Most Helpful Review
Find out what your peers are saying about Acunetix Vulnerability Scanner vs. Rapid7 Metasploit and other solutions. Updated: November 2020.
448,542 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"One of the features that I feel is groundbreaking, that I would like to see expanded on, is the IAS feature: The Interactive Application Security Testing module that gets loaded onto an application on a server, for more in-depth, granular findings. I think that is really neat. I haven't seen a lot of competitors doing that."
"The most important feature is that it's a web-based graphical user interface. That is a great addition. Also, the ability to schedule scans is great."
"Their technical support has been very active. If I have an issue, I can reach out to them and get an answer pretty quick."
"We are able to create a report which shows the PCI DSS scoring and share it with the application teams. Then, they can correlate and see exactly what they need to fix, and why."
"The automated approach to these repetitive discovery attempts would take days to do manually and therefore it helps reduce the time needed to do an assessment."
"The vulnerability scanning option for analyzing the security loopholes on the websites is the most valuable feature of this solution."
"Our developers can run the attacks directly from their environments, desktops."
"It can operate both as a standalone and it can be integrated with other applications, which makes it a very versatile solution to have."
"It's not possible to do penetration testing without being very proficient in Metasploit."
"The option to generate phishing emails has proven to be very valuable in understanding the behavior of users."
"It contains almost all the available exploits and payloads."
"The most valuable feature for us is the support for testing Linux-based web server components."
"The reporting on the solution is good."
"All of the features are great."
"Integration into other tools is very limited for Acunetix. While we're trying to incorporate a CI/CD process where we're integrating with JIRA and we're integrating with Jenkins and Chef, it becomes problematic. Other tools give you a high integration capability to connect into different solutions that you may already have, like JIRA."
"It should be easier to recreate something manually, with the manual tool, because Acunetix is an automatic tool. If it finds something, it should be easier to manually replicate it. Sometimes you don't get the raw data from the input and output, so that could be improved."
"You can't actually change your password after you've set it unless you go back into the administration account and you change it there. Thus, if you're locked out and don't remember your password, that's a thing."
"We have had issues during upgrades where their scans worked on some apps better with previous versions. Then, we had to work with their tech support, who were great, to get it fixed for the next version."
"It would be nice to have a feature to "retest" only a single vulnerability that the customer reports as patched, and delete it from the next scans since it has already been patched."
"In terms of what needs improvement, the way the licensing model is currently is not very convenient for us because initially, when we bought it, the licensing model was very flexible, but now it restricts us."
"Tools that would allow us to work more efficiently with the mobile environment, with Android and iOS."
"When monitoring the traffic we always have issues with the bandwidth consumption and the throttling of traffic."
"The initial setup was a bit "tweaky" for the open-source version."
"Metasploit cannot be installed on a machine with an antivirus."
"It is necessary to add some training materials and a tutorial for beginners."
"Better automation capabilities would be an improvement."
"The solution should improve the responsiveness of its live technical support."
"At the time I was using it, the graphical user interface needed some improvements."
Pricing and Cost Advice
"When we looked at all other vendors and what they were asking for, to provide a third of what Acunetix was capable of doing, it was an easy decision... But now that it's coming to a cost where it's line with market value, it becomes more of a competition... Acunetix is raising the cost of licensing. It's 3.5 times what we were initially quoted."
"Acunetix was around the same price as all the other vendors we looked at, nothing special."
"The pricing and licensing are reasonable to a point. In order to run multiple scans at a time, we are going to have to purchase a 100 count license, which is an overkill. Though, compared to what we were paying for, the cost seems reasonable."
"All things considered, I think it has a good price/value ratio."
"The costs aren't very expensive. It costs around $3000 or $4000."
"I would say that Acunetix is expensive because there are products on the market with similar features that are equally or better-priced."
"The pricing is a little high, and moreover, it's kind of domain-based."
"When compared with other products, the pricing is a little bit high. But it gives value for the price. It serves the purpose and is worthwhile for the price we pay."
"I use the open-source version of this product. Pricing is not relevant."
"It is expensive. Our license expired, and our company is not thinking to renew because of our budget."
"The great advantage with Rapid7 Metasploit, of course, is that it's free."
Questions from the Community
Top Answer: The scalability is good. The scalability is more than good because it can operate both as a standalone and it can be integrated as part of applications. So that really makes it a very, very versatile… more »
Top Answer: We buy the license annually.
Top Answer: We want to see how much bandwidth usage it consumes. When we monitor traffic we have issues with the consumption and throttling of the traffic.
Ask a question
Earn 20 points
out of 36 in Vulnerability Management
Average Words per Review
out of 36 in Vulnerability Management
Average Words per Review
Compared 25% of the time.
Compared 9% of the time.
Compared 8% of the time.
Compared 7% of the time.
Compared 6% of the time.
Compared 51% of the time.
Compared 12% of the time.
Compared 11% of the time.
Compared 7% of the time.
Compared 2% of the time.
Also Known As
Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.
Attackers are always developing new exploits and attack methods—Metasploit penetration testing software helps you use their own weapons against them. Utilizing an ever-growing database of exploits, you can safely simulate real-world attacks on your network to train your security team to spot and stop the real thing.
Learn more about Acunetix Vulnerability Scanner
Learn more about Rapid7 Metasploit
|Joomla!, Digicure, Team Random, Credit Suisse, Samsung, Air New Zealand||City of Corpus Christi, Diebold, Lumenate, Nebraska Public Power District, Prairie North Regional Health, Apptio, Automation Direct, Bob's Stores, Cardinal Innovations Healthcare Solutions, Carnegie Mellon University|
Financial Services Firm42%
Comms Service Provider17%
Computer Software Company36%
Comms Service Provider18%
Comms Service Provider32%
Computer Software Company26%
K 12 Educational Company Or School4%
Acunetix Vulnerability Scanner is ranked 3rd in Vulnerability Management with 16 reviews while Rapid7 Metasploit is ranked 7th in Vulnerability Management with 5 reviews. Acunetix Vulnerability Scanner is rated 7.2, while Rapid7 Metasploit is rated 7.4. The top reviewer of Acunetix Vulnerability Scanner writes "Interactive Application Security Testing provides more in-depth, granular findings, but integration with other tools is very limited". On the other hand, the top reviewer of Rapid7 Metasploit writes "Straightforward to set up, and helpful for moving from development to production". Acunetix Vulnerability Scanner is most compared with OWASP Zap, Netsparker Web Application Security Scanner, Veracode, Fortify WebInspect and PortSwigger Burp, whereas Rapid7 Metasploit is most compared with Tenable Nessus, Wireshark, Rapid7 InsightVM, Qualys VM and Fortinet FortiWeb. See our Acunetix Vulnerability Scanner vs. Rapid7 Metasploit report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.