Acunetix by Invicti vs. HackerOne

Acunetix by Invicti

HackerOne

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Acunetix by Invicti	Score 8.4 out of 10	N/A	AcuSensor from Maltese company Acunetix is application security and testing software.	$4,500
HackerOne	Score 7.0 out of 10	N/A	HackerOne is a hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be exploited, from the company of the same name in San Francisco. The service is used for vulnerability location, pen testing, bug bounty, and vulnerability triage services.	N/A

Pricing

Acunetix by Invicti

HackerOne

Editions & Modules

Websites Scanned: 5: 4,500
Websites Scanned: 6-10: 7,200
Websites Scanned: 11-20: 10,800
Websites Scanned: 21-35: 22,540
Websites Scanned: 36-50: 26,600
Websites Scanned: Over 50: Contact for quote

No answers on this topic

Offerings

Pricing Offerings
Acunetix by Invicti	HackerOne
Free Trial
Yes	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

Additional Details

—

For more information please email www.hackerone.com/contact or find us on the AWS Marketplace: https://aws.amazon.com/marketplace/seller-profile?id=10857e7c-011b-476d-b938-b587deba31cf

More Pricing Information

Community Pulse
	Acunetix by Invicti	HackerOne
Top Pros	Pro Easy to use Pro Web application Pro Application security	Pro Easy to use Pro Working with large Pro Beautifully designed
Top Cons	Minus Not as robust Minus Not consider Minus Web server	Minus No easy Minus No easy way Minus End user

Best Alternatives
	Acunetix by Invicti	HackerOne
Small Businesses	GitLab Score 8.9 out of 10	No answers on this topic
Medium-sized Companies	GitLab Score 8.9 out of 10	No answers on this topic
Enterprises	GitLab Score 8.9 out of 10	No answers on this topic
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Acunetix by Invicti	HackerOne
Likelihood to Recommend	9.0 (3 ratings)	7.0 (2 ratings)

User Testimonials
	Acunetix by Invicti	HackerOne
Likelihood to Recommend	Invicti Security It is best suited for integrated security testing of applications which are hosted on web servers. The most important thing is the integration of DevSecOps which is crucial in today's fast paced environment of rapid development. The core of Acunetix is application scanning which is really great and I highly recommend this product to everyone Incentivized Rahul Deshmukh Security Solutions Architect Read full review	HackerOne It is one of the good platforms for security researchers to submit bugs and other vulnerabilities, it however, has some challenges, in terms of un-verified and duplicate submissions. Incentivized Jugpreet Talwar Technical Intern Read full review
Pros	Invicti Security Fast. Easy-to-use. Great customer support. Reporting features. Supports importing state files from other popular application testing tools. Has other features built-in beyond just scanning for vulnerabilities. Incentivized Aaron Bryson Director - Red Team (Application, Mobile, Cloud, IoT security, etc.) Read full review	HackerOne Filter for spammy bug reports Nice central interface Payment/reward system is nice Incentivized Verified User Anonymous Read full review
Cons	Invicti Security Configuration of DevSecOps can be improved for ease Dashboard can have API integration Broaden the scope of vulnerabilities Incentivized Rahul Deshmukh Security Solutions Architect Read full review	HackerOne A lot of duplicate bugs get reported, although it does offer automatic suggestion of previously reported bugs that may be duplicates, it is far from perfect. Anyone can report bugs, a lot of them are not verified before submission. This sometimes leads to a lot of time spent in verifying if the bug is really actionable. Each submission has to be treated with equal potential, a lot of time, some time gets invested in vulnerabilities that aren't as important as some others. Incentivized Jugpreet Talwar Technical Intern Read full review
Alternatives Considered	Invicti Security ZAP is a free tool, and adequate. But it is to that extent less friendly. I would not be as confident of the results and it definitely can't produce reports on par with Acunetix. There would be a lot of legwork on our end if we desired to switch to this tool. Incentivized AE Allan Crittenden Edwards Security Analyst Read full review	HackerOne These were very close and we liked HackerOne better. For a time we did have both and we felt the need to consolidate the information into one platform and end of life our internal offering. Overall we've been fairly happy with HackerOne. Incentivized Verified User Anonymous Read full review
Return on Investment	Invicti Security Saved money compared to other commercial scanners, especially over the long run. Scan speed seems to be pretty good compared to some of the bulkier commercial products out there. However, that largely has to do with proper configuration. A downside is that is requires a bit of extra work just to get it set up to scan APIs, web services, etc. Incentivized Aaron Bryson Director - Red Team (Application, Mobile, Cloud, IoT security, etc.) Read full review	HackerOne Bugs that can't be tracked internally are submitted by external researchers, which is an important factor for security vulnerabilities. Even if the bugs reported are duplicates, there still is provision to award reputation points, that keep the researchers engaged. It also requires a lot of verification and validation, as a lot of the submissions are unverified to begin with. Incentivized Jugpreet Talwar Technical Intern Read full review
ScreenShots	Acunetix by Invicti Screenshots