Name: Invicti
Rating: 4.4 (191 reviews)

Overview

Product Information on Invicti

Updated 13th October 2025

What is Invicti?

Invicti is a software designed to identify and manage security vulnerabilities in web applications. It performs automated scanning to detect potential security risks such as SQL injection, cross-site scripting, and other vulnerabilities. The software offers features including automatic scanning of web assets, vulnerability verification, and integration with issue tracking and development workflows. Invicti assists organizations in maintaining secure code by enabling continuous security assessments and streamlining remediation processes. The software addresses the business need for proactive identification and resolution of web security issues, helping organizations reduce the risk of security breaches and supporting compliance with industry standards and policies.

Overall experience with Invicti

Chief Executive Officer

<50M USD, IT Services

FAVORABLE

“Accurate DAST Scanning combined with flexible and supportive vendor”

4.0

Apr 16, 2026

We are satisfied with our journey with Invicti. We have used the DAST tool (former Acunetix) which provides high-quality results with great accuracy, which is crucial for our security workflows. What truly sets them apart, however, is their team. From the initial contract negotiations to the actual implementation, the vendor has been flexible, responsive, and genuinely helpful.

IT SECURITY ASSESSMENT SPECIALIST

250M - 500M USD, Banking

CRITICAL

“Mixed User Sentiments on Cloud+'s GUI and Integration Capabilities”

3.0

Aug 30, 2024

The application has a good potential, however, the application agents were full of bugs. At least Cloud+ internal agents looked like they were in a very immature state

About Company

Company Description

Formed through the combination of Netsparker, Acunetix, and Kondukto, Invicti Security provides an application security platform that unifies DAST, SAST, IAST, SCA, API security, secrets scanning, container security, and application security posture management (ASPM) to help enterprise organizations identify, prioritize, and remediate vulnerabilities across their application portfolio. The platform's proof-based scanning validates runtime vulnerabilities while ASPM capabilities correlate findings across security tools to eliminate false positives. AI-powered remediation provides contextual fix recommendations within developer workflows. Key capabilities include automated vulnerability discovery, intelligent risk prioritization, unified dashboard management, and CI/CD pipeline integration.

Company Details

Company type

Private

Year Founded

2005

Head office location

Austin, United States

Number of employees

201 - 500

Annual Revenue

50M-250M USD

Website

https://www.invicti.com/

Do You Manage Peer Insights at Invicti?

Access Vendor Portal to update and manage your profile.

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

User Sentiment About Invicti

Reviewer Insights for: Invicti

Deciding Factors: Invicti Vs. Market Average

Performance of Invicti Across Market Features

Invicti Likes & Dislikes

The accuracy of the vulnerability detection is the standout feature. It significantly reduces the noise often associated with DAST tools. Additionally, the professionalism and the speed of their implementation team ensured we were up and running much faster than expected. Their willingness to be flexible during the commercial phase was also a big plus.

Nice and simple GUI's Interesting integrations with WAF's and ticketing system Apparently it grabs some nice findings

Excellent connections to other tools like Servicenow and Splunk. Very good option toolset when adding new targets for scans. Results are also accurate.

While the automated scanning is powerful, it can be somewhat unintelligent in certain cases. In these specific scenarios, it reuires a fair amount of manual configuration and hand-holding to get the desired results. We would like to see more intuitive automation for these complex edge cases in the future.

The internal agents were not mature enough to be sold as a product Cloud solution is not currently allowing logins with MFA Poor support - only was able to get good support after threats to renounce the contract.

Interface is a bit wonky and looks dated compared to certain competitors. I know this is a pet peeve but there is now dark mode. Sometimes it takes a while to find the exact functionality that you want

Top Invicti Alternatives

4.6

(408 Ratings)

4.6

(400 Ratings)

4.8

(270 Ratings)

View All Alternatives

Peer Discussions

Invicti Reviews and Ratings

Recommended Gartner Insights

<50M USD

IT Services

Review Source

Accurate DAST Scanning combined with flexible and supportive vendor

Director, IT Security and Risk Management

10B+ USD

Services (non-Government)

Extensive Features And Reliable Integrations Offset Aging Interface Concerns

The product was easy to implement and has been smooth sailing after more than 3 years of being a customer. While not always the most user friendly interface a lot of options are included out of the box and the results are comparatively better then most of the competition

IT Security & Risk Management Associate

50M-1B USD

Software

Invicti Offers Detailed Reports

Invicti consistently provides reliable and comprehensive vulnerability reports, with seamless automated scheduled scanning capabilities that minimise manual effort.

Engineering Manager

Retail

Scanning Engine Detects Website Vulnerabilities With Fast Speed And Accurate Results

It is a good product to find our websites vulnerabilities. It helps identify vulnerabilities such as SQL Injection, XSS and misconfigurations. It is widely used by us because of its fast scanning engine and accurate results with low false positives. The user interface is intuitive, which makes it easier for both security professionals and developers to anaylze findings.

Manager, IT Security and Risk Management

Gov't/PS/Ed

Government

Initial Setup Complexity Noted but Validation Features Inspire Confidence Among Users

Apr 15, 2026

Invicti is an effective solution for external vulnerability scanning, offering detection with remediation and minimal false positives. Its proof-based scanning provides further validation and confidence. While the initial setup requires some learning curve, the overall experience has been positive.