Introducing G2.ai, the future of software buying.Try now
- Home
- ...
- Dynamic Application Security Testing (DAST) Software
- Invicti (formerly Netsparker)
- Qualys WAS
- Invicti (formerly Netsparker)-vs-Qualys WAS
Compare Invicti (formerly Netsparker) and Qualys WAS 
At a Glance
Market Segments
Enterprise (50.9% of reviews)
Mid-Market (47.4% of reviews)
Entry-Level Pricing
No pricing available
No pricing available
Invicti (formerly Netsparker)
Star Rating
(60)4.6 out of 5
Market Segments
Enterprise (50.9% of reviews)
Entry-Level Pricing
No pricing available
Learn more about Invicti (formerly Netsparker)Qualys WAS
Star Rating
(20)4.5 out of 5
Market Segments
Mid-Market (47.4% of reviews)
Entry-Level Pricing
No pricing available
Learn more about Qualys WASSummary
AI Generated Summary
AI-generated. Powered by real user reviews.
- Users report that Invicti excels in its Automated Scans feature, achieving a score of 9.0, while Qualys WAS shines even brighter with a score of 9.6, indicating a more robust automated scanning capability that users find particularly beneficial for continuous security assessments.
- Reviewers mention that Invicti has a lower score for False Positives at 7.8 compared to Qualys WAS, which scored 6.2. This suggests that users of Invicti experience fewer false alerts, making it easier to prioritize real vulnerabilities.
- G2 users highlight the Ease of Setup for Qualys WAS, which received a perfect score of 10.0, indicating that users find it exceptionally straightforward to implement, while Invicti scored slightly lower at 9.0, suggesting a more complex setup process.
- Reviewers say that the Vulnerability Assessment feature in Invicti is rated highly at 9.3, but Qualys WAS edges ahead with a score of 9.2, indicating that both products are strong in this area, but users may find slightly more comprehensive assessments with Invicti.
- Users on G2 report that the API Integrations in Invicti scored 8.7, while Qualys WAS scored lower at 8.1. This suggests that Invicti offers a more extensive range of integrations, which can be crucial for organizations looking to streamline their security workflows.
- Reviewers mention that the Quality of Support is comparable for both products, with Invicti scoring 9.2 and Qualys WAS at 9.3, indicating that users generally find both platforms to provide effective support, but Qualys may have a slight edge in responsiveness or resource availability.
Featured Products
Sponsored
Intruder
(183)
Vulnerability Scanner
Visit Website
Sponsored
Tenable Vulnerability Management
(100)
Vulnerability Scanner
Visit Website
Pricing
Entry-Level Pricing
Invicti (formerly Netsparker)
No pricing availableQualys WAS
No pricing availableFree Trial
Invicti (formerly Netsparker)
No trial information availableQualys WAS
No trial information availableRatings
Meets Requirements
9.1
51
9.6
14
Ease of Use
9.2
51
9.3
14
Ease of Setup
9.1
41
10.0
5
Ease of Admin
9.2
42
10.0
5
Quality of Support
9.1
51
9.3
14
Has the product been a good partner in doing business?
9.7
40
9.7
5
Product Direction (% positive)
10.0
47
10.0
12
Features by Category
Administration
8.9
15
Not enough data
9.5
18
Not enough data
9.2
18
Not enough data
Risk Analysis
Feature Not Available
Not enough data
9.3
19
Not enough data
9.2
19
Not enough data
Threat Protection
8.0
10
Not enough data
Feature Not Available
Not enough data
7.8
10
Not enough data
Feature Not Available
Not enough data
Generative AI
Feature Not Available
Not enough data
Administration
8.3
10
Not enough data
8.7
10
Not enough data
8.9
14
Not enough data
Analysis
8.5
12
Not enough data
9.2
14
Not enough data
9.6
14
Not enough data
Testing
8.9
9
Not enough data
8.9
12
Not enough data
8.9
14
Not enough data
9.3
14
Not enough data
Static Application Security Testing (SAST)Hide 14 FeaturesShow 14 Features
Not enough data
Not enough data
Administration
Not enough data
Not enough data
Not enough data
Not enough data
Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Application Security Testing (SAST)
Not enough data
Not enough data
Administration
8.1
14
Not enough data
8.5
13
Not enough data
Analysis
8.8
21
Not enough data
9.1
20
Not enough data
Feature Not Available
Not enough data
9.2
21
Not enough data
6.5
10
Not enough data
Testing
7.3
14
Not enough data
8.4
18
Not enough data
8.4
17
Not enough data
8.8
14
Not enough data
8.4
15
Not enough data
8.0
14
Not enough data
Performance
8.4
15
|
Verified
8.5
13
9.0
15
|
Verified
9.1
13
7.8
16
|
Verified
6.2
13
9.0
15
|
Verified
9.6
13
Network
8.5
12
|
Verified
8.9
12
8.3
9
|
Verified
8.3
12
8.0
9
|
Verified
8.2
12
Application
7.9
13
7.1
11
7.9
13
|
Verified
7.0
11
9.1
16
|
Verified
8.7
13
Agentic AI - Vulnerability Scanner
Not enough data
Not enough data
Not enough data
Not enough data
API Management
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Security Testing
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Not enough data
Not enough data
Security Management
Not enough data
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Cloud Visibility
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Identity
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Interactive Application Security Testing (IAST)Hide 1 FeatureShow 1 Feature
Not enough data
Not enough data
Agentic AI - Interactive Application Security Testing (IAST)
Not enough data
Not enough data
Categories
Categories
Shared Categories
Invicti (formerly Netsparker) and Qualys WAS are categorized as Vulnerability Scanner
Unique Categories
Invicti (formerly Netsparker) is categorized as API Security, Dynamic Application Security Testing (DAST), Penetration Testing, Website Security, Static Application Security Testing (SAST), and Interactive Application Security Testing (IAST)
Qualys WAS has no unique categories
Reviews
Reviewers' Company Size
Invicti (formerly Netsparker)
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Qualys WAS
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Telecommunications
10.5%
Financial Services
10.5%
Computer Software
8.8%
Internet
7.0%
Information Technology and Services
7.0%
Other
56.1%
Information Technology and Services
31.6%
Computer Software
31.6%
Computer & Network Security
21.1%
Outsourcing/Offshoring
5.3%
Internet
5.3%
Other
5.3%
Most Helpful Reviews
Invicti (formerly Netsparker)
Most Helpful Favorable Review
Verified User in Automotive
Their products are top and easy to use. Customaer support is great
Most Helpful Critical Review
Verified User in Computer Software
The gui is not very cool. Besides cpu usage is going high. If the website have firewall.
Qualys WAS
Most Helpful Favorable Review
Sanhita S.
Verified User in Computer & Network Security
easy to use platform, very helpful to learn about vulnerability management;etc.
Most Helpful Critical Review
Verified User in Computer Software
1. Redundantly scans pages in vain with little to no modification in the alphanumeric query parameter values 2. It doesn’t cover automatic patching for all types of vulnerabilities.
Verified User in Automotive
Their products are top and easy to use. Customaer support is great
Sanhita S.
Verified User in Computer & Network Security
easy to use platform, very helpful to learn about vulnerability management;etc.
Verified User in Computer Software
The gui is not very cool. Besides cpu usage is going high. If the website have firewall.
Verified User in Computer Software
1. Redundantly scans pages in vain with little to no modification in the alphanumeric query parameter values 2. It doesn’t cover automatic patching for all types of vulnerabilities.
Alternatives
Discussions
What is the difference between Netsparker Desktop and Netsparker Cloud?
1 comment
Official Response from Invicti (formerly Netsparker)
To start off with, as the name implies, Netsparker Cloud is an online web application security scanner and Netsparker Desktop is a Windows software scanner....Read more
What is a Scan Policy?
1 comment
Official Response from Invicti (formerly Netsparker)
Scan policies in Netsparker allow you to save a specific Netsparker configuration setup so you do not have to configure the scanner each time you scan a...Read more
The different vulnerability severities in Netsparker are typically categorized as follows: Critical, High, Medium, Low, and Informational. These categories help prioritize the urgency and importance of addressing each vulnerability.
1 comment
Official Response from Invicti (formerly Netsparker)
Netsparker web application security scanner scans for a wide variety of vulnerabilities in websites, web applications and web services.
Each vulnerability...Read more
What are the typical features offered by vulnerability scanner?
1 comment
HQ
Vulnerability scanners are essential tools for identifying and mitigating security risks in computer systems and networks. They offer a range of features to...Read more
Qualys WAS has no more discussions with answers
Hunting for software insights?
With over 3 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
