Acunetix Reviews

8 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 7.2 out of 100

Do you work for this company? Learn how we help vendors

Overall Rating

Reviewer's Company Size

Last Updated

By Topic

Industry

Department

Experience

Job Type

Role

Reviews (1-1 of 1)

Companies can't remove reviews or game the system. Here's why.
Aaron Bryson | TrustRadius Reviewer
July 17, 2019

Application Vulnerability Scanner with a great ROI

Score 9 out of 10
Vetted Review
Verified User
Review Source
Acunetix is used to support our customer's vulnerability management and application security programs.
  • Fast.
  • Easy-to-use.
  • Great customer support.
  • Reporting features.
  • Supports importing state files from other popular application testing tools.
  • Has other features built-in beyond just scanning for vulnerabilities.
  • Does not support multiple endpoints well (e.g. apps and services that do not reside at the same URL).
  • Has authentication problems with modern enterprise apps which involve a lot of redirects to unrelated endpoints, federated IDs, SSO, etc. This is related to the first point.
  • The vulnerability detection capability is not as robust as Burp Suite Pro + extensions, Metasploit + auxiliary modules, Nmap + scripts, etc.
It is suited well for ad-hoc and scheduled application vulnerability scans. You must review the results to manually filter out false-positives. You must always keep in mind that this is only a vulnerability scan. It can only find a certain class of vulnerabilities, and it can only do that so well. You should definitely not rely on this tool alone for identifying problems. That being said, I have used it along with every other major commercial vulnerability scanner and find it to the best overall ROI compared to more expensive commercial scanners that don't necessarily give you a better user experience or better vulnerability results.
I rarely need support from the vendor, but when I do, they have been responsive and able to solve the issue quickly.
Read Aaron Bryson's full review

Acunetix Scorecard Summary

About Acunetix

Acunetix is an automated web application security testing tool. The vendor says it is used by many Fortune 500 customers. Acunetix detects and reports on a wide array of web application vulnerabilities. The Acunetix industry leading crawler fully supports HTML5 and JavaScript and Single-page applications, allowing auditing of complex, authenticated applications. Acunetix provides the only technology on the market that can automatically detect out-of-band vulnerabilities and is available both as an online and on premise solution. Acunetix also includes integrated vulnerability management features to extend the enterprise’s ability to comprehensively manage, prioritise and control vulnerability threats – ordered by business criticality.

Acunetix Features

Has featureDiscovers and scans all web applications
Has featureIdentifies web vulnerabilities including SQLi and XSS
Has featureDelievers compliance reports

Acunetix Screenshots

Acunetix Integrations

GitHub, Jenkins, Kenna Security, Imperva Data Security (formerly SecureSphere for Data), Microsoft TFS, JIRA, F5 BIG-IP Application Security Manager, FortiWeb WAF

Acunetix Competitors

Netsparker, Rapid7 AppSpider, Qualys Web Application Scanning (WAS)

Acunetix Pricing

  • Has featureFree Trial Available?Yes
  • Does not have featureFree or Freemium Version Available?No
  • Does not have featurePremium Consulting/Integration Services Available?No
  • Entry-level set up fee?No

Acunetix Support Options

 Free Version
Phone
Email
FAQ/Knowledgebase

Acunetix Technical Details

Deployment Types:On-premise, SaaS
Operating Systems: Windows, Linux
Mobile Application:No
Supported Countries:All
Supported Languages: English