Invicti Reviews

I like the way Netsparker provides the comprehensive reports in various formats such as PDF, HTML, etc., which are enough to understand what's going on with our web application.

When we try to manually exploit the vulnerabilities, it often takes time to realize what's going on and what needs to be done. By using this wonderful tool, we can easily see on the outstanding reports "Important", "Medium", "Low", and "Information" vulnerabilities. Apart from that, it also visualizes what's wrong with a server such as an outdated version, authorization, version disclosure, etc.

Sometimes, it is slow; when we are running this application and browsing other applications concurrently, it makes other applications work slow. Besides that, it seems fine.

When I use Netsparker along with other applications such as testing web apps on browsers like Chrome or Firefox for a little longer than normal, there are issues that might be due to the CPU high usage. I'm unable to work on other applications (mainly browsers such as Chrome/Firefox) and ultimately it hangs and takes time to browse on browsers.

I have used it for most of the cases when I have to check vulnerabilities and other security exploitation. So, it's been like six months.

I have not use this feature. I will let you know when i am done with deployment.

Until now, I have not encountered any stability issues.

It sometimes hangs when running large web-based applications.

The way they are communicating with users like us, yeah, we can give them 9 out of 10. :)

I have used Acunetix. The reason I switched to Netsparker would be that the performance I found on Acunetix was very slow. It would take something like a day if I had to scan our web-based application product. That is not reliable when you are working with clients who want a quick response regarding how the application performs.

I found initial setup to be straightforward; anyone can set up this solution.

Not from a vendor team.

Price seem to be reliable.

No i did not evaluate other options.

I would definitely recommend it to those who really want to know in-depth details of their applications/products regarding security.

I am impressed by the whole technology that they are using in this solution. It is really fast. When using netscan, the confirmation that it gives on the vulnerabilities is pretty cool.

It is really easy to configure a scan in Netsparker Web Application Security Scanner. It is also really easy to deploy.

They don't really provide the proof of concept up to the level that we need in our organization. We are a consultancy firm, and we provide consultancy for the implementation and deployment solutions to our customers. When you run the scans and the scan is completed, it only shows the proof of exploit, which really doesn't work because the tool is running the scan and exploiting on the read-only form. You don't really know whether it is actually giving the proof of exploit. We cannot prove it manually to a customer that the exploit is genuine. It is really hard to perform it manually and prove it to the concerned development, remediation, and security teams.

It is currently missing the static application security part of the application security, especially web application security. It would be really cool if they can integrate a SAS tool with their dynamic one.

We started to use Netsparker Web Application Security Scanner in February of this year. We are using its latest version.

It is pretty stable. 

It is scalable.

We engage with the local partner and the distributor here for support. We are satisfied with the support here.

The initial setup wasn't a problem for me. I have been using these security tools for a while now.

I also use Micro Focus Fortify. The difference is mainly in the UI. I haven't really got into the comparison between the output of the scans, but I was really impressed by the UI and the ease of use of Netsparker Web Application Security Scanner.

I would recommend this solution. I haven't really researched other products, but for me, Netsparker Web Application Security Scanner is a benchmark right now.

I would rate Netsparker Web Application Security Scanner an eight out of ten. 

We are a consulting firm and we provide implementation and deployment of solutions to our customers.

I am very much impressed by the whole technology.

This tool is really fast and the information that they provide on vulnerabilities is pretty good.

The UI is good and it is really easy to use.

With respect to the algorithm that Netsparker is running, they don't really provide the proof of concept up to the level that we need, here in the organization. Specifically, because the tool is running the scan and exploiting the read-only version, it doesn't prove to the customer that the exploit is genuine. We have to perform this manually, but it is difficult to prove to the concerned team, whether it is the development team, the remediation team, or the security team.

Right now, they are missing the static application security part, especially web application security. If they can integrate a SaaS tool with their dynamic one then it would be really helpful.

I have been working with Netsparker for several months.

We have not experienced any bugs or glitches, so it seems stable.

Scalability-wise, it is pretty good.

We have been engaged with the local partner and we get a good level of support.

We also use Micro Focus Fortify and I have not had a chance to compare the scans, but I prefer the interface and ease of use with Netsparker. It is really easy to configure and deploy, as well as communicate this to the client.

The initial setup was not a problem for me, as I have been using these security tools for a while.

Overall, I am satisfied with Netsparker. However, I cannot say at this point that I would recommend it because although it is good, I will now be using it as a benchmark for evaluating other products.

I would rate this solution an eight out of ten.

The scanner and the result generator are valuable features for us.

We have integrated the Netsparker API into the scripts that we use.

The support's response time could be faster since we are in different time zones.

We have been using the solution for a couple of years.

We did not encounter any issues with stability.

We did not encounter any issues with scalability.

I would rate the technical support at an eight out of 10.

We use simultaneous products, but I found this to be the best of the lot.

It is easy to use. There is always someone available who can give you a free demo when you install the software according to your convenience.

There is flexible pricing per user and per year. It is competitive in the security market.

We evaluated Nessus and Acunetix.

It is a pretty good product, if you go with the full version. It has a good report generation and enables better customization of policies.