Acunetix by Invicti vs. Appknox

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Acunetix by Invicti
Score 8.0 out of 10
N/A
AcuSensor from Maltese company Acunetix is application security and testing software.
$4,500
Appknox
Score 0.0 out of 10
N/A
Appknox is an on-demand mobile application security platform designed to help Developers, Security Researchers, and Enterprises to build a safe and secure mobile ecosystem using a system plus human approach to outsmart hackers. The vendor states they have been successful in reducing delivery timelines, manpower costs & mitigating security threats for Global Banks and Enterprises in 10 + countries. Appknox…N/A
Pricing
Acunetix by InvictiAppknox
Editions & Modules
Websites Scanned: 5
4,500
Websites Scanned: 6-10
7,200
Websites Scanned: 11-20
10,800
Websites Scanned: 21-35
22,540
Websites Scanned: 36-50
26,600
Websites Scanned: Over 50
Contact for quote
No answers on this topic
Offerings
Pricing Offerings
Acunetix by InvictiAppknox
Free Trial
YesYes
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeOptional
Additional Details
More Pricing Information
Community Pulse
Acunetix by InvictiAppknox
Best Alternatives
Acunetix by InvictiAppknox
Small Businesses
GitLab
GitLab
Score 8.7 out of 10
GitLab
GitLab
Score 8.7 out of 10
Medium-sized Companies
Veracode
Veracode
Score 8.7 out of 10
Veracode
Veracode
Score 8.7 out of 10
Enterprises
Veracode
Veracode
Score 8.7 out of 10
Veracode
Veracode
Score 8.7 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Acunetix by InvictiAppknox
Likelihood to Recommend
9.0
(0 ratings)
-
(0 ratings)
User Testimonials
Acunetix by InvictiAppknox
Likelihood to Recommend
Acunetix scales well from a small web development presence like ours to a full-scale enterprise focused on that. The various tools and sensors that provide assurance of the results and can give feedback down to the lines of code in the source are proof of this. Various integrations exist as well. The main thing for us is that it simplifies confirming and remediating potential issues in our code or proving that products we use have issues that we can then take to the vendor for correction.
Read full review
No answers on this topic
Pros
  • Integration of tool with different IDE is great
  • Easy to scan code and identify vulnerabilities
  • Dashboard is easy to customise
Read full review
No answers on this topic
Cons
  • Does not support multiple endpoints well (e.g. apps and services that do not reside at the same URL).
  • Has authentication problems with modern enterprise apps which involve a lot of redirects to unrelated endpoints, federated IDs, SSO, etc. This is related to the first point.
  • The vulnerability detection capability is not as robust as Burp Suite Pro + extensions, Metasploit + auxiliary modules, Nmap + scripts, etc.
Read full review
No answers on this topic
Alternatives Considered
In my opinion Acunetix fares good in DevSecOps pipeline better than Appspider. In terms of vulnerabilities scanning of dynamic applications I liked Rapid7, however we have better ROI with Acunetix. During 6 months of usage I tried to look into cost benefit analysis and could easily pick Acunetix and in terms of dashboards also I am impressed
Read full review
No answers on this topic
Return on Investment
  • Saved money compared to other commercial scanners, especially over the long run.
  • Scan speed seems to be pretty good compared to some of the bulkier commercial products out there. However, that largely has to do with proper configuration.
  • A downside is that is requires a bit of extra work just to get it set up to scan APIs, web services, etc.
Read full review
No answers on this topic
ScreenShots

Acunetix by Invicti Screenshots

Screenshot of DashboardScreenshot of FilteringScreenshot of scan results

Appknox Screenshots

Screenshot of Appknox automated scanner is easy to use and has vast API compatibilities which make it simple to integrate into the mobile Application Development cycle, providing complete automation of SAST, DAST, and Application Program Interface(API) Testing.Screenshot of FileID: This is a unique serial number get auto-assigned by the dashboard and has multiple use cases such as compare feature & look for assistance. Namespace: The namespace or bundle ID are fetched from the binary itself, as based on the namespace the scanner curates different uploads and creates new projects. Platform: This is the second category based on which the scanner differentiates between two files having the same namespaces. The dashboard supports IOS, Android & Windows Application. Version & Version Code: These details are Auto-fetched from the binary and can be used for later for comparison & tracking uploads over time.Screenshot of Static Application Security Testing (SAST) can be considered as testing an application from the inside out by examining its source code or application binaries for issues based on the configuration which point towards a security vulnerability.Screenshot of A Dynamic Application Security Testing (DAST) analysis is generally specifically designed to detect conditions indicative of a security vulnerability in an application while in its running state.Screenshot of A Dynamic Application Security Testing (DAST) analysis is generally specifically designed to detect conditions indicative of a security vulnerability in an application while in its running state.Screenshot of If this function is enabled, the scanner will detect & capture all the API calls made & API End Points used during the dynamic scan session.