."
"Netsparker doesn't provide the source code of the static application security testing."
"The license could be better. It would help if they could allow us to scan multiple URLs on the same license. It's a major hindrance that we are facing while scanning applications, and we have to be sure that the URLs are the same and not different so that we do not end up consuming another license for it. Netsparker is one of the costliest products in the market. The licensing is tied to the URL, and it's restricted. If you have a URL that you scanned once, like a website, you cannot retry that same license. If you are scanning the same website but in a different domain or different URL, you might end up paying for a second license. It would also be better if they provided proper support for multi-factor authentications. In the next release, I would like them to include good multi-factor authentication support."
"The solution needs to make a more specific report."
"The support's response time could be faster since we are in different time zones."
"The configuration hasn't been that good."
"It could improve its scalability abilities."
"I would like to see better integration with Azure DevOps in the next release of this solution."
"Integration of the programming tools could be improved."
"Perhaps more languages supported."
"DIfferent languages, such Spanish, Portuguese, and so on."
"The development-to-delivery phase."
"The integration process could be improved. It'll also help if it could generate reports automatically. But I'm not sure about the effectiveness of the reports. This is because, in our last project, we still found some key issues that weren't captured by the Kiuwan report."
 

Pricing and Cost Advice

"We never had any issues with the licensing; the price was within our assigned limits."
"I think that price it too high, like other Security applications such as Acunetix, WebInspect, and so on."
"The solution is very expensive. It comes with a yearly subscription. We were paying 6000 dollars yearly for unlimited scans. We have three licenses; basic, business, and ultimate. We need ultimate because it has unlimited scan numbers."
"Netsparker is one of the costliest products in the market. It would help if they could allow us to scan multiple URLs on the same license."
"OWASP Zap is free and it has live updates, so that's a big plus."
"The price should be 20% lower"
"We are using an NFR license and I do not know the exact price of the NFR license. I think 20 FQDN for three years would cost around 35,000 US Dollars."
"It is competitive in the security market."
"This solution is cheaper than other tools."
"Kiuwan is an open-source solution and free to use."
"Nothing special. It's a very fair model."
"The price of Kiuwan is lower than that of other tools on the market."
"I recommend contacting a sales person who will create the best plan payment plan for you, as we did."
"It follows a subscription model. I think the price is somewhere in the middle."
"Check with your account manager."
report
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
55%
Financial Services Firm
8%
Computer Software Company
6%
Manufacturing Company
5%
Financial Services Firm
15%
Computer Software Company
13%
Comms Service Provider
8%
Insurance Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What is your experience regarding pricing and costs for Netsparker Web Application Security Scanner?
The inventory prices are very competitive. The competitors are more expensive, but the estimated cost of Invicti is more competitive than that of other tools. They had very good pricing. We have di...
What do you like most about Invicti?
The most valuable feature of Invicti is getting baseline scanning and incremental scan.
What needs improvement with Invicti?
Invicti has provided a roadmap outlining the improvements they're focusing on. Given the competition, with tools like Qualys and many others in the market, the interface needs to be enhanced, integ...
What do you like most about Kiuwan?
The most valuable feature of the solution stems from the fact that it is quick when processing and giving an output or generating a report.
What is your experience regarding pricing and costs for Kiuwan?
I'm not entirely sure about the price and business aspects, but I assume Checkmarx might be less expensive. I think Checkmarx might offer more affordable options, especially in its smaller business...
What needs improvement with Kiuwan?
Kiuwan can improve its UI a little more. The user experience can be made better. Kiuwan offers a user interface that is similar to the one offered by Windows 7 or Windows 98, which I saw when I ran...
 

Comparisons

 

Also Known As

Netsparker
No data available
 

Learn More

 

Overview

 

Sample Customers

Samsung, The Walt Disney Company, T-Systems, ING Bank
DHL, BNP Paribas, Zurich, AXA, Ernst & Young, KFC, Santander, Latam, Ferrovial
Find out what your peers are saying about Invicti vs. Kiuwan and other solutions. Updated: October 2024.
814,649 professionals have used our research since 2012.