Try our new research platform with insights from 80,000+ expert users

Invicti vs Trend Vision One - Cloud Security comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

Invicti
Average Rating
8.2
Number of Reviews
27
Ranking in other categories
Static Application Security Testing (SAST) (14th), API Security (5th), Dynamic Application Security Testing (DAST) (3rd)
Trend Vision One - Cloud Se...
Average Rating
8.6
Number of Reviews
21
Ranking in other categories
Vulnerability Management (9th), Container Security (9th), Cloud Workload Protection Platforms (CWPP) (7th), Hybrid Cloud Computing Platforms (6th), Extended Detection and Response (XDR) (13th), Cloud Security Posture Management (CSPM) (7th), Cloud-Native Application Protection Platforms (CNAPP) (6th), Attack Surface Management (ASM) (4th), Cloud Infrastructure Entitlement Management (CIEM) (4th)
 

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Invicti is designed for Dynamic Application Security Testing (DAST) and holds a mindshare of 16.2%, up 14.7% compared to last year.
Trend Vision One - Cloud Security, on the other hand, focuses on Extended Detection and Response (XDR), holds 0.1% mindshare, up 0.1% since last year.
Dynamic Application Security Testing (DAST)
Extended Detection and Response (XDR)
 

Featured Reviews

Akshay Waghmare - PeerSpot reviewer
Nov 9, 2023
A stable and user-friendly solution that can be used for dynamic application security testing
We use Invicti for dynamic application security testing and to integrate files into the pipeline The most valuable feature of Invicti is getting baseline scanning and incremental scan. The solution's false positive analysis and vulnerability analysis libraries could be improved. I have been…
Brett Tatum - PeerSpot reviewer
Oct 20, 2023
We can quickly deploy cloud conformity, provides good visibility, and control
I am satisfied with the protection that Trend Vision One - Cloud Security provides for our multi-cloud environment. I need a single pane of glass that will give me the information I need quickly and easily. I set up Trend Vision One - Cloud Security in one afternoon, which I have done before. With one person, it only takes a day or so. Now, it is so simple to get it into any cloud and give it a small permission set to go in there and read our infrastructure, and then get some valuable insights very quickly. Trend Vision One - Cloud Security provides us with contextual data, which is especially useful when we are acquiring a company or when I take on a new role and need to quickly understand what they have. Trend Vision One - Cloud Security also helps me to quickly correlate information in the DevSec process, as it protects everything. There are three times when a security vulnerability can be caught: when we write the code, when we deploy the code, or when the code is running. If a vulnerability is not caught until the code is running, we probably made a mistake. We can then go back and look at the first two steps to see where we should have caught the issue. I am 100 percent satisfied with the context provided by Trend Vision One - Cloud Security. Trend Vision One - Cloud Security protects my cloud workloads. If an attack gets past the first two layers, I still need a way to protect the endpoints, whether they're EC2 instances, virtual machines in Azure, or even on-premises servers. I need a single pane of glass to see all of my endpoints. And let's say there's a zero-day attack, something that no one knew about and couldn't have caught. With Workload Security, I don't need to patch it immediately, even if it's a Windows update. Workload Security can patch it for me and put security tools around it. So we use it for patching and filtering, as well as other security needs. It sits on our virtual machines and whatever cloud we use. The biggest benefit of Trend Vision One - Cloud Security is its single pane of glass view. Other cloud providers, such as AWS and Azure, offer similar features, but they require multiple dashboards and reports. With Trend Vision One - Cloud Security, I have a single pane of glass view of my entire infrastructure. We also use Trend Vision One - Cloud Security for many security needs, including endpoint protection and Office 365 protection. This gives me a single vendor, a single pane of glass, and a single console to manage the security of all of my platforms. Trend Vision One - Cloud Security gives us full visibility and control of our cloud environments. When I am asked difficult questions, or when I am going through an audit or other process, I use its reporting and dashboarding capabilities to get all the information I need in one place. This saves me from having to correlate data from different sources, and it helps me to resolve audit and compliance workflows more quickly. Visibility helps us resolve complexity in our environment by providing quick snapshots of an account. This is especially useful when I'm trying to get an overview of a new workload or a new company, as it allows us to take a snapshot of the environment to make it easier to ingest. We buy our subscriptions through the marketplace because it's easier. I don't want to buy credits, because I can use the marketplace as needed. It also allows us to quickly bill the subscriptions to our existing account, so I don't have to set up another vendor or billing terms. I can just quickly use the marketplace, choose the subscriptions I want, and pay as I go. It's perfect. Conformity would give me a good overview of what infrastructure we are using and where we can potentially save costs by emphasizing the infrastructure that we do not necessarily need. Trend Vision One - Cloud Security protects me in the cloud, protects my registry, and protects my DevOps pipeline. It is not necessary for Trend Vision One - Cloud Security to protect all of these things. Additionally, Trend Vision in general also protects our Office 365 infrastructure, including SharePoint, Teams, and Outlook. Protecting all the data across our environment is extremely important these days. No matter what industry we're in, it's crucial to understand our data security protocols, where our data is stored, how it's protected, and how it's accessed. This information gives us a single, overarching view of our data security posture, which helps us to identify and remediate misconfigurations and quickly respond to zero-day attacks or compromises. The sooner we know about a security incident, the fewer repercussions we're likely to experience.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"High level of accuracy and quick scanning."
"Its ability to crawl a web application is quite different than another similar scanner."
"It has very good integration with the CI/CD pipeline."
"I am impressed by the whole technology that they are using in this solution. It is really fast. When using netscan, the confirmation that it gives on the vulnerabilities is pretty cool. It is really easy to configure a scan in Netsparker Web Application Security Scanner. It is also really easy to deploy."
"When we try to manually exploit the vulnerabilities, it often takes time to realize what's going on and what needs to be done."
"I am impressed with Invictus’ proof-based scanning. The solution has reduced the incidence of false positive vulnerabilities. It has helped us reduce our time and focus on vulnerabilities."
"Invicti's best feature is the ability to identify vulnerabilities and manually verify them."
"The platform is stable."
"The product helps us understand our environment better."
"Virtual patching is one of the key features, which is executed with their IPS."
"I really like Trend Vision One - Cloud Security's dashboard."
"The storage and computing features are valuable."
"The most valuable features are intrusion prevention and anti-malware capabilities."
"It has the best EDR functionality for cloud and typical endpoints."
"The the most valuable feature is the scanning engine. It does not impact server performance. It's very lightweight."
"The stability is quite good."
 

Cons

"They don't really provide the proof of concept up to the level that we need in our organization. We are a consultancy firm, and we provide consultancy for the implementation and deployment solutions to our customers. When you run the scans and the scan is completed, it only shows the proof of exploit, which really doesn't work because the tool is running the scan and exploiting on the read-only form. You don't really know whether it is actually giving the proof of exploit. We cannot prove it manually to a customer that the exploit is genuine. It is really hard to perform it manually and prove it to the concerned development, remediation, and security teams. It is currently missing the static application security part of the application security, especially web application security. It would be really cool if they can integrate a SAS tool with their dynamic one."
"The scannings are not sufficiently updated."
"The scanning time, complexity, and authentication features of Invicti could be improved."
"Reporting should be improved. The reporting options should be made better for end-users. Currently, it is possible, but it's not the best. Being able to choose what I want to see in my reports rather than being given prefixed information would make my life easier. I had to depend on the API for getting the content that I wanted. If they could fix the reporting feature to make it more comprehensive and user-friendly, it would help a lot of end-users. Everything else was good about this product."
"Netsparker doesn't provide the source code of the static application security testing."
"I think that it freezes without any specific reason at times. This needs to be looked into."
"Invicti takes too long with big applications, and there are issues with the login portal."
"It would be better for listing and attacking Java-based web applications to exploit vulnerabilities."
"I'd like to see mobile licenses included in the main license, similar to Kaspersky's model for future features."
"They should provide a way for users to see violations for specific compliance."
"One area for improvement in Trend Vision One - Cloud Security is marketing; in particular, Trend Vision should update the marketing documentation. The information needs to be more comprehensive."
"The workbook insights generate a massive list, making it inconvenient to review."
"There are also some loopholes because it's a new product that they have recently migrated to the cloud. We do see some issues with the policies we have assigned when it comes to a particular account. There are some issues with system support, such as a particular server kernel version that is not supported."
"The product could use a little bit of automation."
"Documentation on cloud architecture and job architecture would be helpful."
"The dashboard should be a bit more intuitive."
 

Pricing and Cost Advice

"We are using an NFR license and I do not know the exact price of the NFR license. I think 20 FQDN for three years would cost around 35,000 US Dollars."
"The price should be 20% lower"
"The solution is very expensive. It comes with a yearly subscription. We were paying 6000 dollars yearly for unlimited scans. We have three licenses; basic, business, and ultimate. We need ultimate because it has unlimited scan numbers."
"Invicti is best suited for large enterprises. I don't think small and medium-sized businesses can afford it. Maintenance costs aren't that great."
"OWASP Zap is free and it has live updates, so that's a big plus."
"I think that price it too high, like other Security applications such as Acunetix, WebInspect, and so on."
"It is competitive in the security market."
"Netsparker is one of the costliest products in the market. It would help if they could allow us to scan multiple URLs on the same license."
"With everything I deal with, Trend Micro Cloud One's pricing is somewhere in the middle."
"The is price is 25% cheaper than it was a couple of years ago, which is good."
"The price could be lower. That is a bit of a consideration."
"It's a slightly expensive product."
"Pricing for Trend Micro Cloud One Container Security in the corporate market is okay."
"The pricing for Cloud One is reasonable because my costs scale up and down based on my infrastructure usage."
"I rate the solution's pricing a six out of ten."
"While Trend Vision One - Cloud Security was a cost-effective solution for us in 2021, we've noticed a recent price increase that makes it less affordable."
report
Use our free recommendation engine to learn which Dynamic Application Security Testing (DAST) solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
55%
Financial Services Firm
8%
Computer Software Company
6%
Manufacturing Company
5%
Educational Organization
30%
Computer Software Company
14%
Manufacturing Company
6%
Healthcare Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What is your experience regarding pricing and costs for Netsparker Web Application Security Scanner?
The inventory prices are very competitive. The competitors are more expensive, but the estimated cost of Invicti is more competitive than that of other tools. They had very good pricing. We have di...
What do you like most about Invicti?
The most valuable feature of Invicti is getting baseline scanning and incremental scan.
What needs improvement with Invicti?
Invicti has provided a roadmap outlining the improvements they're focusing on. Given the competition, with tools like Qualys and many others in the market, the interface needs to be enhanced, integ...
What do you like most about Trend Micro Cloud One Workload Security?
The the most valuable feature is the scanning engine. It does not impact server performance. It's very lightweight.
What is your experience regarding pricing and costs for Trend Micro Cloud One Workload Security?
The is price is 25% cheaper than it was a couple of years ago, which is good.
What needs improvement with Trend Micro Cloud One Workload Security?
The local agent should be able to show more logs. At present, the logs are only available from the web console and not from the local agent.
 

Also Known As

Netsparker
Trend Micro Cloud One , Cloud One Workload Security, Trend Micro Cloud One Container Security, Trend Micro Cloud One Application Security, Cloud One File Storage Security, Cloud One Network Security, Cloud One Conformity
 

Overview

 

Sample Customers

Samsung, The Walt Disney Company, T-Systems, ING Bank
Information Not Available
Find out what your peers are saying about Invicti vs. Trend Vision One - Cloud Security and other solutions. Updated: July 2024.
814,649 professionals have used our research since 2012.