# Invicti (formerly Netsparker) Reviews **Vendor:** Invicti Security **Category:** [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast) **Average Rating:** 4.6/5.0 **Total Reviews:** 68 ## About Invicti (formerly Netsparker) Invicti is an automated application and API security testing solution that allows enterprise organizations to secure thousands of websites, web apps, and APIs and dramatically reduce the risk of attack. By empowering security teams with the most unique DAST + IAST scanning capabilities on the market, Invicti allows organizations with complicated environments to confidently automate their web application and API security. With Invicti, security teams can: - Automate security tasks and save hundreds of hours each month - Gain complete visibility into all your applications — even those that are lost, forgotten, or hidden - Automatically give developers rapid feedback that trains them to write more secure code — so they create fewer vulnerabilities over time - Feel confident that you are equipped with the most powerful application security scanning tool on the market You have the most demanding security needs, and Invicti is the best-in-class application security solution you deserve. ## Invicti (formerly Netsparker) Pros & Cons **What users like:** - Users praise the **ease of use** of Invicti, highlighting quick setups and accurate, efficient vulnerability scans. (9 reviews) - Users appreciate the **quick and efficient scanning technology** of Invicti, facilitating hassle-free monthly website tests. (7 reviews) - Users value the **simplicity and robust reporting features** of Invicti, enhancing DAST and API security management. (6 reviews) - Users value the **well-formatted and easy-to-read reports** from Invicti, enhancing efficiency for certification processes. (6 reviews) - Users value the **accuracy and ease of use** in Invicti's vulnerability detection, ensuring reliable results without false alarms. (6 reviews) - Users value the **effective vulnerability identification** of Invicti, highlighting its accuracy and minimal false positives. (6 reviews) - Users appreciate the **accuracy of results** from Invicti, consistently identifying real vulnerabilities without excessive false positives. (5 reviews) - Users appreciate the **excellent customer support** from Invicti, enhancing their overall experience and relationship with the product. (5 reviews) - Users value the **automated scanning** feature of Invicti, enabling quick and accurate web application vulnerability assessments. (4 reviews) - Easy Integrations (4 reviews) **What users dislike:** - Users feel that the **customer support is lacking** , citing slow response times and inadequate solutions during technical issues. (3 reviews) - Users find the **slow performance** during scans and setup frustrating, impacting the overall efficiency of Invicti. (3 reviews) - Users find the **slow scanning** process frustrating, which affects the overall efficiency of using Invicti. (3 reviews) - Users report **API issues** that hinder functionality, making it difficult to use Invicti for API scanning effectively. (2 reviews) - The **complex setup** can be overwhelming initially, making it difficult to streamline scans and manage configurations effectively. (2 reviews) - Users experience **inefficient scanning** that can be slow, with setup challenges and limitations in API scanning functionality. (2 reviews) - Scanning Issues (2 reviews) - Setup Complexity (2 reviews) - Technical Issues (2 reviews) - Complexity (1 reviews) ## Invicti (formerly Netsparker) Reviews ### 1. Meets all our needs **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Consumer Goods | Mid-Market (51-1000 emp.) **Reviewed Date:** February 21, 2019 **What do you like best about Invicti (formerly Netsparker)?** The tool provides accurate scan results and allows us to easily setup scans **What do you dislike about Invicti (formerly Netsparker)?** I wish they brought back the option to purchase a pack of scans as we often have POC or short use sites pop up where we are not going to schedule routine scans. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Ensure custom developed web applications are secure ### 2. Dynamic application security testing... or how I learned to stop worrying and love Netsparker **Rating:** 4.5/5.0 stars **Reviewed by:** Michael T. | Information Security Analyst, Telecommunications, Mid-Market (51-1000 emp.) **Reviewed Date:** March 29, 2018 **What do you like best about Invicti (formerly Netsparker)?** Fantastic product, constantly evolving to keep up with changes in the web application security landscape. Designed specifically with zero false-positive reporting in mind, so you can focus on the things that really need attention. A superb company to work with, who treat large and small scale users with the same level of high quality service. From a user experience point of view, the product is extremely mature and everything you need to know is neatly in its own panel. The reporting the product produces is excellent, as it covers all the key considerations: * Problem * Context * Severity * Solution Not bad for a scanning engine! **What do you dislike about Invicti (formerly Netsparker)?** Very little, if anything to dislike at all. I have been using their product since 2013 and have had no issues with it that haven't been resolved in a timely manner. **Recommendations to others considering Invicti (formerly Netsparker):** Definitely approach them for a trial. They are more than willing to provide you with one and also support your use of it during the trial. An example of how responsive they are to issues: Friday, September 15th 2017. 11:41 - Issue discovered and reported 15:21 - Hotfix delivered **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** We have 150+ public facing web applications that we care about from a security perspective, as well as several hundred internal ones that also require our attention. Netsparker's ease of use and powerful processing allows us to automate much of that work, with scan reports being sent directly to the teams responsible for the development of the software. It saves a *lot* of time and helps make security a quality attribute of our software development lifecycle. ### 3. Easily control your own Web Security scans to identify vulnerabilities. **Rating:** 5.0/5.0 stars **Reviewed by:** Jeremy P. | Senior Programmer Analyst, Information Technology and Services, Enterprise (> 1000 emp.) **Reviewed Date:** May 17, 2018 **What do you like best about Invicti (formerly Netsparker)?** SaaS model allows quick ramp up to get your scans going with little effort and nothing to install on site. Easily set up scans and set notifications. Great dashboard of current status of all sites scanned. Thorough explanations of all findings, with guidance for corrective actions. **What do you dislike about Invicti (formerly Netsparker)?** No native Slack plugin. Site logins and advanced debugging for long runtimes is less intuitive than the rest of the tool. **Recommendations to others considering Invicti (formerly Netsparker):** Easy packaged add on to your development cycle. Use this to identify issues early in the cycle rather than at the end of the waterfall in Production. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Assessing web vulnerabilities for NCI Cancer related websites. Gained confidence in the security of my sites with daily scans as part of my CI/CD pipeline. ### 4. Netsparker for small Software Development organizations **Rating:** 4.0/5.0 stars **Reviewed by:** Troy B. | Managing Consultant, Information Technology and Services, Mid-Market (51-1000 emp.) **Reviewed Date:** May 22, 2018 **What do you like best about Invicti (formerly Netsparker)?** Ease of use, as a small company having a qualified security expert is cost prohibited, with Netsparker has an intuitive interface that is easy to learn. Netsparker is well adopted, my research reveled that it is used by many organizations. Netsparker is very customizable and allows us to get as much or as little information as we need. **What do you dislike about Invicti (formerly Netsparker)?** The documentation is geared towards security experts, more non security expert language would be beneficial . The larger the number of items we have the longer it takes to scan, a quicker scan would be more time efficient. For the most part it is easy to configure but some of the more sophisticated items are difficult to understand and implement. **Recommendations to others considering Invicti (formerly Netsparker):** Create documentation for users that are less knowledgeable of the security lingo. Create an additional document that would help developers avoid some of the items that the product discovers. Providing this information would allow us to reduce the issues before the scan happens. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Our customers require us to provide "proof" that we have scan for and addressed any issues in our software, Netsparker gives us this ability. With this tool our developers have learned about security risks that they need to keep in mind as they code the system. ### 5. Scanning lots of unusual applications **Rating:** 4.0/5.0 stars **Reviewed by:** John C. | Head of IT Security, Enterprise (> 1000 emp.) **Reviewed Date:** May 14, 2018 **What do you like best about Invicti (formerly Netsparker)?** I like the ability to manually enter additional sites into a scan. Some of the sites that i am scanning do not link from the main page so will not work using standard spider methods. Netsparker allows me to enter sites as a csv. **What do you dislike about Invicti (formerly Netsparker)?** The fact that additional sites are limited to an amount. I have needed to split scans off into multiple because of this, although this may be as a protect of resources. **Recommendations to others considering Invicti (formerly Netsparker):** Give it a go using the free trial. It was really helpful **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** As developers are releasing what the business would conciser significant changes to code much fast the previously standard annual pen-testing was no longer effective. ### 6. Survey for netsparker **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Renewables & Environment | Small-Business (50 or fewer emp.) **Reviewed Date:** January 08, 2019 **What do you like best about Invicti (formerly Netsparker)?** The scans are a very easy run and the suggestions help a lot to reach out to the developers and getting them fixed **What do you dislike about Invicti (formerly Netsparker)?** Some of the suggestions that it gives is mostly from the cyber perspective and would not be very feasible from a developer point of view **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Helps is having safer websites that can be shared with external sources. ### 7. Valuable solution for Web Application Scanning **Rating:** 5.0/5.0 stars **Reviewed by:** Chris E. | Security and Compliance Manager, Information Technology and Services, Mid-Market (51-1000 emp.) **Reviewed Date:** April 23, 2018 **What do you like best about Invicti (formerly Netsparker)?** The product is highly reliable, easy to use and the support is stellar! I have been using Netsparker for over 4 years and this solution has helped secure our web applications in ways I have not seen before. When I run into a question, concern or issue, the Netsparker support team are the best at providing top notch support buy meeting my time constraints, detailing any issue and ensuring I understand the product and outcomes before closing the ticket. I have used the desktop version of the product and have recently transitioned to the cloud-based solution... which I love! **What do you dislike about Invicti (formerly Netsparker)?** There is absolutely nothing I dislike... I wish I had the creative mind to develop this product! Brilliant! The only part I do not like about this product is I do not think it scales well with cost, but that is something the Netsparker team has been working with me on. **Recommendations to others considering Invicti (formerly Netsparker):** I would recommend this to anyone needing to assess web applications. There is nothing that compares to this product in this space. The product is easy for a beginner and advanced enough for an expert to craft some intelligent scans. I am looking forward to integrating this solution into other areas of my security infrastructure. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** The problems solved were those that I simply did not have the time to find. Being a small security department, Netsparker has helped me easily find issues, report on them in a manner the developers can understand and see and doing this all in a semi-automated process. ### 8. Netsparker Review **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Environmental Services | Enterprise (> 1000 emp.) **Reviewed Date:** February 28, 2019 **What do you like best about Invicti (formerly Netsparker)?** This product help us identify vulnerable applications for our organization. **What do you dislike about Invicti (formerly Netsparker)?** Takes a long time to run but it goes thru 3 step scan process. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** This product helps discover security risks before bad guys do. ### 9. Amazing web app scanner, just a couple suggestions for Cloud **Rating:** 4.5/5.0 stars **Reviewed by:** Darren S. | Enterprise (> 1000 emp.) **Reviewed Date:** April 11, 2018 **What do you like best about Invicti (formerly Netsparker)?** Very few false positives compared to other vulnerability scanners. Very easy to schedule reports, unlike on the desktop version. Dashboards are very informative and make it easy to see severe vulnerabilities and track progress of a web app's security over time. **What do you dislike about Invicti (formerly Netsparker)?** Cloud is missing interactive auth and custom script tool that the desktop version had. **Recommendations to others considering Invicti (formerly Netsparker):** Netsparker Cloud specifically is incredibly easy to use, is a very good web app scanner mostly free from false positives, and has great support. It's easy to schedule scans unlike the desktop version, and the dashboards are very informative. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Catching the low-hanging fruit such as XSS as early as possible, and eventually we will catch them before deployed to production. ### 10. Great security testing software **Rating:** 5.0/5.0 stars **Reviewed by:** Chris A. | Enterprise (> 1000 emp.) **Reviewed Date:** April 19, 2018 **What do you like best about Invicti (formerly Netsparker)?** I appreciate the user friendliness of the software and the ability to provide different levels of vulnerability reports. Detailed reports can be presented to software architects and developers on the team and summary reports can be presented to management. **What do you dislike about Invicti (formerly Netsparker)?** There is nothing to dislike about this software. This can be used by IT positions that have no experience in software programming. **Recommendations to others considering Invicti (formerly Netsparker):** Best if used against web -based software and testing APIs, web services, etc. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Netsparker is assuring that our company provides our customers with secure web-based software. ### 11. Easy to use and understand, well supported **Rating:** 4.0/5.0 stars **Reviewed by:** David W. | Small-Business (50 or fewer emp.) **Reviewed Date:** April 19, 2018 **What do you like best about Invicti (formerly Netsparker)?** Excellent OWASP top 10 coverage with responsive, informed support team if there are questions. Works well with modern SPA dynamic web applications which most competitors do not. **What do you dislike about Invicti (formerly Netsparker)?** Dashboard is a bit overdone, would prefer an operations cockpit instead **Recommendations to others considering Invicti (formerly Netsparker):** Qualys is dated, hard to understand, and does not deal with dynamic pages well despite their claims. Support is horrible. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Scan multiple sites for OWASP top 10 on a regular basis. Provide reports to enterprise infosec groups ### 12. I recommend Netsparker **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Marketing and Advertising | Enterprise (> 1000 emp.) **Reviewed Date:** May 23, 2018 **What do you like best about Invicti (formerly Netsparker)?** I like that it doesn't return as many false positives. It also keeps history and can chart progress. **What do you dislike about Invicti (formerly Netsparker)?** Nothing **Recommendations to others considering Invicti (formerly Netsparker):** I evaluated several products and found Netsparker the best and the least expensive. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** We need to ensure our web applications are secure for our customers. We are able to find and fix issues. We have passed several customer audits. ### 13. Great tool for quick wins! **Rating:** 5.0/5.0 stars **Reviewed by:** Harmeet S. | Enterprise (> 1000 emp.) **Reviewed Date:** May 08, 2018 **What do you like best about Invicti (formerly Netsparker)?** Netsparker is easy to setup and quick to get started. The learning curve to use netsparker is really low. **What do you dislike about Invicti (formerly Netsparker)?** I wish desktop netsparker could be better integrated with jenkins for automated CI/CD. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Netsparker desktop gives us flexibility of scanning large number of applications ### 14. Excellent Product with detailed reports **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Internet | Small-Business (50 or fewer emp.) **Reviewed Date:** May 16, 2018 **What do you like best about Invicti (formerly Netsparker)?** Ease of use and the detailed reports produced. **What do you dislike about Invicti (formerly Netsparker)?** Inability to queue scans on the desktop version. **Recommendations to others considering Invicti (formerly Netsparker):** Free trial available. A lot of options can be hidden at first to make it easier to get get started. Take soem time with the documentation to get full value. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Analysing complex web applications for web vulnerabilities before they are put in to production. ### 15. Good tool **Rating:** 3.5/5.0 stars **Reviewed by:** Pratheek P. | Enterprise (> 1000 emp.) **Reviewed Date:** April 19, 2018 **What do you like best about Invicti (formerly Netsparker)?** I like the Scan coverage of the tool and ease of use **What do you dislike about Invicti (formerly Netsparker)?** Time consuming, the scan takes forever to complete **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** DAST. Finding more vulnerabilities externally ### 16. Netsparker reduces assessment time **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Transportation/Trucking/Railroad | Enterprise (> 1000 emp.) **Reviewed Date:** April 25, 2018 **What do you like best about Invicti (formerly Netsparker)?** Netsparker gives us a quick concise security view of our internally developed websites. **What do you dislike about Invicti (formerly Netsparker)?** Would like a web interface rather than a windows application. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Reduced the time to get an assessment of the security of our internally developed websites. This has been a big win with our feedback to the development team. ### 17. Good Product Reliable Results. **Rating:** 3.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** April 04, 2018 **What do you like best about Invicti (formerly Netsparker)?** I like the false positive ratios. The false positive ratios are very low. Besides true positives are correct. **What do you dislike about Invicti (formerly Netsparker)?** The gui is not very cool. Besides cpu usage is going high. If the website have firewall. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Support team are excellent. They solve problems very quickly. ### 18. Easy to use vulnerability scanner **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Government Administration | Enterprise (> 1000 emp.) **Reviewed Date:** April 22, 2018 **What do you like best about Invicti (formerly Netsparker)?** Clear GUI which is easy to use and user friendly menus. **What do you dislike about Invicti (formerly Netsparker)?** There should better login recorder in my opinion. **What problems is Invicti (formerly Netsparker) solving and how is that benefiting you?** Vulnerability scanning on web application. Netsparker finds pretty well easy to find problems. ## Invicti (formerly Netsparker) Discussions - [What are URL rewrites and URL rewrite rules?](https://www.g2.com/discussions/netsparker-web-application-security-scanner-96cf6c3d-02fc-4405-a800-e28a0f893517) - 1 comment, 1 upvote - [What is the Knowledge base node and what is reported in it?](https://www.g2.com/discussions/netsparker-web-application-security-scanner) - 1 comment, 1 upvote - [How Does Netsparker Integrate with Your Existing SDLC?](https://www.g2.com/discussions/netsparker-scanners-faqs-e4a57e60-032c-4486-a798-94cc2b423ed8) - 1 comment, 1 upvote - [What are the Plans & Editions of Netsparker?](https://www.g2.com/discussions/netsparker-scanners-faqs-7c0a080f-a51b-479a-9fd4-47828171f241) - 1 comment, 1 upvote - [What are the different vulnerability severities in Netsparker?](https://www.g2.com/discussions/netsparker-scanners-faqs-66ea9a44-4a58-48dd-aef2-97c87db1a5cc) - 1 comment, 1 upvote - [View Invicti (formerly Netsparker) pricing details and edition comparison](https://www.g2.com/products/invicti-formerly-netsparker/reviews?page=2§ion=pricing&secure%5Bexpires_at%5D=2026-05-13+09%3A31%3A27+-0500&secure%5Bsession_id%5D=6373c96f-2553-413e-ad35-beae716322a2&secure%5Btoken%5D=7d17f70c362f07b34a00aa5d94916841a86133a039b18654074f1b2a3b4d72b5&format=llm_user) ## Invicti (formerly Netsparker) Features **Administration** - Content Delivery - Dashboard & Reporting - Alerting **Administration** - API / Integrations - Extensibility - Reporting and Analytics **Administration** - API / Integrations - Extensibility **Administration** - API / Integrations - Extensibility **Performance** - Issue Tracking - Detection Rate - False Positives - Automated Scans **Functionality - Software Composition Analysis ** - Language Support - Integration - Transparency **Risk management - Application Security Posture Management (ASPM)** - Vulnerability Management - Risk Assessment and Prioritization - Compliance Management - Policy Enforcement **Agentic AI - Static Code Analysis** - Adaptive Learning - Natural Language Interaction - Proactive Assistance **Cloud Visibility** - Data Discovery **Risk Analysis** - Vulnerability Assessment - Security Auditing **Analysis** - Issue Tracking - Reconnaissance - Vulnerability Scan **Analysis** - Reporting and Analytics - Issue Tracking - Static Code Analysis - Code Analysis **Analysis** - Reporting and Analytics - Issue Tracking - Vulnerability Scan - Code Analysis **Network** - Compliance Testing - Perimeter Scanning - Configuration Monitoring **Effectiveness - Software Composition Analysis** - Remediation Suggestions - Continuous Monitoring - Thorough Detection **Security Testing** - API Testing **Integration and efficiency - Application Security Posture Management (ASPM)** - Integration with Development Tools - Automation and Efficiency **Threat Protection** - Firewall - Malware Detection **Testing** - Command-Line Tools - Manual Testing - Test Automation - Performance and Reliability **Testing** - Command-Line Tools - Manual Testing - Test Automation - Compliance Testing - Black-Box Scanning - Detection Rate - False Positives **Testing** - Manual Testing - Test Automation - Compliance Testing - Black-Box Scanning - Detection Rate - False Positives **Application** - Manual Application Testing - Static Code Analysis - Black Box Testing **Security Management** - Security and Policy Enforcement **Reporting and Analytics - Application Security Posture Management (ASPM)** - Trend Analysis - Risk Scoring - Customizable Dashboards **Agentic AI - Interactive Application Security Testing (IAST)** - Autonomous Task Execution **Identity** - SSO - Governance - User Analytics **Agentic AI - Vulnerability Scanner** - Autonomous Task Execution - Proactive Assistance **Agentic AI - Static Application Security Testing (SAST)** - Autonomous Task Execution **Agentic AI - Application Security Posture Management (ASPM)** - Autonomous Task Execution - Multi-step Planning ## Top Invicti (formerly Netsparker) Alternatives - [Intruder](https://www.g2.com/products/intruder/reviews) - 4.8/5.0 (206 reviews) - [Veracode Application Security Platform](https://www.g2.com/products/veracode-application-security-platform/reviews) - 3.8/5.0 (24 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) - 4.5/5.0 (287 reviews)