What users are saying about

Acunetix by Invicti vs Checkmarx

Acunetix by Invicti
16 Ratings
Checkmarx
14 Ratings

Acunetix by Invicti

16 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 7.6 out of 100

Based on 16 reviews and ratings

Checkmarx

14 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 5.5 out of 100

Based on 14 reviews and ratings

Attribute Ratings

  • Acunetix by Invicti is rated higher in 1 area: Likelihood to Recommend

Likelihood to Recommend

9.0

Acunetix by Invicti

90%
1 Rating
6.0

Checkmarx

60%
2 Ratings

Likelihood to Recommend

Acunetix by Invicti

It is suited well for ad-hoc and scheduled application vulnerability scans. You must review the results to manually filter out false-positives. You must always keep in mind that this is only a vulnerability scan. It can only find a certain class of vulnerabilities, and it can only do that so well. You should definitely not rely on this tool alone for identifying problems. That being said, I have used it along with every other major commercial vulnerability scanner and find it to the best overall ROI compared to more expensive commercial scanners that don't necessarily give you a better user experience or better vulnerability results. I rarely need support from the vendor, but when I do, they have been responsive and able to solve the issue quickly.

Read full review

Aaron Bryson | TrustRadius Reviewer
Aaron Bryson
View all 1 answers on this topic

Checkmarx

It is well suited in cases where you wanna share reports with people that do not have a lot of knowledge in security concepts. It would help as the report has elaborate content explaining the issues and fix recommendations. If you want a SAST tool that gives fewer false positives, there are better options compared to Checkmarx. In cases where you want to do SAST scans regularly and quickly, Checkmarx may hold you back with its high count of false positives and lengthy reports.

Read full review

Anonymous | TrustRadius Reviewer
Verified User
View all 2 answers on this topic

Pros

Acunetix by Invicti

  • Fast.
  • Easy-to-use.
  • Great customer support.
  • Reporting features.
  • Supports importing state files from other popular application testing tools.
  • Has other features built-in beyond just scanning for vulnerabilities.

Read full review

Aaron Bryson | TrustRadius Reviewer
Aaron Bryson
View all 1 answers on this topic

Checkmarx

  • Supports a large number of languages
  • Finds a large variety of potential risks

Read full review

Anonymous | TrustRadius Reviewer
Verified User
View all 2 answers on this topic

Cons

Acunetix by Invicti

  • Does not support multiple endpoints well (e.g. apps and services that do not reside at the same URL).
  • Has authentication problems with modern enterprise apps which involve a lot of redirects to unrelated endpoints, federated IDs, SSO, etc. This is related to the first point.
  • The vulnerability detection capability is not as robust as Burp Suite Pro + extensions, Metasploit + auxiliary modules, Nmap + scripts, etc.

Read full review

Aaron Bryson | TrustRadius Reviewer
Aaron Bryson
View all 1 answers on this topic

Checkmarx

  • Scan duration
  • False positives
  • Integration with other tools like Jenkins comes with some inconveniences.

Read full review

Anonymous | TrustRadius Reviewer
Verified User
View all 2 answers on this topic

Pricing Details

Acunetix by Invicti

General

Free Trial
Yes
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Starting Price

$0

Acunetix by Invicti Editions & Modules

Edition
Websites Scanned: 5$4,500
Websites Scanned: 6-10$7,200
Websites Scanned: 11-20$10,800
Websites Scanned: 21-35$22,540
Websites Scanned: 36-50$26,600
Websites Scanned: Over 50Contact for quote
  1. none
Additional Pricing Details

Checkmarx

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Starting Price

Checkmarx Editions & Modules

Additional Pricing Details

Alternatives Considered

Acunetix by Invicti

Every year, we re-evaluate the tools we are using and licensing. We balance the ever-changing vendor licensing-models, costs, tool features/usability, etc. For the last few years, this has been the best overall commercial tool for our specific use case. However, this is only one of many tools that we use and need.

Read full review

Aaron Bryson | TrustRadius Reviewer
Aaron Bryson
View all 1 answers on this topic

Checkmarx

We actually use Checkmarx along with the other tools. However, the reason we chose Checkmarx is its wide support for languages and useful fix recommendations. The flowcharts help better understand the data flow and give a clear picture of what needs to be fixed and how. Also, developers can make a note of what should be avoided in the future. Overall, it's a great tool and would be a good investment to make.

Read full review

Anonymous | TrustRadius Reviewer
Verified User
View all 2 answers on this topic

Return on Investment

Acunetix by Invicti

  • Saved money compared to other commercial scanners, especially over the long run.
  • Scan speed seems to be pretty good compared to some of the bulkier commercial products out there. However, that largely has to do with proper configuration.
  • A downside is that is requires a bit of extra work just to get it set up to scan APIs, web services, etc.

Read full review

Aaron Bryson | TrustRadius Reviewer
Aaron Bryson
View all 1 answers on this topic

Checkmarx

  • Improved ability to provide high level of IA confidence
  • Improved confidence in application-level security

Read full review

Anonymous | TrustRadius Reviewer
Verified User
View all 2 answers on this topic

Screenshots

Checkmarx

Add comparison