9 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 7.4 out of 100
7 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 7.5 out of 100

Likelihood to Recommend

Acunetix by Invicti

It is suited well for ad-hoc and scheduled application vulnerability scans. You must review the results to manually filter out false-positives. You must always keep in mind that this is only a vulnerability scan. It can only find a certain class of vulnerabilities, and it can only do that so well. You should definitely not rely on this tool alone for identifying problems. That being said, I have used it along with every other major commercial vulnerability scanner and find it to the best overall ROI compared to more expensive commercial scanners that don't necessarily give you a better user experience or better vulnerability results. I rarely need support from the vendor, but when I do, they have been responsive and able to solve the issue quickly.
Aaron Bryson | TrustRadius Reviewer

Black Duck Software Composition Analysis (SCA)

Well Suited: 1. Easily come out of pain to manage open source components. No worries, Black Duck is to the rescue, it takes care of your open source components in terms of license and security2. SecOps eased with the super Black DuckLess Suited:I can't really come up with a scenario, where it can be less suited. Until you stop using open source components in your code. Which is quite impossible.
Rajiv Aradhyula | TrustRadius Reviewer

Pros

Acunetix by Invicti

  • Fast.
  • Easy-to-use.
  • Great customer support.
  • Reporting features.
  • Supports importing state files from other popular application testing tools.
  • Has other features built-in beyond just scanning for vulnerabilities.
Aaron Bryson | TrustRadius Reviewer

Black Duck Software Composition Analysis (SCA)

  • Black Duck Hub performs scans very quickly
  • Black Duck Hub is easy to use
  • Black Duck Hub has a robust set of integrations available for CI tools such as Jenkins and Bamboo
  • Black Duck has the most extensive open source KB in the industry
Emmanuel Canaan | TrustRadius Reviewer

Cons

Acunetix by Invicti

  • Does not support multiple endpoints well (e.g. apps and services that do not reside at the same URL).
  • Has authentication problems with modern enterprise apps which involve a lot of redirects to unrelated endpoints, federated IDs, SSO, etc. This is related to the first point.
  • The vulnerability detection capability is not as robust as Burp Suite Pro + extensions, Metasploit + auxiliary modules, Nmap + scripts, etc.
Aaron Bryson | TrustRadius Reviewer

Black Duck Software Composition Analysis (SCA)

  • Very slow.
  • Bad UX.
  • Outdated design.
  • Too expensive.
Anonymous | TrustRadius Reviewer

Support Rating

Acunetix by Invicti

No score
No answers yet
No answers on this topic

Black Duck Software Composition Analysis (SCA)

Black Duck Software Composition Analysis (SCA) 8.2
Based on 4 answers
I have a very strong reason for the very best rating. Usually, Black Duck support is quick enough and they continuously keep me updated about the status if some issue is taking time for them to resolve. Overall, I am happy with the response I get from t customer care. I was planning an upgrade and I ran into an issue as the migrated Postgres database does not get identified by the new version of the hub. And all the projects, scans and the huge amount of work we put in comments under version are all lost. I immediately opened a case in the Black Duck customer portal. And in no time, I get a message back from the support for a quick WebEx session. And support was able to help me and my weekend was saved. Thank you for the quick support Black Duck. Appreciate it. I also have some questions on using Black Duck in an optimal way. I get helpful replies quick enough.
Rajiv Aradhyula | TrustRadius Reviewer

Alternatives Considered

Acunetix by Invicti

Every year, we re-evaluate the tools we are using and licensing. We balance the ever-changing vendor licensing-models, costs, tool features/usability, etc. For the last few years, this has been the best overall commercial tool for our specific use case. However, this is only one of many tools that we use and need.
Aaron Bryson | TrustRadius Reviewer

Black Duck Software Composition Analysis (SCA)

Black Duck had similar capabilities to other vendors in the industry but where they come out on top is their extensive catalog of known open source in their knowledge base.
Emmanuel Canaan | TrustRadius Reviewer

Return on Investment

Acunetix by Invicti

  • Saved money compared to other commercial scanners, especially over the long run.
  • Scan speed seems to be pretty good compared to some of the bulkier commercial products out there. However, that largely has to do with proper configuration.
  • A downside is that is requires a bit of extra work just to get it set up to scan APIs, web services, etc.
Aaron Bryson | TrustRadius Reviewer

Black Duck Software Composition Analysis (SCA)

  • Too expensive and time-consuming to use/add in the CI/CD.
Anonymous | TrustRadius Reviewer

Screenshots

Pricing Details

Acunetix by Invicti

General

Free Trial
Yes
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Acunetix by Invicti Editions & Modules

Edition
Websites Scanned: 5$4,500
Websites Scanned: 6-10$7,200
Websites Scanned: 11-20$10,800
Websites Scanned: 21-35$22,540
Websites Scanned: 36-50$26,600
Websites Scanned: Over 50Contact for quote
    Additional Pricing Details

    Black Duck Software Composition Analysis (SCA)

    General

    Free Trial
    Free/Freemium Version
    Premium Consulting/Integration Services
    Yes
    Entry-level set up fee?
    Optional

    Black Duck Software Composition Analysis (SCA) Editions & Modules

    Additional Pricing Details
    Contact the Synopsys Software Integrity Group (SIG) Sales team at https://www.synopsys.com/software-integrity/contact-sales.html for more detailed pricing information.

    Add comparison