What users are saying about
13 Ratings
16 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 7.9 out of 100
13 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 7.7 out of 100

Attribute Ratings

  • Acunetix by Invicti is rated higher in 1 area: Likelihood to Recommend

Likelihood to Recommend

9.0

Acunetix by Invicti

90%
2 Ratings
8.4

HackerOne

84%
4 Ratings

Likelihood to Recommend

Invicti Security

Acunetix scales well from a small web development presence like ours to a full-scale enterprise focused on that. The various tools and sensors that provide assurance of the results and can give feedback down to the lines of code in the source are proof of this. Various integrations exist as well. The main thing for us is that it simplifies confirming and remediating potential issues in our code or proving that products we use have issues that we can then take to the vendor for correction.
Read full review

HackerOne

HackerOne is for people who like to work on their own time and not have to deal with direct management. As you can work when You like, you have the ability to work when you decide to. The caveat of that is that you really have to focus and find bugs, as there are thousands of other testers testing the same thing as you
Read full review

Pros

Invicti Security

  • Fast.
  • Easy-to-use.
  • Great customer support.
  • Reporting features.
  • Supports importing state files from other popular application testing tools.
  • Has other features built-in beyond just scanning for vulnerabilities.
Read full review

HackerOne

  • Beautifully designed dashboard.
  • Bug Bounty reports.
  • Use a spam filter to avoid reporting bugs that aren't relevant.
Read full review

Cons

Invicti Security

  • Does not support multiple endpoints well (e.g. apps and services that do not reside at the same URL).
  • Has authentication problems with modern enterprise apps which involve a lot of redirects to unrelated endpoints, federated IDs, SSO, etc. This is related to the first point.
  • The vulnerability detection capability is not as robust as Burp Suite Pro + extensions, Metasploit + auxiliary modules, Nmap + scripts, etc.
Read full review

HackerOne

  • A lot of duplicate bugs get reported, although it does offer automatic suggestion of previously reported bugs that may be duplicates, it is far from perfect.
  • Anyone can report bugs, a lot of them are not verified before submission. This sometimes leads to a lot of time spent in verifying if the bug is really actionable.
  • Each submission has to be treated with equal potential, a lot of time, some time gets invested in vulnerabilities that aren't as important as some others.
Read full review

Pricing Details

Acunetix by Invicti

Starting Price

$0

Editions & Modules

Acunetix by Invicti editions and modules pricing
EditionModules
Websites Scanned: 54,5001
Websites Scanned: 6-107,2002
Websites Scanned: 11-2010,8003
Websites Scanned: 21-3522,5404
Websites Scanned: 36-5026,6005
Websites Scanned: Over 50Contact for quote6

Offerings

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services

Entry-level set up fee?

No setup fee

Additional Details

HackerOne

Starting Price

Editions & Modules

HackerOne editions and modules pricing
EditionModules

Footnotes

    Offerings

    Free Trial
    Free/Freemium Version
    Premium Consulting/Integration Services

    Entry-level set up fee?

    No setup fee

    Additional Details

    For more information please email www.hackerone.com/contact or find us on the AWS Marketplace: https://aws.amazon.com/marketplace/seller-profile?id=10857e7c-011b-476d-b938-b587deba31cf

    Alternatives Considered

    Invicti Security

    ZAP is a free tool, and adequate. But it is to that extent less friendly. I would not be as confident of the results and it definitely can't produce reports on par with Acunetix. There would be a lot of legwork on our end if we desired to switch to this tool.
    Read full review

    HackerOne

    These were very close and we liked HackerOne better. For a time we did have both and we felt the need to consolidate the information into one platform and end of life our internal offering. Overall we've been fairly happy with HackerOne.
    Read full review

    Return on Investment

    Invicti Security

    • Saved money compared to other commercial scanners, especially over the long run.
    • Scan speed seems to be pretty good compared to some of the bulkier commercial products out there. However, that largely has to do with proper configuration.
    • A downside is that is requires a bit of extra work just to get it set up to scan APIs, web services, etc.
    Read full review

    HackerOne

    • Fixed many bugs with little payout
    • No revolving employee fees
    • Health insurance not required
    Read full review

    Screenshots

    Add comparison