Introducing G2.ai, the future of software buying.Try now
- Home
- ...
- Dynamic Application Security Testing (DAST) Software
- Invicti (formerly Netsparker)
- ZAP by Checkmarx
- Invicti (formerly Netsparker)-vs-ZAP by Checkmarx
Compare Invicti (formerly Netsparker) and ZAP by Checkmarx 
At a Glance
Market Segments
Enterprise (50.9% of reviews)
Small-Business (75.0% of reviews)
Entry-Level Pricing
No pricing available
Free
Invicti (formerly Netsparker)
Star Rating
(60)4.6 out of 5
Market Segments
Enterprise (50.9% of reviews)
Entry-Level Pricing
No pricing available
Learn more about Invicti (formerly Netsparker)ZAP by Checkmarx
Star Rating
(12)4.7 out of 5
Market Segments
Small-Business (75.0% of reviews)
Entry-Level Pricing
Free
Learn more about ZAP by CheckmarxSummary
AI Generated Summary
AI-generated. Powered by real user reviews.
- Users report that Invicti excels in its Vulnerability Assessment capabilities, scoring 9.3, which reviewers mention provides comprehensive scanning and detailed reporting, making it a strong choice for enterprises focused on security.
- Reviewers mention that ZAP by Checkmarx shines in Static Code Analysis, with a score of 8.1, highlighting its ability to integrate seamlessly into CI/CD pipelines, which is particularly beneficial for small businesses looking to enhance their development processes.
- G2 users note that Invicti's Automated Scans feature, rated at 9.0, is highly efficient, allowing teams to quickly identify vulnerabilities without extensive manual intervention, which is a significant advantage for larger organizations.
- Users on G2 report that ZAP by Checkmarx has a more user-friendly Manual Testing interface, scoring 7.5, which reviewers say is easier for teams to adopt, especially for those with less technical expertise.
- Reviewers mention that Invicti's Quality of Support is rated at 9.2, with many users praising the responsiveness and helpfulness of the support team, which is crucial for enterprises that require timely assistance.
- Users say that ZAP by Checkmarx's Test Automation feature, rated at 8.6, is particularly beneficial for small businesses, as it allows for efficient testing processes that save time and resources during development cycles.
Featured Products
Sponsored
Intruder
(182)
Vulnerability Scanner
Visit Website
Sponsored
Sprocket Security
(8)
Vulnerability Scanner
Visit Website
Pricing
Entry-Level Pricing
Invicti (formerly Netsparker)
No pricing availableFree Trial
Invicti (formerly Netsparker)
No trial information availableZAP by Checkmarx
Free Trial is available
Ratings
Meets Requirements
9.1
51
9.6
12
Ease of Use
9.2
51
9.0
12
Ease of Setup
9.1
41
Not enough data
Ease of Admin
9.2
42
Not enough data
Quality of Support
9.1
51
8.1
12
Has the product been a good partner in doing business?
9.7
40
Not enough data
Product Direction (% positive)
10.0
47
10.0
11
Features by Category
Administration
8.9
15
Not enough data
9.5
18
Not enough data
9.2
18
Not enough data
Risk Analysis
Feature Not Available
Not enough data
9.3
19
Not enough data
9.2
19
Not enough data
Threat Protection
8.0
10
Not enough data
Feature Not Available
Not enough data
7.8
10
Not enough data
Feature Not Available
Not enough data
Generative AI
Feature Not Available
Not enough data
Administration
8.3
10
8.3
12
8.7
10
8.8
12
8.9
14
8.8
12
Analysis
8.5
12
8.1
12
9.2
14
8.2
12
9.6
14
9.4
12
Testing
8.9
9
7.6
12
8.9
12
7.5
12
8.9
14
8.6
12
9.3
14
8.9
12
Static Application Security Testing (SAST)Hide 14 FeaturesShow 14 Features
Not enough data
Not enough data
Administration
Not enough data
Not enough data
Not enough data
Not enough data
Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Application Security Testing (SAST)
Not enough data
Not enough data
Administration
8.1
14
Not enough data
8.5
13
Not enough data
Analysis
8.8
21
Not enough data
9.1
20
Not enough data
Feature Not Available
Not enough data
9.2
21
Not enough data
6.5
10
Not enough data
Testing
7.3
14
Not enough data
8.4
18
Not enough data
8.4
17
Not enough data
8.8
14
Not enough data
8.4
15
Not enough data
8.0
14
Not enough data
Performance
8.4
15
|
Verified
Not enough data
9.0
15
|
Verified
Not enough data
7.8
16
|
Verified
Not enough data
9.0
15
|
Verified
Not enough data
Network
8.5
12
|
Verified
Not enough data
8.3
9
|
Verified
Not enough data
8.0
9
|
Verified
Not enough data
Application
7.9
13
Not enough data
7.9
13
|
Verified
Not enough data
9.1
16
|
Verified
Not enough data
Agentic AI - Vulnerability Scanner
Not enough data
Not enough data
Not enough data
Not enough data
API Management
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Security Testing
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Not enough data
Not enough data
Security Management
Not enough data
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Cloud Visibility
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Identity
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Interactive Application Security Testing (IAST)Hide 1 FeatureShow 1 Feature
Not enough data
Not enough data
Agentic AI - Interactive Application Security Testing (IAST)
Not enough data
Not enough data
Categories
Categories
Shared Categories
Invicti (formerly Netsparker) and ZAP by Checkmarx are categorized as Dynamic Application Security Testing (DAST) and Penetration Testing
Unique Categories
Invicti (formerly Netsparker) is categorized as API Security, Website Security, Vulnerability Scanner, Static Application Security Testing (SAST), and Interactive Application Security Testing (IAST)
ZAP by Checkmarx has no unique categories
Reviews
Reviewers' Company Size
Invicti (formerly Netsparker)
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
ZAP by Checkmarx
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Telecommunications
10.5%
Financial Services
10.5%
Computer Software
8.8%
Internet
7.0%
Information Technology and Services
7.0%
Other
56.1%
Computer & Network Security
41.7%
Information Technology and Services
25.0%
Computer Software
16.7%
Internet
8.3%
Hospital & Health Care
8.3%
Other
0.0%
Most Helpful Reviews
Invicti (formerly Netsparker)
Most Helpful Favorable Review
Shefin D.
Verified User in Human Resources
Automate security throughout your SDLC..
Most Helpful Critical Review
Verified User in Computer Software
The gui is not very cool. Besides cpu usage is going high. If the website have firewall.
ZAP by Checkmarx
Most Helpful Favorable Review
Verified User in Information Technology and Services
It is easy to use and integrate it any solution with automation.
Most Helpful Critical Review
Shefin D.
Verified User in Human Resources
Automate security throughout your SDLC..
Verified User in Information Technology and Services
It is easy to use and integrate it any solution with automation.
Verified User in Computer Software
The gui is not very cool. Besides cpu usage is going high. If the website have firewall.
Alternatives
Discussions
What is the difference between Netsparker Desktop and Netsparker Cloud?
1 comment
Official Response from Invicti (formerly Netsparker)
To start off with, as the name implies, Netsparker Cloud is an online web application security scanner and Netsparker Desktop is a Windows software scanner....Read more
What is a Scan Policy?
1 comment
Official Response from Invicti (formerly Netsparker)
Scan policies in Netsparker allow you to save a specific Netsparker configuration setup so you do not have to configure the scanner each time you scan a...Read more
The different vulnerability severities in Netsparker are typically categorized as follows: Critical, High, Medium, Low, and Informational. These categories help prioritize the urgency and importance of addressing each vulnerability.
1 comment
Official Response from Invicti (formerly Netsparker)
Netsparker web application security scanner scans for a wide variety of vulnerabilities in websites, web applications and web services.
Each vulnerability...Read more
ZAP by Checkmarx has no discussions with answers
Hunting for software insights?
With over 2.5 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
