Acunetix by Invicti
Dynamic application security testing (DAST) software
Penetration testing tools
Vulnerability scanner software
Website security software
DevSecOps software
Web security software
- Features
- Ease of use
- Ease of management
- Quality of support
- Affordability
- Market presence
Take the quiz to check if Acunetix by Invicti and its alternatives fit your requirements.
Contact the product provider
Free Trial
Free version unavailable
Small
Medium
Large
- Retail and wholesale
- Accommodation and food services
- Education and training
What is Acunetix by Invicti
Acunetix by Invicti is a dynamic application security testing (DAST) and web vulnerability scanning product used to identify security issues in web applications and APIs. It targets security teams, DevSecOps practitioners, and development teams that need automated scanning as part of continuous delivery and periodic security assessments. The product focuses on authenticated scanning, crawling of modern web apps, and workflow features such as scheduling, reporting, and integrations for issue tracking and CI/CD pipelines.
Broad web vulnerability coverage
Acunetix scans for common web application vulnerabilities such as SQL injection, cross-site scripting, misconfigurations, and exposed components. It supports scanning of complex, stateful applications through crawling and authentication handling. This makes it suitable for organizations that need repeatable, automated coverage across many web properties.
Automation and CI/CD integration
The product supports scheduled scans and repeatable scan configurations to fit continuous security workflows. It provides integration options commonly used in DevSecOps environments (for example, issue trackers and CI/CD tooling) to route findings into engineering backlogs. This helps teams operationalize DAST results rather than treating scans as one-off assessments.
Enterprise reporting and governance
Acunetix includes reporting, severity classification, and remediation guidance intended for both technical and non-technical stakeholders. It supports managing multiple targets and scan profiles, which is useful for centralized security teams. These features align with governance needs such as audit evidence and vulnerability management processes.
DAST-only visibility limits
As a DAST tool, Acunetix primarily observes application behavior from the outside and may miss issues that require source-code context or deeper runtime instrumentation. It can also struggle to fully validate certain findings without additional manual verification. Teams often pair DAST with other security testing approaches to improve coverage and confidence.
Authenticated scanning setup effort
Getting reliable results on modern applications often requires configuring authentication, session handling, and crawl rules. These configurations can be time-consuming to maintain as applications change. If authentication or crawling is incomplete, scan coverage and finding quality can degrade.
Pen-test workflow not full substitute
While it supports vulnerability discovery and some verification, it does not replace human-led penetration testing for business-logic flaws and chained exploits. Organizations with high assurance requirements may still need external or internal testers for deeper assessments. This can increase total program cost and coordination effort.
Plan & Pricing
| Plan | Price | Key features & notes |
|---|---|---|
| Essentials | Get a Custom Quote (no public price listed) | DAST; Web Application Scanning; Standard API Scanning; LLM Scanning; Predictive Risk Scoring; Runtime SCA; Standard RBAC; Standard Support; Standard Dashboards & Reports; Cloud Hosting deployment; Internal App Scanning (Agents). Recommended add-ons: Premium Support, Professional Service Hours, API Security. |
| Professional | Get a Custom Quote (no public price listed) | DAST + AI-Powered DAST; Web Application Scanning; Standard API Scanning; LLM Scanning; Predictive Risk Scoring; Runtime SCA; Advanced Automations; Integrations (Ticketing, CI/CD); AST Connectors; Internal App Scanning; Single Sign-On; Dynamic URL Scanning (some items noted as “Coming Soon”). Recommended add-ons: Premium Support, U.S.-Based Support, Professional Service Hours, Mend SAST/SCA. |
| Ultimate | Get a Custom Quote (no public price listed) | Comprehensive AppSec: DAST + AI, API Security, LLM Scanning, Predictive Risk Scoring, Runtime SCA, Customizable RBAC, Premium Support + Guided Success, Advanced Automations, Risk Posture Management Dashboards, Advanced Reports, various deployment options (Cloud, Bring Your Own Cloud, On-Premises, Air Gapped), Integrations, PAM & SEM, IAST, Audit Logs. Recommended add-ons: Advanced Guided Success, U.S.-Based Support, Professional Service Hours. |
Note: The official Acunetix pricing page requires requesting a custom quote and does not publish fixed public prices on the vendor site.
Seller details
Invicti Security
Austin, TX, USA
2018
Private
https://www.invicti.com/
https://x.com/InvictiSecurity
https://www.linkedin.com/company/invicti-security/
