What users are saying about
16 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>Score 7.6 out of 100
Based on 16 reviews and ratings
Top Rated
52 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>Score 8.1 out of 100
Based on 52 reviews and ratings
Attribute Ratings
- Acunetix by Invicti is rated higher in 1 area: Likelihood to Recommend
Likelihood to Recommend

9.0
Acunetix by Invicti
90%
1 Rating

8.4
SonarQube
84%
15 Ratings
Support Rating

Acunetix by Invicti
N/A
0 Ratings

9.0
SonarQube
90%
2 Ratings
Likelihood to Recommend
Acunetix by Invicti
It is suited well for ad-hoc and scheduled application vulnerability scans. You must review the results to manually filter out false-positives. You must always keep in mind that this is only a vulnerability scan. It can only find a certain class of vulnerabilities, and it can only do that so well. You should definitely not rely on this tool alone for identifying problems. That being said, I have used it along with every other major commercial vulnerability scanner and find it to the best overall ROI compared to more expensive commercial scanners that don't necessarily give you a better user experience or better vulnerability results. I rarely need support from the vendor, but when I do, they have been responsive and able to solve the issue quickly.
Director - Red Team (Application, Mobile, Cloud, IoT security, etc.)
Cylance, Inc.Computer & Network Security, 1001-5000 employees
SonarQube
SonarQube has a friendly UI that is easy to use and understand. The admin's control panel is very good and It's not really difficult to get through the settings. Its possible to build many rules that apply for each programming language, for example, .NET, and Java. You can easily set up rules and even with the community version. It's a great tool but you have to have a good project plan before being introduced to the tools. I would recommend using the SonarQube open-source version to get used to it before purchasing the license. Before we go with an enterprise product, we have to know the terms and how things are done to run software quality
Solution Architect
Danske IT and Support Services India Pvt LtdFinancial Services, 10,001+ employees
Pros
Acunetix by Invicti
- Fast.
- Easy-to-use.
- Great customer support.
- Reporting features.
- Supports importing state files from other popular application testing tools.
- Has other features built-in beyond just scanning for vulnerabilities.
Director - Red Team (Application, Mobile, Cloud, IoT security, etc.)
Cylance, Inc.Computer & Network Security, 1001-5000 employees
SonarQube
- Generating code quality report
- Calculates junit coverage of the codebase very efficiently and precisely
- Highlights the bugs and vulnerabilities in our codebase
- Informs the user of the improvements which can be done to the code to make it cleaner
- SonarQube also suggests remediation and resolution of the problems it highlights
digital tech developer associate
AccentureInformation Technology & Services, 10,001+ employees
Cons
Acunetix by Invicti
- Does not support multiple endpoints well (e.g. apps and services that do not reside at the same URL).
- Has authentication problems with modern enterprise apps which involve a lot of redirects to unrelated endpoints, federated IDs, SSO, etc. This is related to the first point.
- The vulnerability detection capability is not as robust as Burp Suite Pro + extensions, Metasploit + auxiliary modules, Nmap + scripts, etc.
Director - Red Team (Application, Mobile, Cloud, IoT security, etc.)
Cylance, Inc.Computer & Network Security, 1001-5000 employees
SonarQube
- Local dashboard wont work without java installed on your machine
- If talking about the local ui the configuration may be quite complex. Needs an experts advise
- Its enterprise edition cost a fortune depending on a company size or users that may use it.
DevOps Engineer
Bebo Technologies Pvt LtdComputer Software, 501-1000 employees
Pricing Details
Acunetix by Invicti
General
Free Trial
Yes
Free/Freemium Version
—Premium Consulting/Integration Services
—Entry-level set up fee?
No
Starting Price
$0
Acunetix by Invicti Editions & Modules
Edition
Websites Scanned: 5 | $4,500 |
---|---|
Websites Scanned: 6-10 | $7,200 |
Websites Scanned: 11-20 | $10,800 |
Websites Scanned: 21-35 | $22,540 |
Websites Scanned: 36-50 | $26,600 |
Websites Scanned: Over 50 | Contact for quote |
- none
Additional Pricing Details
—SonarQube
General
Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
No
Starting Price
$0
SonarQube Editions & Modules
Edition
Community | Free |
---|---|
Developer EDITION | Starts at $1502 |
Enterprise EDITION | Starts at $20,0003 |
Data Center EDITION | Starts at $130,0004 |
- none
- 100,000 Lines of Code
- 1 Million Lines of Code
- 20 Million Lines of Code
Additional Pricing Details
—Support Rating
Acunetix by Invicti
No score
No answers yet
No answers on this topic
SonarQube
SonarQube 9.0
Based on 2 answers
We we easily able to integrate the SonarQube steps into our TFS process via the Microsoft Marektplace, we didn't have the need to call SonarQube support. We've used their online documentation and community forum if we ran into any issues.

Verified User
Professional in Information Technology
Insurance Company, 51-200 employeesAlternatives Considered
Acunetix by Invicti
Every year, we re-evaluate the tools we are using and licensing. We balance the ever-changing vendor licensing-models, costs, tool features/usability, etc. For the last few years, this has been the best overall commercial tool for our specific use case. However, this is only one of many tools that we use and need.
Director - Red Team (Application, Mobile, Cloud, IoT security, etc.)
Cylance, Inc.Computer & Network Security, 1001-5000 employees
SonarQube
I personally evaluated klocwork in a previous company and it worked well for Static Code Analysis for C++ applications but the Java support was not as good as SonarQube. Also the overall tooling and integrations provided by SonarQube is stellar and very other competitors can provide such services and IDE integrations.The output results from SonarQube tests can be easily read, including by other services for automation purposes, and creating reports for audits or other teams is nice and easy.
Product Design/Development Engineer
TransferwiseFinancial Services, 1001-5000 employees
Return on Investment
Acunetix by Invicti
- Saved money compared to other commercial scanners, especially over the long run.
- Scan speed seems to be pretty good compared to some of the bulkier commercial products out there. However, that largely has to do with proper configuration.
- A downside is that is requires a bit of extra work just to get it set up to scan APIs, web services, etc.
Director - Red Team (Application, Mobile, Cloud, IoT security, etc.)
Cylance, Inc.Computer & Network Security, 1001-5000 employees
SonarQube
- Our client is quite pleased with the demonstration of this tools
- Our organisation is using a community edition right now but is planning to migrate to a enterprise version to use it commercially.
- It is quite a costly tool but our organisation is willing to buy it for its enhanced features and security
DevOps Engineer
Bebo Technologies Pvt LtdComputer Software, 501-1000 employees