17 years helping British businesses
choose better software

About Invicti

Invicti, formerly Netsparker, is a comprehensive automated web vulnerability management solution.

Learn more about Invicti

Pros:

One of the best things of the reports are the remediations it provides. The remediations give a lot of detail besides guiding you to a repair.

Cons:

There is almost no documentation about how to use the product.

Invicti ratings

Average score

Ease of Use
4.3
Customer Service
4.6
Features
4.4
Value for Money
4.2

Likelihood to recommend

8.6/10

Invicti has an overall rating of 4.7 out of 5 stars based on 18 user reviews on Capterra.

Have you used Invicti before?

Share your experiences with other software buyers.

Filter reviews (18)

Aanu
Aanu
Associate Consultant in Nigeria
Verified LinkedIn User
Computer & Network Security, 11–50 Employees
Used the Software for: 6-12 months
Reviewer Source

Cybersecurity made easier

4.0 6 years ago

Comments: I started using Netsparker when I was a trainee at a cybersecurity firm, and still used it till when I was an associate consultant (I could attend to clients without supervision). This highlights its versatility and ease of use.

Pros:

While being easy to operate, it is flexible; offering diverse functions in vulnerability assessment from detecting basic vulnerabilities like out-of-date app versions to generating executive style reports of scan results.

Cons:

It gets quite slow when testing for some vulnerabilities in larger URLs.

Invicti Response

6 years ago

Thank you for your feedback. We are thrilled that Netsparker has proven so useful for so many years.

Gianluca
Cybersecurity Specialist in US
Information Technology & Services, 11–50 Employees
Used the Software for: 1+ year
Reviewer Source

Best software for Web Application Vulnerability Management

5.0 5 years ago

Comments: I use Netsparker as a Consultant for my clients. I'm very satisfied about the product and how this software help our client to check the security level of the web applications. We also help our clients to build a remediation plan (through the report of Netsparker is very easy and quick perform that task) and through Netsparker checks that all the remediations implemented are in place

Pros:

I like Netsparker because is very easy to use, but at the same time has a lot of options that allow an expert user to customize the level of scanning. Also make authenticated scan is very easy (several options are available). Report templates are different and cover all your needs.

Cons:

When do concurrent scans it consumes a lot of resources.

Alternatives Considered: Acunetix

Reasons for Choosing Invicti: Because there are a lot of false positive in the scans.

Reasons for Switching to Invicti: I made a trial and compare the results of the different products and Netspaker was the more effective, easy to use and with better reports.

Invicti Response

5 years ago

Thank you for your review of Netsparker, this is much appreciated. We are glad to hear the software satisfies your and your clients' needs.

Verified Reviewer
Verified LinkedIn User
Research, 1,001–5,000 Employees
Used the Software for: 1+ year
Reviewer Source

Too much money for a third rate product

3.0 6 years ago

Comments: We are required to run weekly vulnerability scans on many of our production websites and we try to use Netsparker to do these scans. We can schedule when the scans will run and they usually do run. The problem is, if the scan has a problem it must be canceled, otherwise it will never finish and no report will ever be generated.

Pros:

Netsparker comes with an automation API so it is possible to include it as part of a Continuous Integration / Continuous Deployment (CI/CD) system. It usually works but not always.

Cons:

There is almost no documentation about how to use the product. You are expected to open a support ticket and ask how to do some of simplest things and it usually take a day to get a response back from support. Often the response is, "We don't support that", or "We don't have a sample that does that". I one time asked for .Net Framework sample code to pull a report from Netsparker and the answer I got was "Go toe the GUI and select these buttons. The report will download." The problem was I needed to download the reports problematically. Other times I asked for .Net samples and was given Python code. They are the same, correct?

Invicti Response

6 years ago

Hello, Thank you for your feedback. I am sorry to hear you have encountered such issues. Rest assured that this is not the norm, hence why I am personally reaching out to you. We do have extensive product documentation (https://www.netsparker.com/support/) and we pride ourselves on giving excellent product support, as can be seen by the many testimonials and case studies we have published. However sometimes things can go wrong. So can you please send me an email on [email protected] so I can personally look into this matter and iron out any issues there are, so you can benefit from our product. Looking forward to hearing from you. Mehmet ATA Technical Support Manager

Jesper
Jesper
Section Manager R&D in Denmark
Verified LinkedIn User
Computer Software, 501–1,000 Employees
Used the Software for: 1+ year
Reviewer Source

Security testing your software is a must

4.0 5 years ago

Comments: Using netsparker we're able to analyze and test our software on a regular basis. This is essential when our software is available directly on the internet.

Pros:

Netsparker is pretty intuitive. It simulates a lot of different attacks and vulnerabilities and present the result in a variety of different reports.

Cons:

It's somewhat expensive, at least if you want the enterprise version. It's not yet possible to ignore specific findings in later scans by marking them as false positives.

Invicti Response

5 years ago

Dear Jesper, Thank you for taking the time to review Netsparker. We are glad to be of service to you & the Stibo Systems!

Patrick
Lead Ops Engineer in US
Internet, 2–10 Employees
Used the Software for: 1+ year
Reviewer Source

Continuous vulnerability scanning

5.0 6 years ago

Comments: Stands out in the space as being one of the easier to use tools. While OWASP ZAP is an excellent tool NetSparker takes the same principles to the next level and bundles it into an easy to use and highly valuable application security scanner SaaS!

Pros:

UI is top-notch and easy to grok. It's highly efficient and customizable tool provide in depth reporting when you need it most. Support team is A+! Being able to generate multiple types of reports based on customer needs is quite useful.

Cons:

Docs were a bit outdated or not easy to follow when we initially started using the product. Support has steadily been improving them and they look great now.

Invicti Response

6 years ago

Thank you for your positive feedback. We are glad that Support documentation is improving.

Chris
Security and Compliance Manager in US
Nonprofit Organization Management, 201–500 Employees
Used the Software for: 2+ years
Reviewer Source

Web Application Scanning with Netsparker

5.0 5 years ago

Comments: My years of experience with Netsparker have been nothing but positive and I truly enjoy using this tool to assess our web applications.

Pros:

The software is very easy to use yet has extreme amount of customization for scanning any web application.

Cons:

Without an intimate knowledge of the capability of the tool, you may miss out on truly reaping its benefits in deep scanning of web applications.

Verified Reviewer
Verified LinkedIn User
Human Resources, 51–200 Employees
Used the Software for: 2+ years
Reviewer Source

Best product for dynamic SPA

4.0 6 years ago

Pros:

It is able to scan dynamic single page apps without hours of brittle scripting. The issues it finds are described fully with a clear indication of certainty. Reporting is flexible.

Cons:

They are not a well known vendor so we have to explain why we use Netsparker vs some of the better known vendors

Valliappan
Senior Software Consultant in India
Verified LinkedIn User
Information Services, 51–200 Employees
Used the Software for: 1+ year
Reviewer Source

NetSparker - Security Vulnerabilty Scanning Tool and Helper

5.0 4 years ago

Comments: Netsparker is comparatively cheaper, and you can bargain i believe, compare to other tools like Accunetix etc. We compare a couple of them and decided this.

Pros:

This tool has both web and desktop versions, with some licensing limitations. It scans your website, for issues and reports the issues and ways to fix them, online can leave it to run from cloud and do your work. Their pricing is not that high.

Cons:

The desktop version when run on your system, it slows down everything in your system, so better to use the cloud base one. But these two versions have some difference i think. But overall we were happier with the package, but later as we did not need much, we did not renew it further.

Shashank
Associate Vice President in India
Information Technology & Services, 201–500 Employees
Used the Software for: 1+ year
Reviewer Source

Must be there in your list of tools

5.0 5 years ago

Comments: Scanning critical web applications with ease and freedom of configuration.

Pros:

We use Netsparker for scanning our customers applications. Ease of use and Flexibility gives us freedom to use it wisely and help is completing our projects in timely manner.

Cons:

Credential scanning and captcha configuration difficulties.

Kenneth
Security Consultant - Penetration Tester in Canada
Information Technology & Services, 11–50 Employees
Used the Software for: 2+ years
Reviewer Source

A2N Review

5.0 5 years ago

Comments: We are solving several manual testing with the amazingly accurate automated scanner. Especially with the sign in features for those custom applications that reset session cookies. It logs in with a few custom scripts (which is also easy to implement with Netsparkers element clicking).

Pros:

Its accurate findings and overall testing procedures. It enumerates more than other tools do with additional options to boot.

Cons:

Lack of CSV reporting. I wish I could get the same exact reporting features the Detailed HTML reporting templates do but into a CSV format for easy integration with our own custom reporting templates. I also wish it did more reporting on Serialization attacks. Many web apps are extremely vulnerable to serialization attacks yet Netsparker does not escalate the vulnerability enough (unencrypted viewstate, unsigned viewstate, etc).

Casey
IT Security Engineer in US
Financial Services, 201–500 Employees
Used the Software for: 1+ year
Reviewer Source

Simple, easy, accuracte scanner

5.0 6 years ago

Comments: My overall experience has been positive. I would recommend the software to others and we will continue to use it. Just be ready to play some games with licenses if using the cloud version.

Pros:

Netsparker is easy to use, easy to configure, and you can be up and running your first scan in a matter of minutes. The scan results offer details on how to remediate the findings as well as what they did to find and validate the finding.

Cons:

One main issues. I would like to be able to change a domain. If I have a license for two domains, I should be able to rotate them. If server1.com goes EoL and server2.com has taken its place, I have to buy another subscription. Not cool.

Invicti Response

6 years ago

Thank you for your feedback! We are glad that Netsparker is working out for you. Should you need to change a domain, you may do so upon renewal by contacting Support.

Neil
Owner in US
Computer Software, 2–10 Employees
Used the Software for: 2+ years
Reviewer Source

Great web application security scanner

5.0 6 years ago

Pros:

Netsparker helps harden my application by closing out vulnerabilities. We follow an agile development cycle, which includes performing frequent deployments. In the past, we have accidentally deployed vulnerable code, which was quickly fixed once Netsparker has flagged it.

Cons:

Would be nice if the security scanner were to include scans to help harden the server and OS, but this seems to be strictly a web application scanner. I have to use a second product to scan the OS.

Invicti Response

6 years ago

Thank you for your positive feedback. At present our plans are to focus on being the best web application scanner out there.

Bilgin
Manager in Türkiye
Education Management, 2–10 Employees
Used the Software for: 1+ year
Reviewer Source

an easy effective web vulnerability scanner

5.0 5 years ago

Pros:

it is a easy of use product. It does not use excessive computer resource so you can install it on a laptop. It can give you a detailed vulnerability report.

Cons:

You have to define target system features but it should discover the target system and it should adapt itself.

Invicti Response

5 years ago

Thank you for submitting your review of Netsparker. We are delighted to be of service to your company.

Antony Arockia Raja
Head Of IT Security in India
Electrical/Electronic Manufacturing, 1,001–5,000 Employees
Used the Software for: 1+ year
Reviewer Source

Excellent and Easy in terms of Automated Security Scanning

5.0 6 years ago

Comments: Bugs within web applications and its been an wonderful journey with Netsparker.

Pros:

Excellent and Easy in terms of Automated Security Scanning and less false positives.

Cons:

Nothing I can say as Netsparker has been very helpful to our organization in identifying and fixing security vulnerabilities.

Invicti Response

6 years ago

Thank you for your review of Netsparker, we are glad to be of service to your company.

Daniel
Senior Cloud Security Analyst in US
Computer Software, 5,001–10,000 Employees
Used the Software for: 1+ year
Reviewer Source

Great value for the price with stellar support

5.0 5 years ago

Comments: We currently use Netsparker as an Automated Web Application Scanner on the products we support. Scans are done on-demand at the end of Sprints as part of our involvement in the Developers SDLC. It has helped us build a good relationship to strengthen security in the products.

Pros:

Any issues that we contact Netsparker Support on are answered very quickly with detailed information that helps us decide what to do.

Cons:

There are issues that we end up labeling as False Positive, so that is disappointing. However, it doesn't change my opinion of the product.

Invicti Response

5 years ago

Thank you for your review of Netsparker, we appreciate you taking the time to evaluate the product and are delighted to be of service to your business.

Sean
Director in US
Consumer Goods, 201–500 Employees
Used the Software for: 6-12 months
Reviewer Source

Good, accurate scanner

5.0 6 years ago

Pros:

Easy to setup and get started. Offers on-prem capability linked to the cloud for scanning behind a firewall.

Cons:

They moved away from being able to offer "packs" of scans where we could easily scan short lived sites. They only offer a subscription model intended for recurring scans.

Invicti Response

6 years ago

Thank you for your positive feedback. We sincerely love having you as a Netsparker client.

Dennis
IT Security Specialist in US
Government Relations, 1,001–5,000 Employees
Used the Software for: 6-12 months
Reviewer Source

Netsparker in Government

5.0 5 years ago

Pros:

The reports are well laid out and very comprehensive. One of the best things of the reports are the remediations it provides. The remediations give a lot of detail besides guiding you to a repair.

Cons:

Sometimes the scans have to be customized due to the size of the application and I had to submit the scan to a Netsparker Engineer for customization.

Invicti Response

5 years ago

Thank you for your review of Netsparker! We appreciate you taking the time to review us and are glad to be of assistance to your business.

laura
dishwasher in US
Food & Beverages, 11–50 Employees
Used the Software for: 1-5 months
Reviewer Source

Simple security scanner

5.0 4 years ago

Pros:

A simple security scanner that scans your computer for threats and possible problems with your PC security and how to fix it. Easy to download and install, not complex at all. I completed a scan under 20 minutes and was easily able to fix any issue within minutes.

Cons:

Nothing, straight to the point it is a standard security scanner that finds any and all issues