Compare Invicti (formerly Netsparker) and Qualys WAS
Featured Products
At a Glance
Market Segments
Enterprise (47.7% of reviews)
Mid-Market (47.4% of reviews)
Entry-Level Pricing
No pricing available
No pricing available
Invicti (formerly Netsparker)
Star Rating
(69)4.6 out of 5
Market Segments
Enterprise (47.7% of reviews)
Pros & Cons
Entry-Level Pricing
No pricing available
Learn more about Invicti (formerly Netsparker)
Qualys WAS
Star Rating
(20)4.5 out of 5
Market Segments
Mid-Market (47.4% of reviews)
Pros & Cons
Not enough data
Entry-Level Pricing
No pricing available
Learn more about Qualys WAS
Invicti (formerly Netsparker) vs Qualys WAS
When assessing the two solutions, reviewers found Qualys WAS easier to use, set up, and administer. Reviewers also preferred doing business with Qualys WAS overall.
- Reviewers felt that Qualys WAS meets the needs of their business better than Invicti (formerly Netsparker).
- When comparing quality of ongoing product support, reviewers felt that Qualys WAS is the preferred option.
- When assessing product direction, Invicti (formerly Netsparker) and Qualys WAS received similar ratings from our reviewers.
Pricing
Entry-Level Pricing
Invicti (formerly Netsparker)
No pricing availableQualys WAS
No pricing availableFree Trial
Invicti (formerly Netsparker)
No trial information availableQualys WAS
No trial information availableRatings
Meets Requirements
9.1
59
9.6
14
Ease of Use
9.1
59
9.3
14
Ease of Setup
9.0
49
10.0
5
Ease of Admin
9.2
46
10.0
5
Quality of Support
8.9
59
9.3
14
Has the product been a good partner in doing business?
9.6
44
9.7
5
Product Direction (% positive)
10.0
55
10.0
12
Features by Category
Administration
8.7
18
Not enough data
9.5
22
Not enough data
9.0
22
Not enough data
Risk Analysis
Feature Not Available
Not enough data
9.3
23
Not enough data
9.2
23
Not enough data
Threat Protection
7.9
13
Not enough data
Feature Not Available
Not enough data
8.2
14
Not enough data
Feature Not Available
Not enough data
Generative AI
Feature Not Available
Not enough data
Administration
8.2
14
Not enough data
8.3
13
Not enough data
9.1
18
Not enough data
Analysis
8.4
15
Not enough data
9.0
17
Not enough data
9.7
18
Not enough data
Testing
7.6
12
Not enough data
8.6
15
Not enough data
9.0
18
Not enough data
9.1
18
Not enough data
Static Application Security Testing (SAST)Hide 14 FeaturesShow 14 Features
Not enough data
Not enough data
Administration
Not enough data
Not enough data
Not enough data
Not enough data
Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Application Security Testing (SAST)
Not enough data
Not enough data
Administration
8.2
21
Not enough data
8.3
20
Not enough data
Analysis
9.0
29
Not enough data
9.2
26
Not enough data
Feature Not Available
Not enough data
9.4
29
Not enough data
7.6
18
Not enough data
Testing
7.1
19
Not enough data
8.5
24
Not enough data
8.4
23
Not enough data
9.1
21
Not enough data
8.6
21
Not enough data
7.4
21
Not enough data
Performance
8.6
18
|
Verified
8.5
13
9.0
18
|
Verified
9.1
13
7.9
20
|
Verified
6.2
13
9.1
19
|
Verified
9.6
13
Network
8.7
14
|
Verified
8.9
12
8.6
11
|
Verified
8.3
12
8.3
11
|
Verified
8.2
12
Application
8.2
15
7.1
11
8.2
15
|
Verified
7.0
11
9.2
18
|
Verified
8.7
13
Agentic AI - Vulnerability Scanner
Not enough data
Not enough data
Not enough data
Not enough data
Functionality - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Effectiveness - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
API Management
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Security Testing
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Not enough data
Not enough data
Security Management
Not enough data
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Application Security Posture Management (ASPM)Hide 11 FeaturesShow 11 Features
Not enough data
Not enough data
Risk management - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Integration and efficiency - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Reporting and Analytics - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Code Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Cloud Visibility
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Identity
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Interactive Application Security Testing (IAST)Hide 1 FeatureShow 1 Feature
Not enough data
Not enough data
Agentic AI - Interactive Application Security Testing (IAST)
Not enough data
Not enough data
Categories
Categories
Shared Categories
Invicti (formerly Netsparker) and Qualys WAS are categorized as Vulnerability Scanner
Unique Categories
Invicti (formerly Netsparker) is categorized as Dynamic Application Security Testing (DAST), Penetration Testing, Website Security, API Security, Static Application Security Testing (SAST), Software Composition Analysis, Static Code Analysis, Interactive Application Security Testing (IAST), and Application Security Posture Management (ASPM)
Qualys WAS has no unique categories
Reviews
Reviewers' Company Size
Invicti (formerly Netsparker)
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Qualys WAS
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Computer Software
12.3%
Telecommunications
10.8%
Financial Services
9.2%
Information Technology and Services
9.2%
Computer & Network Security
6.2%
Other
52.3%
Information Technology and Services
31.6%
Computer Software
31.6%
Computer & Network Security
21.1%
Outsourcing/Offshoring
5.3%
Internet
5.3%
Other
5.3%
Alternatives
Discussions
What is Invicti (formerly Netsparker) used for?
1 Comment
HS
Dynamic application Security Scanning - DAST ScanRead more
What are URL rewrites and URL rewrite rules?
1 Comment
Official Response from Invicti (formerly Netsparker)
Web application developers use URL Rewrite Rules to hide parameters in the URL directory structure and is typically used to make it easier for search engines...Read more
What is the Knowledge base node and what is reported in it?
1 Comment
Official Response from Invicti (formerly Netsparker)
Netsparker Desktop and Netsparker Cloud are not just web vulnerability scanners that automatically identify vulnerabilities in web applications. They are all...Read more
What are the typical features offered by vulnerability scanner?
1 Comment
HQ
Vulnerability scanners are essential tools for identifying and mitigating security risks in computer systems and networks. They offer a range of features to...Read more
Qualys WAS has no more discussions with answers
