# Invicti (formerly Netsparker) Reviews **Vendor:** Invicti Security **Category:** [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast) **Average Rating:** 4.6/5.0 **Total Reviews:** 69 ## About Invicti (formerly Netsparker) Invicti is an automated application and API security testing solution that allows enterprise organizations to secure thousands of websites, web apps, and APIs and dramatically reduce the risk of attack. By empowering security teams with the most unique DAST + IAST scanning capabilities on the market, Invicti allows organizations with complicated environments to confidently automate their web application and API security. With Invicti, security teams can: - Automate security tasks and save hundreds of hours each month - Gain complete visibility into all your applications — even those that are lost, forgotten, or hidden - Automatically give developers rapid feedback that trains them to write more secure code — so they create fewer vulnerabilities over time - Feel confident that you are equipped with the most powerful application security scanning tool on the market You have the most demanding security needs, and Invicti is the best-in-class application security solution you deserve. ## Invicti (formerly Netsparker) Pros & Cons **What users like:** - Users praise the **ease of use** of Invicti, highlighting quick setups and accurate, efficient vulnerability scans. (9 reviews) - Users appreciate the **quick and efficient scanning technology** of Invicti, facilitating hassle-free monthly website tests. (7 reviews) - Users value the **simplicity and robust reporting features** of Invicti, enhancing DAST and API security management. (6 reviews) - Users value the **well-formatted and easy-to-read reports** from Invicti, enhancing efficiency for certification processes. (6 reviews) - Users value the **accuracy and ease of use** in Invicti's vulnerability detection, ensuring reliable results without false alarms. (6 reviews) - Users value the **effective vulnerability identification** of Invicti, highlighting its accuracy and minimal false positives. (6 reviews) - Users appreciate the **accuracy of results** from Invicti, consistently identifying real vulnerabilities without excessive false positives. (5 reviews) - Users appreciate the **excellent customer support** from Invicti, enhancing their overall experience and relationship with the product. (5 reviews) - Users value the **automated scanning** feature of Invicti, enabling quick and accurate web application vulnerability assessments. (4 reviews) - Easy Integrations (4 reviews) **What users dislike:** - Users feel that the **customer support is lacking** , citing slow response times and inadequate solutions during technical issues. (3 reviews) - Users find the **slow performance** during scans and setup frustrating, impacting the overall efficiency of Invicti. (3 reviews) - Users find the **slow scanning** process frustrating, which affects the overall efficiency of using Invicti. (3 reviews) - Users report **API issues** that hinder functionality, making it difficult to use Invicti for API scanning effectively. (2 reviews) - The **complex setup** can be overwhelming initially, making it difficult to streamline scans and manage configurations effectively. (2 reviews) - Users experience **inefficient scanning** that can be slow, with setup challenges and limitations in API scanning functionality. (2 reviews) - Scanning Issues (2 reviews) - Setup Complexity (2 reviews) - Technical Issues (2 reviews) - Complexity (1 reviews) ## Invicti (formerly Netsparker) Reviews ### 1. Scalable Enterprise Security: Deep Endpoint Coverage via Invicti **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** May 04, 2026 **What do you like best about Invicti (formerly Netsparker)?** In my experience conducting deep security posture analysis, the most valuable aspect of Invicti is its ability to bridge the gap between active vulnerability scanning and dependency management. While many tools focus only on active threats, Invicti provides the Software Composition Analysis (SCA) depth we need for enterprise portfolios. In practice, we use it to manage the security implications of complex, nested packages, ensuring we remain accountable for dependencies built on top of other packages in our Java and Spring Boot environments. Its integration with our CI/CD pipelines (such as Jenkins) also lets us automate endpoint testing across the full application interface. What stands out most is the accuracy with which it discovers available endpoints without requiring significant manual configuration. Rather than spending hours defining what to test, the automated crawling produces a comprehensive report that categorizes issues by severity. This makes it easier to prioritize remediation right away, instead of manually filtering through noise. **What do you dislike about Invicti (formerly Netsparker)?** The primary challenge we've encountered involves performance overhead and scalability when integrating multiple scanning agents across a large portfolio of applications. When running concurrent scans for several enterprise-grade microservices, the resource consumption can lead to significantly longer scan times, which occasionally creates a bottleneck in our rapid deployment cycles. Additionally, while the automation is robust, it can require extensive manual configuration for complex authentication flows (such as custom headers or multi-step SSO). Without this "fine-tuning," the scanner can sometimes struggle with context-awareness, leading to false positives that require manual triage. For a security team managing a high volume of vulnerabilities, investigating these non-exploitable findings can be time-consuming and reduce the overall efficiency of the automated reporting. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** We previously struggled with a fragmented security approach: vulnerability data was scattered across multiple tools, which made it hard to maintain a clear, unified view of risk across a large application portfolio. Invicti addressed this by bringing DAST, SAST, and SCA together into a single automated workflow. This has been especially valuable for our API security and microservices architecture, where manual endpoint discovery is often error-prone and time-consuming. The biggest improvement for us has been the shift to automated Application Security Posture Management (ASPM). Rather than manually triaging individual findings from different sources, we now rely on a centralized, detailed report that helps prioritize vulnerabilities based on their real impact. As a result, team productivity has improved noticeably by reducing the “security bottleneck” during deployment cycles. With automated discovery of hidden endpoints and secrets scanning, we’ve been able to focus remediation where it matters most and keep better control of costs by catching vulnerabilities much earlier in the development lifecycle. ### 2. Effortless Website Testing with Outstanding Support **Rating:** 4.5/5.0 stars **Reviewed by:** Chris M. | System Administrator, Mid-Market (51-1000 emp.) **Reviewed Date:** October 23, 2025 **What do you like best about Invicti (formerly Netsparker)?** Invicti is simple to use and quick to set up, making it easy for me to carry out monthly website tests with hardly any hassle as each target is saved in its own profile. Over the years Invicti has become a crucial part of our workflow with me carrying out monthly scans. Also, whenever I experience any difficulties with the software, I can reach out to support, and they consistently respond promptly and helpfully to resolve my concerns. **What do you dislike about Invicti (formerly Netsparker)?** We have some issues with API scanning and so can not use this app for that purpose. This is something that we do differently to the way Invicti looks at APIs so we could never get it to work even with the great support offered. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Regular scans with Invicti help me keep track of our websites' security by notifying me about any new releases in the software packages used to build our products. This also provides us with peace of mind, as the software is continually updated to address the latest threats. Even if development on a particular product has ceased, we can still monitor how outdated the packages are and stay informed about potential vulnerabilities. ### 3. Simple Reporting Shines, But Needs Better Integration Options **Rating:** 4.0/5.0 stars **Reviewed by:** Pranav K. | DevOps Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** October 28, 2025 **What do you like best about Invicti (formerly Netsparker)?** I appreciate the simplicity of the platform, especially the report generation options. These features are particularly helpful when we require different reports for various scenarios. **What do you dislike about Invicti (formerly Netsparker)?** When we worked with Qualys scanning, I found the plugin for capturing the login chain to be straightforward to use and set up. I hope we can have a similar experience here. Additionally, integration with Teams or email would be very helpful. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** As a company compliant with SOC 2 and ISO standards, we maintain strict policies regarding our web application security. Invicti has assisted us in conducting monthly web scans to identify vulnerabilities within our app. The report generation feature is also quite effective. We receive an executive summary that includes only the scan information and vulnerability details, as well as a developer summary, which we typically share with our developers to address the identified vulnerabilities. ### 4. Reliable DAST Tool with Proof-Based Accuracy and Automation **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** October 22, 2025 **What do you like best about Invicti (formerly Netsparker)?** Accuracy and integration capabilities. Invicti integrates tightly with DevOps and CI/CD tools such as Jenkins, GitLab, Jira. **What do you dislike about Invicti (formerly Netsparker)?** While the tool identifies vulnerabilities effectively, it doesn’t provide detailed, actionable remediation guidance, such as code snippets or contextual fix instructions. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Invicti is solving a major challenge for our organization. It helps our web application security scanning across increasingly complex environments. It helps both security and development teams identify, verify, and remediate vulnerabilities faster, with greater confidence. Many DAST tools flag false vulnerabilities, creating friction between security and development teams, but Invicti confirms real issues by safely validating exploits, eliminating nearly all false positives. ### 5. Essential Tool for Dynamic Application Testing, Needs Better Support **Rating:** 5.0/5.0 stars **Reviewed by:** nikhil n. **Reviewed Date:** November 06, 2025 **What do you like best about Invicti (formerly Netsparker)?** I appreciate that Invicti (formerly Netsparker) offers easy-to-read and well-formatted reports that are particularly presentable for ISO certifications, which simplifies the process significantly. The tool's dynamic application testing capabilities are a vital part of our ISM certification process, which adds considerable value to our operations. Additionally, I am pleased with the reasonable pricing it offers, providing vital certification from an authorized dealer without breaking the bank. The user-friendly setup is another aspect I find valuable. Even a builder can start setting up the security testing software quickly, making it highly efficient for our needs and allowing us to begin operations swiftly. Overall, these elements make Invicti an essential and effective tool for my team's security testing and certification needs. **What do you dislike about Invicti (formerly Netsparker)?** I feel the customer support could be improved. While it does allow for some level of screen sharing support, I believe there is room for enhancements in this area. This specific aspect of customer support, like chat support, could benefit from more robust and interactive support features such as effective and seamless screen-sharing capabilities. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** I use Invicti for dynamic application testing, aiding in our ISM certification. It provides easy-to-read, well-formatted reports, simplifying ISO certification processes and ensuring compliance efficiently. The setup is user-friendly, allowing quick implementation of security testing. ### 6. Invicti Delivers Accurate, Efficient DAST with Seamless CI/CD Integration **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Insurance | Enterprise (> 1000 emp.) **Reviewed Date:** October 21, 2025 **What do you like best about Invicti (formerly Netsparker)?** We've been using Invicti (formerly Netsparker) as our primary Dynamic Application Security Testing (DAST) tool, and it has consistently delivered excellent results. As an Information Security Specialist, I rely on tools that are both accurate and efficient—and Invicti checks both boxes. The scanner is highly effective at identifying real, exploitable vulnerabilities in our web applications without generating excessive false positives. Its automation capabilities have streamlined our testing workflows, and the integration with our CI/CD pipeline has made it easy to embed security into our development lifecycle. One of the standout features is its proof-based scanning, which provides clear evidence of vulnerabilities, making it easier to prioritize and remediate issues. The reporting is also comprehensive and customizable, which helps in communicating findings to both technical and non-technical stakeholders. Overall, Invicti has become a trusted part of our security toolkit. I’d recommend it to any team looking for a robust and scalable DAST solution. **What do you dislike about Invicti (formerly Netsparker)?** SettingsThe settings and configuration options can feel a bit overwhelming at first. Some menus are nested in ways that make it harder to quickly find what you need, especially when fine-tuning scan profiles or managing integrations. A more streamlined UI for settings would improve the overall experience. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** The biggest benefit is the proof-based scanning, which gives us actionable results with minimal false positives. This saves our team time and ensures we’re focusing on real risks. It also integrates well into our CI/CD pipeline, helping us shift security left and catch issues earlier in the development lifecycle. ### 7. Great DAST & API Security Features, But Support Needs Improvement **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Telecommunications | Enterprise (> 1000 emp.) **Reviewed Date:** October 21, 2025 **What do you like best about Invicti (formerly Netsparker)?** The product offers valuable features for DAST and API security, and it integrates smoothly with other tools. **What do you dislike about Invicti (formerly Netsparker)?** The technical support is quite disappointing. After connecting with them, they attempt to understand the issue, but most of the time they are unable to provide any real solution. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** It helps us by onboarding our internal websites and API endpoints, allowing us to test them for any vulnerabilities. ### 8. Absolutely Love This Software! **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** October 21, 2025 **What do you like best about Invicti (formerly Netsparker)?** I like that Invicti’s super accurate and easy to use it finds real issues without all the false alarms and fits right into our workflow. **What do you dislike about Invicti (formerly Netsparker)?** Sometimes the scans can take a while, and the setup’s a bit tricky at first but once it’s running, it does a solid job **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** This tool saves us a significant amount of time and helps keep our apps much more secure, eliminating the need for constant manual checks. ### 9. Web Application Security! **Rating:** 5.0/5.0 stars **Reviewed by:** Michael C. | Logistics coordinator, Small-Business (50 or fewer emp.) **Reviewed Date:** September 12, 2025 **What do you like best about Invicti (formerly Netsparker)?** I love how this app easy to use, the GUI looks nice and professional. I frequently use it when I a do Pen Tests. The integration is rather smooth. **What do you dislike about Invicti (formerly Netsparker)?** I don't really have any negative thoughts. I love the features it offers. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Its simplifies my tests when visiting clients. ### 10. Wins in comparison to other products in the market **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Manufacturing | Enterprise (> 1000 emp.) **Reviewed Date:** April 03, 2025 **What do you like best about Invicti (formerly Netsparker)?** Simple API integration, Ability to schedule scans & report valuable vulnerabilities removing noise in the process **What do you dislike about Invicti (formerly Netsparker)?** Could be more faster in customer support and product upgrades **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Ability to keep the external and internal attack surface in check by identifying vulnerabilities that come from Secure SDLC practices not being followed ### 11. User friendly API Testing **Rating:** 4.0/5.0 stars **Reviewed by:** Dhanarjun M. | Senior Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** December 16, 2024 **What do you like best about Invicti (formerly Netsparker)?** It is very user friendly and gives you detailed view of the API requests and the response forms and vulnerabilities **What do you dislike about Invicti (formerly Netsparker)?** Difficult to test end points as it does not help much with testing endpoints **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** It's a very easy to use simple to uderstand platform for API testing with DAST and IAST, it really helped me save a lot of time during testing APIs and easily capture response data. ### 12. Invicti (formerly Netsparker) Amazing tool for Dynamic Application Security Testing (DAST) **Rating:** 5.0/5.0 stars **Reviewed by:** Harshit S. | Senior Security Specialist, Enterprise (> 1000 emp.) **Reviewed Date:** May 19, 2024 **What do you like best about Invicti (formerly Netsparker)?** Good amount of True positive issues. the Good amount of information is provided for the issue (captures complete request and response for the reported issue), easy mitigation management, etc **What do you dislike about Invicti (formerly Netsparker)?** Not much helpful for scanning API endpoints **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Its a greate tool for Automatied Security testing and can catch most of the low hanging fruits and provide the researcher to stay focus on another comlex issues which require manual intervention ### 13. Great product, been using it for years **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Consulting | Small-Business (50 or fewer emp.) **Reviewed Date:** February 29, 2024 **What do you like best about Invicti (formerly Netsparker)?** This tool helps us get web application vulnerability scans done quickly and effectively. We've found the tool to be very easy to use and acurate in terms of what it reports. We use this tool several times a month. Any time we've had to do any work with customer support they've been great. They're quick to inform us when our anual billing cycle is coming up for renewal as well. Installation is quick and easy. **What do you dislike about Invicti (formerly Netsparker)?** There hasn't been too much that we've found that we don't like or that makes it difficult to use the tool. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** It makes identifying security concerns with websites quick and easy. ### 14. Great for Webb Application Scanning **Rating:** 5.0/5.0 stars **Reviewed by:** Sofia V. | IT Security Architect and Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** January 04, 2024 **What do you like best about Invicti (formerly Netsparker)?** The tool is user friendly and easy to set up. It is very accurate when it comes to discovering vulnerabilities. The support team is very professional and replies quickly. Overall, I'm very pleased with this tool. **What do you dislike about Invicti (formerly Netsparker)?** There's a few features in the on-premise version that I would like to see in the online version as well. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** It helps us quicly identify vulnerabilities and avoid being breached by threat actors **Official Response from Oksana Pure:** > We're pleased that Invicti helps you quickly identify vulnerabilities and enhance your security against potential breaches. Thank you for choosing our tool. ### 15. Professional and friendly attention **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Automotive | Enterprise (> 1000 emp.) **Reviewed Date:** December 21, 2023 **What do you like best about Invicti (formerly Netsparker)?** Their products are top and easy to use. Customaer support is great **What do you dislike about Invicti (formerly Netsparker)?** I have nothing in mind, everything is good so far **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** It saves out time in pentesting and vulnerability scanning tasks **Official Response from Oksana Pure:** > We appreciate your feedback and are delighted to hear that our products have been beneficial in saving you time with pen-testing and vulnerability scanning. ### 16. Good Customer Experience **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Government Administration | Enterprise (> 1000 emp.) **Reviewed Date:** December 21, 2023 **What do you like best about Invicti (formerly Netsparker)?** Invicti provided good customer experience and relationship. **What do you dislike about Invicti (formerly Netsparker)?** Nothing dislike about Invicti (formerly Netsparker). **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Invicti (formerly Netsparker) solved vulnerability scanner requirement by the company and this has benefitted us. **Official Response from Oksana Pure:** > We are pleased that Invicti has been able to meet your vulnerability scanner requirements and provide benefits to your company. Thank you for sharing your experience. ### 17. All in one vulnerability scanner **Rating:** 5.0/5.0 stars **Reviewed by:** Bala K. | Technician, Small-Business (50 or fewer emp.) **Reviewed Date:** May 31, 2023 **What do you like best about Invicti (formerly Netsparker)?** Invicti which is Netsparker provided me major vulnerability database to find remote execution vulnerability, domain invalidation and manay vulnerability patches which allows me to find cve score as well. Recurrent scanning provides me to fetch files at integrity level. **What do you dislike about Invicti (formerly Netsparker)?** Sometimes it failes to fetch database which is at server end and back end level. Merely connects to internet at that point of time. Apart from that there is no issues with it. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Netsparker helps me to find the best reports with moderate scanning where other open source tools take time to evaluate or enumerate the bugs. After reporting it helps to patch the final accuracy of false positive after report preparation. ### 18. Tech update as per Industry **Rating:** 5.0/5.0 stars **Reviewed by:** Shefin D. | Enterprise (> 1000 emp.) **Reviewed Date:** December 14, 2023 **What do you like best about Invicti (formerly Netsparker)?** Automate security throughout your SDLC.. **What do you dislike about Invicti (formerly Netsparker)?** Further automation scope is available. . **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Web App security ### 19. Netsparker the Best DAST Tool **Rating:** 4.0/5.0 stars **Reviewed by:** Jyoti B. | Specialist Security Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** April 13, 2021 **What do you like best about Invicti (formerly Netsparker)?** Easy Configuration, No False Positive, IAST Feature **What do you dislike about Invicti (formerly Netsparker)?** No proper support for 2FA or MFA web applications **Recommendations to others considering Invicti (formerly Netsparker):** Netsparker is a digitalized online web application security scanner, which is entirely configurable, which enable users to scan websites, web applications, and web services and detect the flaws in security. You have lot of options to select options to select security policies. Also, it has support to start mutliple scans at a given time based on agents installed or configured in Netsparker enterprise server. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Helped us in reducing number of false positives with proof based scanning & exploitation etc. Easy to start the assesments ### 20. Invictus Review **Rating:** 4.5/5.0 stars **Reviewed by:** Ratiranjan N. | Sr Data Engineer , Small-Business (50 or fewer emp.) **Reviewed Date:** June 29, 2022 **What do you like best about Invicti (formerly Netsparker)?** The best features of Invicti is it provides security to enterprise organizations to secure a lot of websites and helps it to organize with the complicated structure with unique scan techniques. **What do you dislike about Invicti (formerly Netsparker)?** The support services should be more effective on MFA web applications.it should have 2FA application as well.it should also try to remove the slowness while scan happens. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Invictinis helping with security control, audit process for web applications.Tje support is quite perfect on the reported false positive cases.and it provides the best solution in the market ### 21. "Netsparker the best DAST tool" **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Telecommunications | Enterprise (> 1000 emp.) **Reviewed Date:** November 10, 2021 **What do you like best about Invicti (formerly Netsparker)?** Netsparker is a digitalized online web application security scanner, which is entirely configurable, which enables users to scan websites, web applications, and web services and detect security flaws. You have a lot of options to select options to select security policies. Also, it has support to start multiple scans at a given time based on agents installed or configured in the Netsparker enterprise server. **What do you dislike about Invicti (formerly Netsparker)?** No support for 2FA or MFA applications. We have more than 50% of Applications with 2FA in our organization. I heard it's getting published soon. When using Netsparker to scan or detect vulnerabilities in web applications with larger web applications, users can notice slowness in the web scanning processes. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** False Positives reported Starting security assessments more than 5-6 at a time because of the agents installed. ### 22. Market Leader **Rating:** 5.0/5.0 stars **Reviewed by:** Volodymyr S. | Senior Information Security Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** May 21, 2021 **What do you like best about Invicti (formerly Netsparker)?** A lot of security checks, that are easily customizable. You can make the exact scat profile\type that you want. Really good support that answering fast and giving you proper recommendations. Every time when we reported false positives - the reaction was fast and adequate. It is the best solution that you can find on a market. **What do you dislike about Invicti (formerly Netsparker)?** Sometimes you need a lot of time and RAM to scan big applications, but it is an understandable disadvantage. Also, there are not so many options for scheduling, so in most cases, you will be running scans in real time. **Recommendations to others considering Invicti (formerly Netsparker):** Go to the settings and spent dome hours diving in. It will give you a much better understanding of a product and will increase value from the scanning activity. Also, not install it on the servers that already have other roles - it can ruin your life. If you have a lot of applications, you should go for the cloud. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Closing the most popular vulnerabilities with minimum time investments. We don't need to check every application with our hands - the scanner will make the most of the important checks automatically. ### 23. Netsparker for web facing application **Rating:** 4.5/5.0 stars **Reviewed by:** Julien L. | Analyste - Sécurité TI , Enterprise (> 1000 emp.) **Reviewed Date:** May 20, 2021 **What do you like best about Invicti (formerly Netsparker)?** Netsparker is an intuitive software to use even so it has a lot of options under the hood to help you tweak the configuration. The technologie dashboard, shows you in a click all the informations about the sofwares versions used in your web applications. It makes it easy to see the states of your applications. The number of false positive is low and it is able to detect a wide range of vulnerabilities. **What do you dislike about Invicti (formerly Netsparker)?** The Kenna integrations need's work, it is not proprely sending CVE'S at the moment. And there is no metrics to compare ourself to the industries, e.g remediations time. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** We are securing our web applications by detecting security issues, before they are exploited. Compare to the solution we had before, we lowered our false positive by a high margin and improved the detections of security issue. They missed a few times CVE's related to an oudated software version, support has fixed it quickly, still an area that would need more attention. ### 24. NetSparker for CI/CD Development **Rating:** 4.5/5.0 stars **Reviewed by:** Damien S. | Sr. Application Security Architect / Penetration Tester / vCISO / Instructor, Mid-Market (51-1000 emp.) **Reviewed Date:** May 12, 2021 **What do you like best about Invicti (formerly Netsparker)?** NetSparker integrates with so many technologies in such an efficient manner it makes complete CI/CD coverage possible from a DAST perspective. **What do you dislike about Invicti (formerly Netsparker)?** The licensing tied to URLs is very strict. Once you have attached a root URL to a website for scanning, it is challenging to retrieve that license if you or the development team made a mistake. This disconnect has happened several times with us due to initiating the development teams into the scanning process. Each time we have had to work with NS support to retrieve licenses. **Recommendations to others considering Invicti (formerly Netsparker):** Consider NetSparker if your development lifecycle includes a lot of cutting-edge technologies that must be assessed quickly. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** We were looking for a DAST solution that would integrate into the software development lifecycle. The use of NetSparker has relieved us of scanning manually and not maintaining a proper cadence for each scan cycle. ### 25. Fastest response time ever **Rating:** 5.0/5.0 stars **Reviewed by:** Mustafa A. | Senior Security Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** May 12, 2021 **What do you like best about Invicti (formerly Netsparker)?** Netsparker support gets back to you so fast that it looks like you are on a chat with them always available for meet and screen share to resolve any problem even if it takes 2hrs(which they are way faster in solving) a very friendly support team that can escalate any matter quickly if needed **What do you dislike about Invicti (formerly Netsparker)?** Nothing pretty much all is great with their team **Recommendations to others considering Invicti (formerly Netsparker):** I don't want to name any other application that does a similar job to Netsparker but I need to tell you, based on my experience in Security for over 8 years, I see that Netsparker, by far, is the best Web Application Security tool I have worked with **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** variety of problems, like scanner, cannot reach the websites, verifying XSS, Environment Migration, and etc. ### 26. Netsparker has the right balance of features, functions and usability **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Insurance | Mid-Market (51-1000 emp.) **Reviewed Date:** May 27, 2021 **What do you like best about Invicti (formerly Netsparker)?** Netsparker is intuitive to use. I don't have to understand much about the web platform that I am assessing nor the various options to customize the software—knowing those simply provides a quicker and more in-depth experience. Out of the box, Netsparker quickly provides the function I need. **What do you dislike about Invicti (formerly Netsparker)?** I would offer a wider variety of subscription models. I felt that some of the flexibility I would have liked to have regarding "registering" the domains that I will test with Netsparker felt prohibitive. It removed flexibility to do specific ad-hoc examinations and tests. I would suggest some additional offerings in a subscription. I would also recommend offering a one-year subscription model. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Netsparker allows me to integrate security assurance into the software development lifecycle in my organization. I can periodically validate secure coding practices during development and after deployment. I can also validate the functionality of some of my other security features, such as my web application firewall. Netsparker is an excellent tool to have in my security toolbox. ### 27. Step by step to the perfect **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** May 06, 2021 **What do you like best about Invicti (formerly Netsparker)?** The interface is user extremely user-friendly, easy to grab, even a new-beginner can manage it quickly. Reports are visually satisfactory, they are not complex but are reflecting the all vulnerabilities at the same time, therefore providing the reader a good summary of the relative scan(s). Automatically sent notification emails are useful on the other hand, for instance, if an agent is down you are being warned just at that time so you can fix and load the balance on agents again before any crashes. **What do you dislike about Invicti (formerly Netsparker)?** Both the web and desktop apps are instable during custom script writing and verification of login/logout. Here, there are other factors rather than Netsparker of course, such as the health websites you are scanning or internet connection, but there are some situations that 'Test script' button works for some time and doesn't for a few times after. These pop-out pages(custom script and verification) are being loaded very slow generally. **Recommendations to others considering Invicti (formerly Netsparker):** If you are looking for a perfect software, probably you won't be able to find it. Netsparker is close to perfect and it delivers a great support both in Turkish and English (maybe also in other languages I don't know). You don't feel lost and waste huge time and effort on accomplishing your expectations from this app so I find it clever to invest on a good support. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** We are using Netsparker for dynamically scanning different styles of websites we own; with Captcha, without Captcha, when logging in requires one or multiple pages, does not matter for this application. For the beginning, it feels hard to configure but the support team always respond quickly and they are really helpful about all problems whether they are easy or hard to solve. ### 28. Netsparker - the best Web application Scanner around. **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** May 12, 2021 **What do you like best about Invicti (formerly Netsparker)?** Netsparker can provide proof of concept/exploitation of web applications to give customers Reports that are visually pleasing, comprehensible put together in an easy to read but not overtaxing format. It explains the vulnerabilities in detail, plus also giving you a mitigation/road map on how to resolve the vulnerability. I love the way I can craft authenticated and unauthenticated scans on different web applications. These can be a simple website to a complex fresh from the developers' web application that highlights vulnerabilities that developers had missed in beta testing. **What do you dislike about Invicti (formerly Netsparker)?** Some recent upgrades have left bugs in the system which can be annoying. The NET4.8 one on the last upgrade was not highlighted until customer found that using the API the Netsparker scanner would stall just before the initiation of the scan. Other than that nothing else has troubled us. **Recommendations to others considering Invicti (formerly Netsparker):** The best web application scanner around - why bother with the rest when this hits every spot in vulnerability and penetration testing. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** The number of security holes left open by developers that netsparker discovers in DAST scanning, which helps the developers to re-focus and implement the necessary mitigation or upgrades to make the correct changes. A handy tool in our penetration testing in our continuous testing platform with scanning every week to ensure continuity and any changes in the web application that would alert us in our BOT network. ### 29. Great for Web Vulnerability scanning **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** April 26, 2018 **What do you like best about Invicti (formerly Netsparker)?** Very little false positive and relatively easy to use. **What do you dislike about Invicti (formerly Netsparker)?** Can always make it even easier to use . **Recommendations to others considering Invicti (formerly Netsparker):** Try it out **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Web vulnerability scanning in a quick manner ### 30. Impressive technology and ease of use! **Rating:** 4.5/5.0 stars **Reviewed by:** Tim W. | Enterprise (> 1000 emp.) **Reviewed Date:** December 01, 2020 **What do you like best about Invicti (formerly Netsparker)?** The best element if NetSparker Appsec tooling is the ease of use. You can get up and running in a matter of minutes. Their default scan policies are very powerful and easy to modify as needed. I also like the local scan agents for applications that we cannot whitelist through our firewall. If there are challenges their Support staff is also VERY responsive and knowledgeable. They are more than happy to get on a call and walk through any issues and work it through to a resolution. **What do you dislike about Invicti (formerly Netsparker)?** Scanning API's is a little cryptic and requires good understanding of the specific commands within it. It would be helpful if the setup of them was a little more dynamic based on the API type and content. **Recommendations to others considering Invicti (formerly Netsparker):** After review over a dozen other products available, after seeing the demo of NetSparker it was an easy decision. Some of the other products available seem to expect their users to have a PhD. Most IT professionals do not have the time to invest into overly complex tools. NetSparker provides out of the box, thorough scanning tools which allow users to produce results quickly. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Our organization did not have any AppSec tools or policies in place. As a result this was a substantial area of risk which was unknown in scope. NetSparker helped us understand the risks, how to mitigate them before they are deployed and provides ongoing incremental scans to ensure compliance. ### 31. Netsparker is a solid DAST product **Rating:** 4.0/5.0 stars **Reviewed by:** James C. | DevSecOps Cloud Security Specialist, Enterprise (> 1000 emp.) **Reviewed Date:** May 20, 2021 **What do you like best about Invicti (formerly Netsparker)?** Getting sites onboarded is fairly painless, and being able to put the ability to scan in a site/application owner's hands is invaluable. **What do you dislike about Invicti (formerly Netsparker)?** Licensing model can be restrictive for initial testing/onboarding. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Shifting application security left into the hands of development teams, freeing up security personnel to innovate elsewhere. ### 32. Highly Skilled DAST Tool For S-SDLC Integration Process **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** May 06, 2021 **What do you like best about Invicti (formerly Netsparker)?** SDLC Integration and Detection Capabilities **What do you dislike about Invicti (formerly Netsparker)?** I can define my login sequence successfuly but my scan couldn't logged-in when I started the scan. Scan configurations and login defining effect each other. I solved my problem in scan policy but the Desktop version had a better login defining feature. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** We solved our installation problems with your support teams. Also, we reached for our login problems but we've solved already. We learn better session define process via meetings with your team. Thank you. ### 33. RA_Review **Rating:** 4.5/5.0 stars **Reviewed by:** Ravi A. | Senior Test Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** May 26, 2021 **What do you like best about Invicti (formerly Netsparker)?** Overall Application regarding scanning and reporting systems **What do you dislike about Invicti (formerly Netsparker)?** It's little early to say about disliking application. **Recommendations to others considering Invicti (formerly Netsparker):** I recommend Netsparker **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Good Help desk support. ### 34. They are doing the right things **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Consumer Goods | Enterprise (> 1000 emp.) **Reviewed Date:** March 05, 2019 **What do you like best about Invicti (formerly Netsparker)?** Netsparker listens to their customers and designs a forward thinking product that evolves with the market. I appreciate that their strategic decisions are not based on corporate greed. I believe they are passionate about web app security and, in return, put out a great product. The self service model of Netsparker Cloud allows our developers and management direct access to Netsparker Cloud through their web browser. They login and view reports and their "Issue" tracking system integrates into common developer/IT ticketing systems. It has streamlined our workflow and saved almost an entire FTE. **What do you dislike about Invicti (formerly Netsparker)?** There have been a few bugs, but at least they are very quick to address them. The bugs are usually in the GUI and don't affect scan integrity. I think their support is very good compared to other companies we work with. They understand the product they support, and although it's mostly email support, they will hop on a call if needed. Since everything is based on permissions and groups, it is very important to set up your "groups" in a way that scales so you don't have to re-architect. Everything is impacted downstream if you don't scope the groups to your needs. We are a conglomerate company and sometimes users want more granular access than we can reasonably provide. We group by company and sometimes sub groups within a company. If people want a la carte notifications/visibility for some websites and not others it can be tricky. You'll quickly amass notification rules or groups in doing so. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** We can allow users to scan or re-scan their websites after an issue has been fixed. We have overcome a lot of middle man overhead issues because of this. Using this tool, we are identifying vulnerabilities and avoiding problems other vulnerability scanners had with false positives and inaccurate results. We spend very little time babysitting scans and reporting and more time working with our groups to remediate vulnerabilities and improve our security posture. ### 35. Good security solution **Rating:** 4.5/5.0 stars **Reviewed by:** Jenis M. | Manager, Enterprise (> 1000 emp.) **Reviewed Date:** May 20, 2021 **What do you like best about Invicti (formerly Netsparker)?** Easy to operate, good GUI, Efficient security scanner **What do you dislike about Invicti (formerly Netsparker)?** Unknown downtime, broken features. too long time to fix the issues **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Performing web application scans and making sure no vulnerabilities are found. ### 36. Amazing Product, Robust quality Scanner, With Fantastic Support Team!! **Rating:** 5.0/5.0 stars **Reviewed by:** rahul r. | Senior Information Security Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** July 31, 2020 **What do you like best about Invicti (formerly Netsparker)?** Firstly, The Desktop Edition is very lightweight and can be installed with simple clicks The Policy templates which are very open and easy to understand and flexible to configure. Secondly, One can recheck the individual part only, without rescanning the whole application. Thirdly, The proof-based evidence which is accurate, and quiet enough to understand the issue and its remediation. Finally, Bug-Fixes, and New Vulnerability are quite up to date in every patch. Last but not the least, its support team, are very prompt in response, has in-depth knowledge of Product and any web application. Any new user can rely on Netsparker support team to deal with any issue. Cheerrs to Team Netsparker and its users!! **What do you dislike about Invicti (formerly Netsparker)?** I am working on Netsparker since last 4 years. I am all satisfied with this lightweight robust scanner. Cheerrs to Team Netsparker and its users!! **Recommendations to others considering Invicti (formerly Netsparker):** Handling and Using Netsparker doesn't need any specialization, even a new security guy can configure and find vulnerabilities from Netsparker. I have a strong recommendation to others for Netsparker. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Our corporate web applications are large and dynamic in nature. It took a very long time for scanning. Netsparker support has helped from top to root to customize the policy and it worked very fine as expected. ### 37. Great DAST solution **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** May 20, 2021 **What do you like best about Invicti (formerly Netsparker)?** The customization abilities for scanning and reports. **What do you dislike about Invicti (formerly Netsparker)?** I wish it were slightly easier to navigate around the UI. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** We were looking for a DAST scanner that would work well with SPAs. ### 38. Project Manager using Netsparker for pen test team **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Small-Business (50 or fewer emp.) **Reviewed Date:** May 20, 2021 **What do you like best about Invicti (formerly Netsparker)?** Customeer services is very quick and good follow up **What do you dislike about Invicti (formerly Netsparker)?** need to wait for email reply and no one to talk **Recommendations to others considering Invicti (formerly Netsparker):** good tool **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Finidngs of testing is accurate and has valuable details ### 39. Great automated testing solution **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Mid-Market (51-1000 emp.) **Reviewed Date:** January 31, 2021 **What do you like best about Invicti (formerly Netsparker)?** Automated scanning functions cover a broad attack surface **What do you dislike about Invicti (formerly Netsparker)?** The single page app support is very limited **Recommendations to others considering Invicti (formerly Netsparker):** Doesn’t support single page apps super well but does a good overall job of scanning **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Meeting our soc2 policy to provide automated scanning ### 40. Netsparker is an programmed and configurable web scanner that recognizes security errors. **Rating:** 5.0/5.0 stars **Reviewed by:** Hazel A. | Strategic Account & Business Development Manager, Small-Business (50 or fewer emp.) **Reviewed Date:** June 11, 2020 **What do you like best about Invicti (formerly Netsparker)?** Netsparker is a tool that enables to scan websites, web applications and services. It eliminates the ambiguity of false positives. It automatically assigns vulnerabilities to developers. With its progressive scanning engine, it protects all your website technologies and optimizes penetration testing. Above all, it also provides flexibility and scalability. This platform is proficient for IOC verification. To have an indication of current security it enables the use of dashboards much easier. It also provides you with ample SDLC integration and wide-ranging customer support and services. It enables live online training or webinars. The expert users can therefore tailor the level of scanning. Report templates are also miscellaneous and up-to date. And it provides precious insight to ascertain bug persons and get rid of them quickly. **What do you dislike about Invicti (formerly Netsparker)?** Netsparker on one hand offers all the useful features and on the other hand provides you with not so profitable functionalities. It consumes a lot of resources for performing functions. For the pioneers, the docs are a bit outdated. Above all, Netsparker takes a lot of time to configure. By the assist of its limited abilities, the endpoints are not troubleshooted which is not great for many users. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Netsparker lets you acknowledge the full benefits of integration and automation. It is highly recommended because Netsparker spotlights on helping large enterprises. It has made a special place among strong nominees through its ease of use and setup and stands out through milestone scanning features. ### 41. Netsparker is a program for securing web services online. **Rating:** 5.0/5.0 stars **Reviewed by:** Wilder T. | Market Activation Specialist, Mid-Market (51-1000 emp.) **Reviewed Date:** May 12, 2020 **What do you like best about Invicti (formerly Netsparker)?** We have launched netsparker in our system ages ago due to the suggestion of our colleague. It has done wonders in our dry life. It gives end to end encryption to every secret data and secures it right away. It consists of many unique tools like discovering assets which helps in discovering data online with technology. The accurate dead scans are automatically done as well for the satisfaction purposes. The false negatives or positives are easily sorted out using the proof scan technology in netsparker. **What do you dislike about Invicti (formerly Netsparker)?** We noticed that it misses some of the features in regards to providing the full coverage security. It consists of not having the ability of automated machine learning. The assessment of consumers behaviour cannot be tracked with its features. The endpoints are not troubleshooted by the aid of its limited abilities which is not great for us. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** The general attributes are great and easy for many companies to get it into their systems. It has quick insight to discover new bugs and get rid of them effectively. The IOC is quickly verified for cybercrime purposes and makes us able to run our softwares neatly. The weak points in the whole system are easily managed and cut through the vulnerability management feature of netsparker. The assets are traced as well by the use of its technologies that scans labels and other codes. The risky items are prioritized with full support. ### 42. Fantastic product backed by great support **Rating:** 5.0/5.0 stars **Reviewed by:** Ramesh R. | Application Security Manager, Enterprise (> 1000 emp.) **Reviewed Date:** July 29, 2020 **What do you like best about Invicti (formerly Netsparker)?** Really easy to use of all the DAST solutions; very easy to integrate with product teams **What do you dislike about Invicti (formerly Netsparker)?** Any eLearning courses for developers to learn about application vulnerabilities **Recommendations to others considering Invicti (formerly Netsparker):** Really great tool for security and pentest professionals **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** No problems per say; Really easy to integrate with product teams and aggregate results to our internal vulnerability aggregator ### 43. One-stop-shop for Web based Vulnerability Assessment **Rating:** 4.5/5.0 stars **Reviewed by:** Aanu B. | Assistant Consultant, Small-Business (50 or fewer emp.) **Reviewed Date:** June 27, 2019 **What do you like best about Invicti (formerly Netsparker)?** - The Attack Radar generated during each scan is a perfect tool for quick analysis in - The executive report generated at the end of each scan makes reporting easier as it provides all necessary information about the scan - It tests for a wide variety of vulnerabilities, from business logic tests (weak passwords) to more intricate vulnerabilities like insecure cookies or cross-site scripting - Classification of threat based on different standards (PCI, OWASP, CWE, CAPEC, WASC) is available and helps give insight to the detected vullnerability - Each vulnerability is analysed and remediation steps are shown alongside **What do you dislike about Invicti (formerly Netsparker)?** - It becomes quite slow when running extended scans even though they are always in-depth - It is quite heavy to run and can take up a lot of processing power **Recommendations to others considering Invicti (formerly Netsparker):** Explore all functions when using this app as there are a lot of hidden features like scheduled scans and specific scans. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** I used Netsparker as an associate cyber-security consultant and it was a very useful tool during penetration testing. ### 44. Netsparker **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** July 31, 2019 **What do you like best about Invicti (formerly Netsparker)?** This software is very easy to use, but at the same time has a lot of options that allow an expert user to customize the level of scanning. It is very easy to scan any report. It has extreme amount of customization for scanning any web application. **What do you dislike about Invicti (formerly Netsparker)?** sometime credential scanning and captcha configuration is little bit difficult. in this software there is almost no documentation about how to use the product. Docs were a bit outdated or not easy to follow when we initially started using the product. **Recommendations to others considering Invicti (formerly Netsparker):** Excellennt app, i recommended it. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** It is very easy to use, easy to configure, and you can be up and running your first scan in a matter of minutes. now this time I am not using this software because sometime it run slow when testing for some vulnerabilities in larger URLs. ### 45. Continuous webapp vulnerability scanning **Rating:** 4.5/5.0 stars **Reviewed by:** Patrick H. | DevOps Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** March 07, 2019 **What do you like best about Invicti (formerly Netsparker)?** The ability to have continuous vulnerability scanning bundled into a single reliable web app and track the progress of various vulnerabilities over time. NetSparker analysis and reporting are on point. It's quite nice having the ability to generate different types of reports, integrate with issue trackers (GitHub) and receive alert (via email and Slack). **What do you dislike about Invicti (formerly Netsparker)?** Initially support documentation was lacking but once pointed in the right direction things seemed to work out. The documentation is getting a lot better which should help other customers. FWIW support is quick and excellent. The extended scans can take some time but are thorough. **Recommendations to others considering Invicti (formerly Netsparker):** Price point is excellent. Latest webapp version allows both desktop client as well as cloud client. OWASP ZAP on steroids bundled into an excellent SaaS tool. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Continuous vulnerability scanning of our web apps to ensure we're not missing potential security issues. ### 46. Love the tool. Helps us to stay compliant in our security needs and testing **Rating:** 5.0/5.0 stars **Reviewed by:** Paul J. | Software applications and integrations Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** May 28, 2019 **What do you like best about Invicti (formerly Netsparker)?** The best thing about Netsparker is that I can include it as part of our Team City build. This enables us to get notified immediately if someone checks in something that is not compliant in a security point of view. We can also retrieve reports for any build through our Team City build tool. **What do you dislike about Invicti (formerly Netsparker)?** I must confess it was a little challenging to get the initial setup going. This was probably due to our being new with Netsparker. **Recommendations to others considering Invicti (formerly Netsparker):** We tried many other solutions, including the free OWASP ones. This was the easiest to implement and the most comprehensive. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** The biggest problem we are solving is ensuring we are compliant with our University data and web security policies. ### 47. Maybe the best vulnerability scanner in 2019 **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** June 20, 2019 **What do you like best about Invicti (formerly Netsparker)?** New gui and a lot of options to fine tune scanner profile. You can make your custom scanner profile and custom report profile. **What do you dislike about Invicti (formerly Netsparker)?** After version 5, scanner is more buggier. In version 4 and older, Netsparker have been pretty solid from my point of view. Second biggest problem is crawler. Acunetix and Burp Suite have much more better crawling algorithm. **Recommendations to others considering Invicti (formerly Netsparker):** check acunetix and app spider from rapid7 before you make a final purchase **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Netsparker is for me some kind of self check while doing pentests. ### 48. My eyes were opened by Netsparker. **Rating:** 4.5/5.0 stars **Reviewed by:** Leonard G. | CTO, Small-Business (50 or fewer emp.) **Reviewed Date:** January 11, 2019 **What do you like best about Invicti (formerly Netsparker)?** 1. Ease of use. 2. Scanning speed. 3. Reporting. 4. Potential integration with our dev ops pipeline. 5. The inclusion of reference links to assist with mitigation of found issues. **What do you dislike about Invicti (formerly Netsparker)?** The team has not found anything that they did not like about the product. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Our marketplace requires our software to be subjected to penetration and vulnerability testing. After evaluating several products in the marketplace Netsparker was chosen by our team. The initial setup and first test was completed in just a few minutes and that was extremely important to us. ### 49. Netsparker provides a fast, thorough web vulnerability scan **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Telecommunications | Enterprise (> 1000 emp.) **Reviewed Date:** May 28, 2019 **What do you like best about Invicti (formerly Netsparker)?** Fast, confirmed vulnerabilities and frequent updates **What do you dislike about Invicti (formerly Netsparker)?** Support can be slow -- since it is not in US **Recommendations to others considering Invicti (formerly Netsparker):** It is the best product for the cost. Faster than Rapid7, more thorough than Acunetix **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Red Team assessments with less manual testing. ### 50. Nothing but good things **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Higher Education | Mid-Market (51-1000 emp.) **Reviewed Date:** May 28, 2019 **What do you like best about Invicti (formerly Netsparker)?** Netsparker's support team is top notch. They always respond quickly and know how to solve my problem. **What do you dislike about Invicti (formerly Netsparker)?** Honestly, nothing. There hasn't been a problem that couldn't be explain or resolved by Netsparker's support team. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Netsparker helps us quickly and easily scan all web apps, before they are moved to Production. The intuitiveness of the tool means we are spending less time messing with the tool, and more time scanning apps for vulnerabilities, ## Invicti (formerly Netsparker) Discussions - [What are URL rewrites and URL rewrite rules?](https://www.g2.com/discussions/netsparker-web-application-security-scanner-96cf6c3d-02fc-4405-a800-e28a0f893517) - 1 comment, 1 upvote - [What is the Knowledge base node and what is reported in it?](https://www.g2.com/discussions/netsparker-web-application-security-scanner) - 1 comment, 1 upvote - [How Does Netsparker Integrate with Your Existing SDLC?](https://www.g2.com/discussions/netsparker-scanners-faqs-e4a57e60-032c-4486-a798-94cc2b423ed8) - 1 comment, 1 upvote - [What are the Plans & Editions of Netsparker?](https://www.g2.com/discussions/netsparker-scanners-faqs-7c0a080f-a51b-479a-9fd4-47828171f241) - 1 comment, 1 upvote - [What are the different vulnerability severities in Netsparker?](https://www.g2.com/discussions/netsparker-scanners-faqs-66ea9a44-4a58-48dd-aef2-97c87db1a5cc) - 1 comment, 1 upvote - [View Invicti (formerly Netsparker) pricing details and edition comparison](https://www.g2.com/products/invicti-formerly-netsparker/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-15+12%3A32%3A50+-0500&secure%5Bsession_id%5D=b1fc559b-bffd-450b-86b4-b9c8e52f95ce&secure%5Btoken%5D=f17a773221524f47caeab9ba525c1a3333ea0e179d51ef80305c882ae231407b&format=llm_user) ## Invicti (formerly Netsparker) Features **Administration** - Content Delivery - Dashboard & Reporting - Alerting **Administration** - API / Integrations - Extensibility - Reporting and Analytics **Administration** - API / Integrations - Extensibility **Administration** - API / Integrations - Extensibility **Performance** - Issue Tracking - Detection Rate - False Positives - Automated Scans **Functionality - Software Composition Analysis ** - Language Support - Integration - Transparency **Risk management - Application Security Posture Management (ASPM)** - Vulnerability Management - Risk Assessment and Prioritization - Compliance Management - Policy Enforcement **Agentic AI - Static Code Analysis** - Adaptive Learning - Natural Language Interaction - Proactive Assistance **Cloud Visibility** - Data Discovery **Risk Analysis** - Vulnerability Assessment - Security Auditing **Analysis** - Issue Tracking - Reconnaissance - Vulnerability Scan **Analysis** - Reporting and Analytics - Issue Tracking - Static Code Analysis - Code Analysis **Analysis** - Reporting and Analytics - Issue Tracking - Vulnerability Scan - Code Analysis **Network** - Compliance Testing - Perimeter Scanning - Configuration Monitoring **Effectiveness - Software Composition Analysis** - Remediation Suggestions - Continuous Monitoring - Thorough Detection **Security Testing** - API Testing **Integration and efficiency - Application Security Posture Management (ASPM)** - Integration with Development Tools - Automation and Efficiency **Threat Protection** - Firewall - Malware Detection **Testing** - Command-Line Tools - Manual Testing - Test Automation - Performance and Reliability **Testing** - Command-Line Tools - Manual Testing - Test Automation - Compliance Testing - Black-Box Scanning - Detection Rate - False Positives **Testing** - Manual Testing - Test Automation - Compliance Testing - Black-Box Scanning - Detection Rate - False Positives **Application** - Manual Application Testing - Static Code Analysis - Black Box Testing **Security Management** - Security and Policy Enforcement **Reporting and Analytics - Application Security Posture Management (ASPM)** - Trend Analysis - Risk Scoring - Customizable Dashboards **Agentic AI - Interactive Application Security Testing (IAST)** - Autonomous Task Execution **Identity** - SSO - Governance - User Analytics **Agentic AI - Vulnerability Scanner** - Autonomous Task Execution - Proactive Assistance **Agentic AI - Static Application Security Testing (SAST)** - Autonomous Task Execution **Agentic AI - Application Security Posture Management (ASPM)** - Autonomous Task Execution - Multi-step Planning ## Top Invicti (formerly Netsparker) Alternatives - [Intruder](https://www.g2.com/products/intruder/reviews) - 4.8/5.0 (206 reviews) - [Veracode Application Security Platform](https://www.g2.com/products/veracode-application-security-platform/reviews) - 3.8/5.0 (24 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) - 4.5/5.0 (287 reviews)