DimitrisMakrisInformation Security Architect at a tech services company
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"Our developers can run the attacks directly from their environments, desktops."
"It can operate both as a standalone and it can be integrated with other applications, which makes it a very versatile solution to have."
"For us, the most valuable aspect of the solution is the log-sequence feature."
"The scalability is good. The scalability is more than good because it can operate both as a standalone and it can be integrated as part of applications. So that really makes it a very, very versatile solution to have."
"Picks up weaknesses in our app setups."
"The usability and overall scan results are good."
"I haven't seen reporting of that level in any other tool."
"It's very user-friendly for the testing teams. It's very easy for them to understand things and to fix vulnerabilities."
"Tripwire IP360 is a very stable solution."
"Tools that would allow us to work more efficiently with the mobile environment, with Android and iOS."
"When monitoring the traffic we always have issues with the bandwidth consumption and the throttling of traffic."
"The solution limits the number of scans. It would be much better if we could have unlimited scans."
"We want to see how much bandwidth usage it consumes. When we monitor traffic we have issues with the consumption and throttling of the traffic."
"Currently only supports web scanning."
"There is room for improvement in website authentication because I've seen other products that can do it much better."
"The vulnerability identification speed should be improved."
"The jargon used makes it difficult for project managers to understand the issues, and the technical explanations used make it difficult for developers to understand issues. These things should be simplified much more. That would be very helpful for us when explaining to them what needs to be fixed. The report output needs to be simplified."
"I am not very impressed by the technical support."
"I would say that Acunetix is expensive because there are products on the market with similar features that are equally or better-priced."
"The pricing is a little high, and moreover, it's kind of domain-based."
"When compared with other products, the pricing is a little bit high. But it gives value for the price. It serves the purpose and is worthwhile for the price we pay."
"Implementing Acunetix needs a medium or larger business agency, because you need some money to get Acunetix. It is costly, but if you care about your agency's security, then maybe it's a cost that might help you in the future."
"I believe the price compares well within the market."
Earn 20 points
Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.
Tripwire IP360 delivers risk-based vulnerability assessment and asset discovery capabilities. With IP360, you get:
Acunetix by Invicti is ranked 8th in Vulnerability Management with 11 reviews while Tripwire IP360 is ranked 10th in Vulnerability Management with 2 reviews. Acunetix by Invicti is rated 7.2, while Tripwire IP360 is rated 7.6. The top reviewer of Acunetix by Invicti writes "We are getting notably fewer false positives than previously, but reporting output needs to be simplified". On the other hand, the top reviewer of Tripwire IP360 writes "Helps us prioritize vulnerabilities but the dashboard and reporting need to improve". Acunetix by Invicti is most compared with OWASP Zap, PortSwigger Burp Suite Professional, Fortify WebInspect, Veracode and Tenable.io Web Application Scanning, whereas Tripwire IP360 is most compared with Tenable Nessus, Tenable SC, Trend Micro Deep Security and Qualys Web Application Scanning. See our Acunetix by Invicti vs. Tripwire IP360 report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.