Name: Invicti
Rating: 4.5 (199 reviews)

Overview

Product Information on Invicti

Updated 13th October 2025

What is Invicti?

Invicti is a software designed to identify and manage security vulnerabilities in web applications. It performs automated scanning to detect potential security risks such as SQL injection, cross-site scripting, and other vulnerabilities. The software offers features including automatic scanning of web assets, vulnerability verification, and integration with issue tracking and development workflows. Invicti assists organizations in maintaining secure code by enabling continuous security assessments and streamlining remediation processes. The software addresses the business need for proactive identification and resolution of web security issues, helping organizations reduce the risk of security breaches and supporting compliance with industry standards and policies.

Overall experience with Invicti

Software Developer

1B - 3B USD, Software

FAVORABLE

“SBOM scanning with Kondukto”

5.0

Apr 10, 2025

They have been very responsive in answering questions and investigating potential issues I encountered as we onboarded to Kondukto for vulnerability scanning.

SDE

50M - 250M USD, IT Services

CRITICAL

“Kondukto's experience for a pure play technology company”

3.0

Mar 9, 2023

Our experience with Kondukto is quite good. Its a good platform for orchestrating your application's security. It automates work across security scanning setup and vulnerability management, thus improves security end to end. It has some string security scanners across the pipeline around 45 which matures the security and minimizes the risk. Also automating vulnerability remediation workflows give it a edge. Thereby enhancing the customer experience.

About Company

Company Description

Formed through the combination of Netsparker, Acunetix, and Kondukto, Invicti Security provides an application security platform that unifies DAST, SAST, IAST, SCA, API security, secrets scanning, container security, and application security posture management (ASPM) to help enterprise organizations identify, prioritize, and remediate vulnerabilities across their application portfolio. The platform's proof-based scanning validates runtime vulnerabilities while ASPM capabilities correlate findings across security tools to eliminate false positives. AI-powered remediation provides contextual fix recommendations within developer workflows. Key capabilities include automated vulnerability discovery, intelligent risk prioritization, unified dashboard management, and CI/CD pipeline integration.

Company Details

Company type

Private

Year Founded

2005

Head office location

Austin, United States

Number of employees

201 - 500

Annual Revenue

50M-250M USD

Website

https://www.invicti.com/

Do You Manage Peer Insights at Invicti?

Access Vendor Portal to update and manage your profile.

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Reviewer Insights for: Invicti

Performance of Invicti Across Market Features

Invicti Likes & Dislikes

Nice UI and easy to use with API

The Best part about Kondukto is its application security posture management. It has some strong security scanners at the right stages of the pipeline that minimizes the business risk by thus to creating a mature, safe and reliable application security program

The ability to synchronize with our repositories

Some things that are missing that I would like to see: - SBOM import documented in API - SBOM augmentation with vulnerability information - ability to download augmented SBOM directly from Kondukto via API - OpenAPI spec

The only thing which we didn't liked about Kondukto is documentation for integration is not exhaustive enough. Also there on-premises installation is not efficient ,rest it's been fine

Synchronization of multiple repositories of the same type.

Top Invicti Alternatives

Peer Discussions

Invicti Reviews and Ratings

Recommended Gartner Insights

This service may contain translations provided by Google. Google disclaims all warranties related to the translations, express or implied, including any warranties of accuracy, reliability, and any implied warranties of merchantability, fitness for a particular purpose and noninfringement. Gartner's use of this provider is for operational purposes and does not constitute an endorsement of its products or services.

1B-10B USD

Software

Review Source

SBOM scanning with Kondukto

Engineer

50M-1B USD

Simple implementation of Code Vulnerability in the Pipeline

Overall, we are happy with Kondukto, It is effective and has significantly improved our vulnerability management process.

Engineering Manager

Banking

Mostly perfect

4.0

Mar 14, 2025

it is very easy to learn (user friendly) platform. integrations are quick and easy

Vulnerability Management And Application Security Manager

High-Quality Projection: A Major Selling Point

Feb 18, 2025

more useful and customized for local used products. major big picture projection is very good

Senior Information Security Engineer

<50M USD

Efficient Vulnerability Management Using Kondukto's Integration Features

Feb 6, 2025

Kondukto offered us the opportunity to manage vulnerabilities in a single enviroment thanks to its integration with security products we use