# Intruder vs ZAP by Checkmarx Comparison
---
## AI Generated Summary
- **G2 reviewers report** that Intruder excels in user experience, particularly highlighting its **easy setup** and the effectiveness of its **autoscanner**. Users appreciate how it provides continuous updates on critical security vulnerabilities, making it a reliable choice for maintaining security.
- **Users say** that ZAP by Checkmarx offers a robust set of features, especially for automated scanning. Reviewers mention its **spider fuzz** and **ajax spider** capabilities as standout tools, making it a strong contender for those looking for comprehensive web application security scanning.
- **According to verified reviews** , Intruder has a significantly higher overall satisfaction score compared to ZAP by Checkmarx. Users frequently commend Intruder for its **clarity and prioritization** of findings, which helps teams focus on vulnerabilities that genuinely matter, rather than being overwhelmed by less critical issues.
- **Reviewers mention** that while ZAP by Checkmarx is free and open-source, which is a major advantage, it has fewer recent reviews compared to Intruder. This suggests that while it may be popular, it might not be as actively used or updated in the current market.
- **Users highlight** Intruder&#39;s superior quality of support, with many praising its responsiveness and helpfulness. In contrast, ZAP by Checkmarx has received mixed feedback regarding support quality, indicating that users may face challenges when seeking assistance.
- **G2 reviewers note** that both products integrate well with CI/CD tools, but Intruder&#39;s ease of use and setup gives it an edge for teams looking to streamline their security processes. Users find Intruder&#39;s interface intuitive, which enhances day-to-day usability compared to ZAP&#39;s more complex setup.



| | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Star Rating** | 4.8 out of 5 | 4.7 out of 5 | 
| **Total Reviews** | 207 | 14 | 
| **Largest Market Segment** | Small-Business (58.4% of reviews) | Small-Business (76.9% of reviews) | 
| **Entry Level Price** | Free Per Month | Free | 

---
## Top Pros & Cons

### Intruder

Pros:
- Ease of Use (41 reviews)
- Vulnerability Detection (30 reviews)

Cons:
- Expensive (9 reviews)
- Slow Scanning (8 reviews)

### ZAP by Checkmarx

Pros:
- Easy Integrations (3 reviews)
- Pentesting Efficiency (3 reviews)

Cons:
- False Positives (3 reviews)
- Poor Documentation (2 reviews)

---
## Ratings Comparison
| Rating | Intruder | ZAP by Checkmarx | 
|---|---|---|
  | **Meets Requirements** | 9.4 (159 reviews) | 9.6 (12 reviews) | 
  | **Ease of Use** | 9.5 (164 reviews) | 9.0 (12 reviews) | 
  | **Ease of Setup** | 9.6 (144 reviews) | Not enough data | 
  | **Ease of Admin** | 9.5 (132 reviews) | Not enough data | 
  | **Quality of Support** | 9.7 (153 reviews) | 8.1 (12 reviews) | 
  | **Has the product been a good partner in doing business?** | 9.7 (125 reviews) | Not enough data | 
  | **Product Direction (% positive)** | 9.8 (149 reviews) | 10.0 (11 reviews) | 

---
## Pricing

### Intruder

#### Entry-Level Pricing

Plan: Free

Price: Free Per Month

Description: For companies getting started with security

Key Features:
- Weekly external vulnerability scans
- Weekly cloud security checks for 1 connected account
- Weekly container image scans for 2 images

[Browse all 4 editions](https://www.g2.com/products/intruder/pricing)

#### Free Trial

Yes

### ZAP by Checkmarx

#### Entry-Level Pricing

Plan: Open source

Price: Free

Key Features:
- Everything

[Learn more about ZAP by Checkmarx](https://www.g2.com/products/zap-by-checkmarx/reviews)

#### Free Trial

Yes

---
## Features Comparison By Category

### Website Security

| Product | Score | Reviews |
|---|---|---|
| **Intruder** | 8.8/10 | 33 |
| **ZAP by Checkmarx** | N/A | N/A |

#### Administration

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Content Delivery** | Feature Not Available | Not enough data | 
| **Dashboard &amp; Reporting** | 9.2 (32 reviews) | Not enough data | 
| **Alerting** | 9.7 (31 reviews) | Not enough data | 

#### Risk Analysis

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Blacklist and Whitelist** | Feature Not Available | Not enough data | 
| **Vulnerability Assessment** | 9.6 (31 reviews) | Not enough data | 
| **Security Auditing** | Feature Not Available | Not enough data | 

#### Threat Protection

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Firewall** | Feature Not Available | Not enough data | 
| **DDoS Protection** | Feature Not Available | Not enough data | 
| **Malware Detection** | Feature Not Available | Not enough data | 
| **Malware Removal** | Feature Not Available | Not enough data | 

#### Generative AI

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **AI Text Summarization** | 6.8 (10 reviews) | Not enough data | 

### Penetration Testing

| Product | Score | Reviews |
|---|---|---|
| **Intruder** | 9.0/10 | 53 |
| **ZAP by Checkmarx** | 8.4/10 | 13 |

#### Administration

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **API / Integrations** | 8.6 (28 reviews) | 8.3 (12 reviews) | 
| **Extensibility** | 8.5 (25 reviews) | 8.8 (12 reviews) | 
| **Reporting and Analytics** | 9.1 (50 reviews) | 8.8 (12 reviews) | 

#### Analysis

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Issue Tracking** | 9.4 (41 reviews) | 8.1 (12 reviews) | 
| **Reconnaissance** | 9.2 (38 reviews) | 8.2 (12 reviews) | 
| **Vulnerability Scan** | 9.6 (51 reviews) | 9.4 (12 reviews) | 

#### Testing

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Command-Line Tools** | Feature Not Available | 7.6 (12 reviews) | 
| **Manual Testing** | 8.6 (20 reviews) | 7.5 (12 reviews) | 
| **Test Automation** | 8.7 (29 reviews) | 8.6 (12 reviews) | 
| **Performance and Reliability** | 9.4 (39 reviews) | 8.9 (12 reviews) | 

### Dynamic Application Security Testing (DAST)

| Product | Score | Reviews |
|---|---|---|
| **Intruder** | 8.8/10 | 8 |
| **ZAP by Checkmarx** | N/A | N/A |

#### Administration

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **API / Integrations** | 8.9 (6 reviews) | Not enough data | 
| **Extensibility** | 8.6 (6 reviews) | Not enough data | 

#### Analysis

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Reporting and Analytics** | 9.5 (7 reviews) | Not enough data | 
| **Issue Tracking** | 9.6 (8 reviews) | Not enough data | 
| **Static Code Analysis** | Feature Not Available | Not enough data | 
| **Vulnerability Scan** | 9.8 (8 reviews) | Not enough data | 
| **Code Analysis** | Feature Not Available | Not enough data | 

#### Testing

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Manual Testing** | 7.9 (7 reviews) | Not enough data | 
| **Test Automation** | 8.8 (7 reviews) | Not enough data | 
| **Compliance Testing** | 7.8 (6 reviews) | Not enough data | 
| **Black-Box Scanning** | 9.0 (7 reviews) | Not enough data | 
| **Detection Rate** | 9.5 (7 reviews) | Not enough data | 
| **False Positives** | 7.9 (7 reviews) | Not enough data | 

### Vulnerability Scanner

| Product | Score | Reviews |
|---|---|---|
| **Intruder** | 8.7/10 | 103 |
| **ZAP by Checkmarx** | N/A | N/A |

#### Performance

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Issue Tracking** | 9.1 (80 reviews) ✓ Verified | Not enough data | 
| **Detection Rate** | 9.3 (90 reviews) ✓ Verified | Not enough data | 
| **False Positives** | 7.9 (89 reviews) ✓ Verified | Not enough data | 
| **Automated Scans** | 9.5 (98 reviews) ✓ Verified | Not enough data | 

#### Network

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Compliance Testing** | 9.0 (39 reviews) | Not enough data | 
| **Perimeter Scanning** | 9.0 (82 reviews) ✓ Verified | Not enough data | 
| **Configuration Monitoring** | Feature Not Available | Not enough data | 

#### Application

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Manual Application Testing** | 8.2 (54 reviews) ✓ Verified | Not enough data | 
| **Static Code Analysis** | Feature Not Available | Not enough data | 
| **Black Box Testing** | 8.4 (50 reviews) ✓ Verified | Not enough data | 

#### Agentic AI - Vulnerability Scanner

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Autonomous Task Execution** | 8.1 (8 reviews) | Not enough data | 
| **Proactive Assistance** | Feature Not Available | Not enough data | 

### API Security

| Product | Score | Reviews |
|---|---|---|
| **Intruder** | 8.9/10 | 11 |
| **ZAP by Checkmarx** | N/A | N/A |

#### API Management 

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **API Discovery** | 8.8 (8 reviews) | Not enough data | 
| **API Monitoring** | Feature Not Available | Not enough data | 
| **Reporting** | 9.2 (10 reviews) | Not enough data | 
| **Change Management** | Feature Not Available | Not enough data | 

#### Security Testing

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Compliance Monitoring** | Feature Not Available | Not enough data | 
| **API Verification** | Feature Not Available | Not enough data | 
| **API Testing** | 8.7 (10 reviews) | Not enough data | 

#### Security Management

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Security and Policy Enforcement** | Feature Not Available | Not enough data | 
| **Anomoly Detection** | Feature Not Available | Not enough data | 
| **Bot Detection** | Feature Not Available | Not enough data | 

### Cloud Security Posture Management (CSPM)

| Product | Score | Reviews |
|---|---|---|
| **Intruder** | N/A | N/A |
| **ZAP by Checkmarx** | N/A | N/A |

#### Configuration

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **DLP Configuration** | Feature Not Available | Not enough data | 
| **Configuration Monitoring** | Not enough data | Not enough data | 
| **Unified Policy Management** | Not enough data | Not enough data | 
| **Adaptive Access Control** | Feature Not Available | Not enough data | 
| **API / Integrations** | Not enough data | Not enough data | 

#### Visibility

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Multicloud Visibility** | Not enough data | Not enough data | 
| **Asset Discovery** | Not enough data | Not enough data | 

#### Vulnerability Management

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Threat Hunting** | Feature Not Available | Not enough data | 
| **Vulnerability Scanning** | Not enough data | Not enough data | 
| **Vulnerability Intelligence** | Not enough data | Not enough data | 
| **Risk-Prioritization** | Not enough data | Not enough data | 

### Attack Surface Management

| Product | Score | Reviews |
|---|---|---|
| **Intruder** | 8.8/10 | 25 |
| **ZAP by Checkmarx** | N/A | N/A |

#### Asset Management

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Asset Discovery** | 9.3 (19 reviews) | Not enough data | 
| **Shadow IT Detection** | 8.1 (18 reviews) | Not enough data | 
| **Change Management** | Feature Not Available | Not enough data | 

#### Monitoring

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Gap Analysis** | Feature Not Available | Not enough data | 
| **Vulnerability Intelligence** | 9.5 (22 reviews) | Not enough data | 
| **Compliance Monitoring** | 9.3 (21 reviews) | Not enough data | 
| **Continuous Monitoring** | 9.6 (22 reviews) | Not enough data | 

#### Risk Management

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Risk-Prioritization** | 9.2 (22 reviews) | Not enough data | 
| **Reconnaissance** | 8.9 (22 reviews) | Not enough data | 
| **At-Risk Analysis** | Feature Not Available | Not enough data | 
| **Threat Intelligence** | 9.3 (20 reviews) | Not enough data | 

#### Generative AI

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **AI Text Summarization** | 6.3 (13 reviews) | Not enough data | 

### Exposure Management Platforms

| Product | Score | Reviews |
|---|---|---|
| **Intruder** | N/A | N/A |
| **ZAP by Checkmarx** | N/A | N/A |

#### Generative AI - Exposure Management Platforms

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Predictive Analytics** | Not enough data | Not enough data | 
| **Automated Threat Detection** | Not enough data | Not enough data | 

#### Risk Identification and Assessment - Exposure Management Platforms

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Comprehensive Risk Assessment** | Not enough data | Not enough data | 
| **Advanced Analytics and Reporting** | Not enough data | Not enough data | 

#### Monitoring and Integration - Exposure Management Platforms

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Integration and Data Consolidation** | Feature Not Available | Not enough data | 
| **Real-time Monitoring and Alerts** | Not enough data | Not enough data | 

### Cloud Security

| Product | Score | Reviews |
|---|---|---|
| **Intruder** | N/A | N/A |
| **ZAP by Checkmarx** | N/A | N/A |

#### Cloud Visibility

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Data Discovery** | Not enough data | Not enough data | 
| **Cloud Registry** | Not enough data | Not enough data | 
| **Cloud Gap Analytics** | Not enough data | Not enough data | 

#### Security

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Data Security** | Not enough data | Not enough data | 
| **Data loss Prevention** | Not enough data | Not enough data | 
| **Security Auditing** | Not enough data | Not enough data | 

#### Identity

| Feature | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **SSO** | Not enough data | Not enough data | 
| **Governance** | Not enough data | Not enough data | 
| **User Analytics** | Not enough data | Not enough data | 

---
## Categories
**Shared Categories (2):** [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast), [Penetration Testing Tools](https://www.g2.com/categories/penetration-testing-tools)

**Unique to Intruder (6):** [ Attack Surface Management Software](https://www.g2.com/categories/attack-surface-management), [Exposure Management Platforms](https://www.g2.com/categories/exposure-management-platforms), [API Security Tools](https://www.g2.com/categories/api-security), [Website Security Software](https://www.g2.com/categories/website-security), [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner), [Cloud Security Posture Management (CSPM) Software](https://www.g2.com/categories/cloud-security-posture-management-cspm)



---
## Reviewer Demographics

### By Company Size

| Segment | Intruder | ZAP by Checkmarx | 
|---|---|---|
| **Small-Business** | 58.4% | 76.9% | 
| **Mid-Market** | 36.6% | 7.7% | 
| **Enterprise** | 5.0% | 15.4% | 

### By Industry

#### Intruder

- **Computer Software:** 21.0%
- **Information Technology and Services:** 15.5%
- **Financial Services:** 7.5%
- **Computer &amp; Network Security:** 6.0%
- **Insurance:** 2.5%
- **Information Services:** 2.0%
- **Retail:** 2.0%
- **Internet:** 2.0%
- **Legal Services:** 2.0%
- **Hospital &amp; Health Care:** 2.0%
- **Other:** 37.5%

#### ZAP by Checkmarx

- **Computer &amp; Network Security:** 41.7%
- **Information Technology and Services:** 25.0%
- **Computer Software:** 16.7%
- **Internet:** 8.3%
- **Hospital &amp; Health Care:** 8.3%

---
## Alternatives

### Alternatives to Intruder

- [Detectify](https://www.g2.com/products/detectify/reviews) — 4.5/5 stars (51 reviews)
- [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (303 reviews)
- [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews) — 4.5/5 stars (71 reviews)
- [Acunetix by Invicti](https://www.g2.com/products/acunetix-by-invicti/reviews) — 4.1/5 stars (105 reviews)
- [Pentest-Tools.com](https://www.g2.com/products/pentest-tools-com/reviews) — 4.8/5 stars (104 reviews)
- [Beagle Security](https://www.g2.com/products/beagle-security/reviews) — 4.7/5 stars (88 reviews)
- [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (826 reviews)
- [Burp Suite](https://www.g2.com/products/burp-suite/reviews) — 4.8/5 stars (129 reviews)
- [Astra Pentest](https://www.g2.com/products/astra-pentest/reviews) — 4.6/5 stars (213 reviews)
- [Orca Security](https://www.g2.com/products/orca-security/reviews) — 4.7/5 stars (299 reviews)

### Alternatives to ZAP by Checkmarx

- [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (897 reviews)
- [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (303 reviews)
- [Harness Platform](https://www.g2.com/products/harness-platform/reviews) — 4.6/5 stars (304 reviews)
- [Acunetix by Invicti](https://www.g2.com/products/acunetix-by-invicti/reviews) — 4.1/5 stars (105 reviews)
- [Burp Suite](https://www.g2.com/products/burp-suite/reviews) — 4.8/5 stars (129 reviews)
- [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews) — 4.5/5 stars (71 reviews)
- [vPenTest](https://www.g2.com/products/vpentest/reviews) — 4.6/5 stars (240 reviews)
- [Astra Pentest](https://www.g2.com/products/astra-pentest/reviews) — 4.6/5 stars (213 reviews)
- [Metasploit](https://www.g2.com/products/metasploit/reviews) — 4.6/5 stars (55 reviews)
- [Cobalt](https://www.g2.com/products/cobalt-io-cobalt/reviews) — 4.5/5 stars (178 reviews)

---
## Top Discussions

### Intruder

- Title: [Will Intruder&#39;s scans damage my systems?](https://www.g2.com/discussions/safety-c5a12906-e3b1-45c9-8cf9-355ece492a98) — 2 comments, 1 upvote
  > **Top comment:** "No"
- Title: [What does Intruder actually test for you?](https://www.g2.com/discussions/vulnerability-scanning) — 2 comments, 1 upvote
  > **Top comment:** "Saas applications, website and WAN"
- Title: [Is intruder IO safe?](https://www.g2.com/discussions/is-intruder-io-safe) — 1 comment
  > **Top comment:** "Intruder’s scanning engines are configured to be safe to use – even when scanning production systems, that said, this question does crop up from time to time..."
- Title: [What is intruder software?](https://www.g2.com/discussions/what-is-intruder-software) — 1 comment
  > **Top comment:** "Intruder is an online vulnerability scanning tool, designed to help you keep your internal, external, cloud systems and web-apps secure.

You can read all..."
- Title: [Who is Intruder?](https://www.g2.com/discussions/about-intruder) — 1 comment, 1 upvote *(includes official response)*
  > **Top comment:** "Intruder is a cloud-based vulnerability scanner that finds cybersecurity weaknesses in your digital infrastructure, helping you manage your attack surface..."

### ZAP by Checkmarx

No discussions available for this product.

---
**Source:** [G2.com](https://www.g2.com) | [Comparison Page](https://www.g2.com/compare/intruder-vs-zap-by-checkmarx)

