Compare Acunetix Vulnerability Scanner vs. Rapid7 AppSpider

Acunetix Vulnerability Scanner is ranked 7th in Application Security Testing (AST) with 8 reviews while Rapid7 AppSpider is ranked 16th in Application Security Testing (AST) with 4 reviews. Acunetix Vulnerability Scanner is rated 7.2, while Rapid7 AppSpider is rated 8.2. The top reviewer of Acunetix Vulnerability Scanner writes "Interactive Application Security Testing provides more in-depth, granular findings, but integration with other tools is very limited". On the other hand, the top reviewer of Rapid7 AppSpider writes "Great for scanning target sub-domains, good reporting functionality and easy to use". Acunetix Vulnerability Scanner is most compared with OWASP Zap, Netsparker Web Application Security Scanner and PortSwigger Burp, whereas Rapid7 AppSpider is most compared with Checkmarx, Rapid7 InsightAppSec and OWASP Zap. See our Acunetix Vulnerability Scanner vs. Rapid7 AppSpider report.
Cancel
You must select at least 2 products to compare!
Most Helpful Review
Find out what your peers are saying about Acunetix Vulnerability Scanner vs. Rapid7 AppSpider and other solutions. Updated: November 2019.
378,809 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
Our developers can run the attacks directly from their environments, desktops.The vulnerability scanning option for analyzing the security loopholes on the websites is the most valuable feature of this solution.The automated approach to these repetitive discovery attempts would take days to do manually and therefore it helps reduce the time needed to do an assessment.Their technical support has been very active. If I have an issue, I can reach out to them and get an answer pretty quick.We are able to create a report which shows the PCI DSS scoring and share it with the application teams. Then, they can correlate and see exactly what they need to fix, and why.One of the features that I feel is groundbreaking, that I would like to see expanded on, is the IAS feature: The Interactive Application Security Testing module that gets loaded onto an application on a server, for more in-depth, granular findings. I think that is really neat. I haven't seen a lot of competitors doing that.The most important feature is that it's a web-based graphical user interface. That is a great addition. Also, the ability to schedule scans is great.

Read more »

The entire solution is interactive and has a point-and-click user experience, which makes it easy to find items or drill down on information. You don't need specialized skills to use the product.The most valuable feature is the reporting, which is compliant with international standards.Rapid7 AppSpider is good at managing different applications. It uses applets and generates reports to cover the PCA/GDPR compliance requirements.I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us.

Read more »

Cons
Tools that would allow us to work more efficiently with the mobile environment, with Android and iOS.In terms of what needs improvement, the way the licensing model is currently is not very convenient for us because initially, when we bought it, the licensing model was very flexible, but now it restricts us.It would be nice to have a feature to "retest" only a single vulnerability that the customer reports as patched, and delete it from the next scans since it has already been patched.You can't actually change your password after you've set it unless you go back into the administration account and you change it there. Thus, if you're locked out and don't remember your password, that's a thing.We have had issues during upgrades where their scans worked on some apps better with previous versions. Then, we had to work with their tech support, who were great, to get it fixed for the next version.Integration into other tools is very limited for Acunetix. While we're trying to incorporate a CI/CD process where we're integrating with JIRA and we're integrating with Jenkins and Chef, it becomes problematic. Other tools give you a high integration capability to connect into different solutions that you may already have, like JIRA.It should be easier to recreate something manually, with the manual tool, because Acunetix is an automatic tool. If it finds something, it should be easier to manually replicate it. Sometimes you don't get the raw data from the input and output, so that could be improved.

Read more »

The solution is too slow. It could take a full day to scan. Competitors are much faster.This price of this solution is a little bit expensive.Implementing Rapid7 AppSpider requires scanning and self-identification mechanisms. You can add different types of authentication to each scan.The product needs to be able to scale for large companies, like ours. We have millions of IP addresses that need to be scanned, and the scalability is not great.

Read more »

Pricing and Cost Advice
The costs aren't very expensive. It costs around $3000 or $4000.All things considered, I think it has a good price/value ratio.The pricing and licensing are reasonable to a point. In order to run multiple scans at a time, we are going to have to purchase a 100 count license, which is an overkill. Though, compared to what we were paying for, the cost seems reasonable.When we looked at all other vendors and what they were asking for, to provide a third of what Acunetix was capable of doing, it was an easy decision... But now that it's coming to a cost where it's line with market value, it becomes more of a competition... Acunetix is raising the cost of licensing. It's 3.5 times what we were initially quoted.Acunetix was around the same price as all the other vendors we looked at, nothing special.

Read more »

Information Not Available
report
Use our free recommendation engine to learn which Application Security Testing (AST) solutions are best for your needs.
378,809 professionals have used our research since 2012.
Ranking
Views
6,770
Comparisons
4,918
Reviews
7
Average Words per Review
1,064
Avg. Rating
7.3
Views
1,660
Comparisons
995
Reviews
3
Average Words per Review
259
Avg. Rating
8.3
Top Comparisons
Compared 23% of the time.
Compared 9% of the time.
Also Known As
AcuSensorAppSpider
Learn
Acunetix
Rapid7
Overview

Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.

SPAs, APIs, mobile—the evolution of application technology is measured in months, not years. Is your web application security testing tool designed to keep up? AppSpider lets you collect all the information needed to test all the apps so that you aren’t left with gaping application risks.

Our dynamic application security testing (DAST) solution crawls to the deepest, darkest corners of even the most modern and complex apps to effectively test for risk and get you the insight you need to remediate faster. With AppSpider on your side (or, rather, all of your sides), you’ll be able to scan all the apps today and always be ready for whatever comes next.

Offer
Learn more about Acunetix Vulnerability Scanner
Learn more about Rapid7 AppSpider
Sample Customers
Joomla!, Digicure, Team Random, Credit Suisse, Samsung, Air New ZealandMicrosoft
Top Industries
VISITORS READING REVIEWS
Software R&D Company20%
Government14%
Comms Service Provider12%
Transportation Company8%
VISITORS READING REVIEWS
Software R&D Company33%
Comms Service Provider26%
Financial Services Firm7%
K 12 Educational Company Or School5%
Find out what your peers are saying about Acunetix Vulnerability Scanner vs. Rapid7 AppSpider and other solutions. Updated: November 2019.
378,809 professionals have used our research since 2012.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Sign Up with Email