Acunetix

Vorteile

- No doubt, easy to setup
- Easy to manage vulnerabilities
- Network level scanning is cool
- Good for Blackbox testing

Nachteile

- I believe post authentication scripts need improvement as it still throws duplicates and few bugs are duplicates the accuracy rate is quite high but still need improvement in existing scripts.

- Needs more modern vulnerabilities detection it might got lots of vulnerabilities in the existing database and its good but not sufficient.

Vorteile

Ease of use, good customer support, very insightful reports (especially Developer raport), good vulnerability management. Also continous scanning option is an interesting thing for having continous security awareness of Your vulnerability level. Also login sequence recorder is an awesome tool.

Nachteile

Not a lot of scan options to configure - especially in comparison to Nessus - every check is done in default, You can't choose specifically which test is done in selected scan, only the type of scan (full, high-risk vulnerabilities, xss, sqli, weak passwords, crawl only ) or technology in which the scanned web app is written.

Vorteile

* The number of checks that take place.

* The quality of the issues found.

* After years it is finally possible to pause a scan, hallelujah.

Nachteile

* As a pentester I absolutely miss a more flexible way to configure settings like it was possible in v10. The interface is built as "point a shoot", idiot proof. Currently, If I want to configure things I need to change xml config files on the server and reload acunetix...

* After the release of v12 we were called by a sales agent as we suddently couldn't add targets anymore. The license model suddenly changed completely. The entire business model is now based on scanning an applications continuously over the year. However, as a pentesting business for we mostly scan apps just 1 time for our security assessments. It absolutely makes no sense to apply the same costs! Just like Netsparker, acunetix should have plans for pentesters and consultants.

* Scanning an app that spans multiple domains always results in problems. Currently you have the "Allowed hosts" settings which is crappy in setting up. I need to set all (sub) domains to a different target. And ofcourse with the current business model you are charged per target, lol.

Vorteile

Very easy to setup initially, running scans quite fast, good crawler, very nice and understandable results.

Nachteile

The license model changed somehow in the middle of the three years, so it became impossible to continue to use it as planned without paying much more. Tools were removed.

Vorteile

I have been using acunetix web vulnerability scanner since last 2 years as I develop Web apps and Websites in my professional career so I like to test it by myself for the vulnerabilities.
It gives me scope for improvement in my programming skills.
As it gives the developer report as a part of the report its very indepth report and very useful for me to develop secure web apps
I really like the web interface they have provided It reduces the dependancy of a device to carry.
really good.

Nachteile

There is nothing so far to dislike this software.
As my needs are getting fulfilled by the available functionalities.
Looking forward to new updates.

Vorteile

- easy to use
- friendly UI
- easy to read reports
- the support is all right
- price used to be a pro

Nachteile

- they removed a lot of functionality in the last 2 years (starting with version 10): you are not able to crawl and scan only some of the parts of the website, based on the crawling made, you were not able to pause the scan (they re-introduced that in v12), not able to see the reply from the server for found vulnerabilities, in order to confirm them, it's not properly working for some login pages, it's not properly working on big websites, webshops, etc (the crawling takes ages!)

Vorteile

Faster analysis, low false positives and intuitive interface

Nachteile

Take out the manual tools from the acunetix web has been an error.

Vorteile

I can schedule daily, weekly or monthly scans of targets which checks for vulnerabilities in our cloud infrastructure from one control panel. The ability to send different types of reports to various parties, for example a 'Board level' report or 'Developer' report is handy for tailoring content to the audience.

Nachteile

It perhaps could be improved by adding a section for commenting on how a vulnerability was fixed and a link to a relevant URL to confirm this. Pricing is good for a small amount of targets, but quickly becomes expensive for multiple target locations.

Vorteile

With self-explanatory reports, the assessment procedure is easy to setup and configure. Prioritization and classification help resolve issues that are vital to the organization.

Nachteile

Since a comprehensive scan takes place with advanced crawling and authentication capabilities, the process might take a bit longer than expected, which is nothing in comparison to the information rendered.

Vorteile

This is a good tool for performing web application scan vulnerability assessment. It’s as automated tool which supports application scan provided the URL of applications.

It can give compliance reports including PCI DSS, HIPPAA, OWASP TOP 10 etc.

Acunetix can do credential based scan for web applications.

Nachteile

Al tough its good tool, from the past experiences of using it, Sometimes acunetic automatically logs out of session while performing the test.

Also, acuneix could provide many false positives, as result have to cross check manually about the details of the scan results.

Vorteile

Facilidade de configuração das targets, execução dos scans e análise dos dados gerados pelas vulnerabilidades, que mostram o retorno do código de erro, como ajustar ou referências de como solucionar as vulnerabilidades, além de dividi-las em informativas, baixa, média e alta.Os relatórios disponibilizados são muito bons: técnicos e gerenciais.

Nachteile

O custo é alto, mas é uma ferramenta muito respeitada no mercado e muito confiável.O suporte é bom, mas já aconteceu de existir vulnerabilidade que ora ocorre, ora não e o suporte demora a concluir a investigação. Mas é algo que pode acontecer em outros softwares ou ser um falso positivo.

Vorteile

User-friendly simple graphical interface with point and shoot approach makes the assessment conducting easy even for non-technical people. Provide detailed vulnerability assessment reports with testing examples. It provides reports for developers for developing options and reports can be generated according to the required compliance standard like

Nachteile

Acunetix doesn’t provide comprehensive CSV format downloads. Provided CSV files format needs to improve. Accunetix currently supports only web assessment. It can.not be used as all in one tool. Recently they have changed their licensing method and price is quite expensive compared to other tools.

Vorteile

We are using Acunetix now for more than 5 years. It is very easy to create new targets and quickly start automatic scans. The AcuSensor often gives me a good hint where I should take a closer look manually.
Our management likes the well structured reports.

Nachteile

If a web application is very complex, the scanner sometimes does not really manage to find its path through the process.
Since the application changed to the web gui, it is more complicated to specify pre-recorded login sequence. The user has to log into the server, where Acunetix is hostet and start a different application to record the sequence.

Vorteile

Acunetix has a variety of network vulnerability scanning methods called "tests" which can be easily configures with a quick setup. Also, the GUI is very pleasant and user friendly plus you don't have to be an expert on the subject matter to use this.

Nachteile

Does not support Active Directory and static review process. And scan time is highly dependent on your down-link.

Vorteile

Ease of use and cost makes this product's RIO right on the money.

Nachteile

LAck of AD support, and static review process.

Vorteile

I have been using the On Premises version for a few years now. Acunetix is really easy to use with a very user-friendly web portal to manage the targets, scans, reports, settings, etc. I really like the reports, after every scan, from which you can easily spot the important and high risk vulnerabilities, with recommendations on how to fix each issue.

Nachteile

nothing, everything is perfect! the only catch is the price change, but I believe it's worth it.

Vorteile

an intuitive, efficient, affordable application

Nachteile

customer support is quite slow to answer; network scan has been removed, it was a useful function; price increase didn't make us happier

Vorteile

Very easy to use, nice GUI and reports...

Nachteile

Too many issues were not discovered by Acunetix, and subsequently found by customers wielding different tools.

Vorteile

User friendly interface. Fast scan. Great on premise and cloud solution

Nachteile

The solution work great. I don`t have something that i like least

Nachteile

We could not even try the trial the program. The first thing they asked without seeing the demo are you going to purchase the licence or not :) I am working more +10 years experience as a security expert. I never had an experience like that before. I already emailed the invicti about this.

Vorteile

Acunetix user experience (UX) is one of the best i've encountered. The dashboard feature is very useful for technically inclined and non-technically inclined users. The user interface is appealing and you can find all your statistics on the dashboard. You don't have to look very far to see a summary report of previous or current scans. The dashboard can show you an app's vulnerabilities based on severity by colour coding severities. You can also generate easy to read reports with a click of a button based on the type of report you want.

Nachteile

The only con I found in this software is lack of support. The response time of the customer service team is poor. I waited weeks to get a response from the team and even then, the back and forth was not helpful as I was not able to get help fast enough.

Vorteile

Perfect vulnerability management solution. Easy to use. User friendly interface

Nachteile

Nothing, everything work perfect. Recommend

Vorteile

Ease of use
Features and Functionalities

Nachteile

Scanning time
Concurrent Scans
Pricing and license timing

Vorteile

Lo que más me gusta de la herramienta de Acunetix es que realiza el escaneo de vulnerabilidades de modo automatizado y al concluir muestra las diferentes vulnerabilidades que deben ser remediadas para mitigar cualquier tipo de riesgo.

Nachteile

El producto ha llenado mis expectativas, ya que me ha permitido ayudar a mi empresa a prevenirse ante posibles amenazas.

Vorteile

+ Ease of use
+ Point&shoot approach allowing for quick validation of target's overal security
+ Support for various login mechanisms (including OAuth/SSO)
+ Great as part of SDL process

Nachteile

- Scans might sometimes be slow when run over the internet

Vorteile

It is a very fast and stable tool, Acunetix allows you to perform a security audit in an easy and intuitive way.

Nachteile

Does not allow to audit webservice in the latest version

Vorteile

Quick setup, with a wide range of tests.

Nachteile

The built in login broweser, as it is outdated and does not support technology like index.db etc.

Vorteile

With the Vulnerability Scanner the company had audit almost every site and web application, detecting every vulnerability and planning how to fix it. This had help to keep safe all the information managed on the web applicantions.

Nachteile

One of the issues with Acunetix has been the price. It had incremented more that we expected.

Vorteile

Ease of use, UI ergonomics, performance, detection rate.

Nachteile

Some minor issues with false positives found, a bit harder to separate from real vulnerabilities, especially for XSS.

Vorteile

The network and web vulnerability scanning.

Nachteile

Better scheduling for scans
e.g. happen on the first Monday of each month

Vorteile

Ease of use. Easy reporting. In depth penetration tests.

Nachteile

The price has increased incredibly which is pricing my customers out of this product.

Vorteile

Acunetix (in any of these flavors) is one of the best Web Security Scanners that I use. Great integrations with several technologies (such as Web Application Firewalls). Acunetix detects a lot of vulnerabilities and have the possibility to fix with easy ideas to do that.

Nachteile

We didn't see any cons about Acunetix, maybe will be the possibility to integrate with a network scanner in On Premise (but as I know in new release we can do that!)

Vorteile

Easy to use, good quality and possibilities to config your own scans.

Nachteile

The price is a bit high and I wan't more functions for automation.

Vorteile

Easy to use.
It performs many checks that I previously used to do with a collection of other tools.

Nachteile

It would be great to see in real-time in the product interface what exactly the scanner is doing.
Login Sequence Recorder does not always work.