No more typing reviews! Try our Samantha, our new voice AI agent.

Acunetix vs Veracode comparison

Invicti and Veracode are both solutions in the Application Security Tools category. Invicti is ranked #8 with an average rating of 7.9, while Veracode is ranked #3 with an average rating of 7.5. Invicti holds a 2.4% mindshare in AS, compared to Veracode’s 4.3% mindshare. Additionally, 89% of Invicti users are willing to recommend the solution, compared to 89% of Veracode users who would recommend it.
Acunetix
Read 38 Acunetix reviews
  • 10,102 Views
  • 4,849 Comparison Views
89% willing to recommend
Veracode
Read 208 Veracode reviews
  • 24,557 Views
  • 13,506 Comparison Views
89% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024

Veracode and Acunetix are key players in application security, offering distinct strengths. Acunetix holds an advantage due to its comprehensive features and perceived value.

Features: Veracode provides robust code scanning, extensive language support, and early vulnerability detection. Acunetix offers powerful automation, easy integration, and detailed reporting, with notable flexibility, giving it a feature advantage.

Room for Improvement: Veracode needs to enhance scan speed, reduce false positives, and improve accuracy. Acunetix users seek better remediation guidance, user training, and post-scan utility improvements.

Ease of Deployment and Customer Service: Veracode's deployment can be complex, requiring strong support. Acunetix offers straightforward deployment but needs quicker support response times.

Pricing and ROI: Veracode's pricing may deter small teams despite positive ROI for those investing. Acunetix provides cost-effectiveness with substantial ROI, appealing to companies seeking immediate returns with lower setup costs.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Acunetix vs. Veracode Report (Updated: June 2026).
Buyer's Guide
Acunetix vs. Veracode
June 2026
Download the complete report
Helped 900,644 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.8
Acunetix users report over 300% ROI, with enhanced security, time savings, and reduced manual testing for application vulnerability identification.
Sentiment score
6.5
Veracode boosts ROI by reducing security breaches and costs, enhancing compliance, and integrating effective vulnerability detection and automation.
It saves a significant amount of time by covering attack surfaces.
Abdullah Ozkan
Information Security Engineer at Tübitak Bilgem
I have seen a return on investment, as Acunetix helps reduce the man-days and effort needed for scanning bulk applications through automated assessments.
Rahul Kumar
Senior Engineer - Penetration Tester at a government with 10,001+ employees
Acunetix has helped reduce the time spent on manual security reviews and vulnerability identification, catching potential issues early in the deployment and development cycle.
reviewer2846760
full stack developer at a consultancy with 1-10 employees
For more quotes and insights, download the Acunetix report
The scanners of Veracode bring status of the weaknesses in the current infrastructure. It scans and provides reports regarding the servers, the network, and the applications running on those servers.
AlejandroMosso
Senior Solutions Architect at IDS Comercial
Regarding price, the evaluation should focus on how efficiently they will recover their investment, considering the time saved through the use of Veracode Fix, for example, and the ability to fix code at dev time compared to the problems faced when fixing after the product is already deployed.
reviewer2703864
Head of Security Architecture at a healthcare company with 5,001-10,000 employees
We did see a return on investment with Veracode, as we segregated our remediation efforts, which reduced our time to delivery as well as the number of engineers needed to help us in delivering a secure solution.
reviewer2774562
DevSecOps Engineer at a tech services company with 11-50 employees
For more quotes and insights, download the Veracode report
AO
Rahul Kumar - PeerSpot reviewerreviewer2846760 - PeerSpot reviewer
AM
reviewer2703864 - PeerSpot reviewerreviewer2774562 - PeerSpot reviewer
 

Customer Service

Sentiment score
6.7
Acunetix customer support is praised for responsiveness and efficiency, despite occasional delays and varying reseller interactions.
Sentiment score
7.2
Veracode's support is praised for expertise and responsiveness, though some report delays, improvements noted with dedicated managers.
For high-severity issues, they reach out within two to three hours, and for critical issues, a response is received within 15 minutes.
Himanshu_Tyagi
Lead Cybersecurity at TBO
The technical support from Invicti is very good and fast.
Abdullah Ozkan
Information Security Engineer at Tübitak Bilgem
Support staff not being familiar with the problem.
Rahul Kumar
Senior Engineer - Penetration Tester at a government with 10,001+ employees
For more quotes and insights, download the Acunetix report
Access to the engineering team is crucial for faster feedback on the product fix process.
SrikanthRaghavan
Principal Architect at a consultancy with 11-50 employees
I have communicated with the technical support of Veracode a couple of times, and this was a really great experience because these professionals know their material.
Andrei Kriukov
Application Security Specialist at Herrenknecht
They share detailed information via email, including screenshots or further clarification about the issue.
reviewer2753535
DevSecOps Engineer at a tech services company with 1,001-5,000 employees
For more quotes and insights, download the Veracode report
Himanshu_Tyagi - PeerSpot reviewer
AO
Rahul Kumar - PeerSpot reviewer
SR
AK
reviewer2753535 - PeerSpot reviewer
 

Scalability Issues

Sentiment score
7.0
Acunetix is scalable, adaptable to business growth, though desktop version limitations and licensing may affect its flexibility.
Sentiment score
7.4
Veracode is praised for effective scalability across diverse needs, though costs and complexity can increase with scaling.
Acunetix can handle increasing workloads and more applications easily.
Rahul Kumar
Senior Engineer - Penetration Tester at a government with 10,001+ employees
Acunetix scales effectively for growing web application security testing needs.
reviewer2846760
full stack developer at a consultancy with 1-10 employees
For more quotes and insights, download the Acunetix report
Cloud solutions are easier to scale than on-premise solutions.
AlejandroMosso
Senior Solutions Architect at IDS Comercial
It has a good capacity to scale effectively.
Brintha Prabakar
Lead Automation Quality Engineer in Leading UK Bank at a consultancy with 10,001+ employees
Implementing these features into our normal CI/CD was good, so I can say that scalability is really good.
Andrei Kriukov
Application Security Specialist at Herrenknecht
For more quotes and insights, download the Veracode report
Rahul Kumar - PeerSpot reviewerreviewer2846760 - PeerSpot reviewer
AM
BP
AK
 

Stability Issues

Sentiment score
8.2
Acunetix is highly praised for its stability, with minimal issues, effective tech support, and consistent performance.
Sentiment score
7.8
Veracode is generally stable with minor glitches, but could improve speed and communication for enhanced reliability.
No quotes available
For more quotes and insights, download the Acunetix report
If the Veracode server is down, we experience many issues during the scan.
Brintha Prabakar
Lead Automation Quality Engineer in Leading UK Bank at a consultancy with 10,001+ employees
I have observed that it is not that reliable in terms of security because Veracode was not able to find some security threats in our application that existed since the product was developed.
Yash Shende
Software Development Engineer II at Rocket Software
It's not that easy to onboard, but once they have been onboarded on the platform, and the pipeline configured alongside the product configured, it works effectively.
reviewer2703864
Head of Security Architecture at a healthcare company with 5,001-10,000 employees
For more quotes and insights, download the Veracode report
BP
YS
reviewer2703864 - PeerSpot reviewer
 

Room For Improvement

Customers seek improved API testing, mobile scanning, pricing, integrations, collaboration features, faster scans, and better user support in Acunetix.
Veracode is criticized for high costs, licensing rigidity, false positives, slow UI, and limited integration and language support.
The main concern is related to false positives; Acunetix needs to work on identifying valid and invalid findings.
Himanshu_Tyagi
Lead Cybersecurity at TBO
I could supply it with maybe a Swagger file or a JSON file, and Acunetix would pick it up, scan all the endpoints according to the OWASP Top Ten, and give me remediation and actionable remediation reports.
Adetunji Adeoje
Team Lead, Application Security at a financial services firm with 5,001-10,000 employees
Acunetix should have better integration with newer tools such as GitHub and Azure DevOps.
KashifJamil
CEO at Xcelliti
For more quotes and insights, download the Acunetix report
If it could be integrated directly with code repositories such as Bitbucket or GitHub, without the need to create a pipeline to upload and decode code, it would simplify the code scan process significantly.
Himadri Subudhi
Works
We had issues with scanning large applications. Scanning took a lot of time, so we kept it outside the DevOps pipeline to avoid delaying deployments.
Brintha Prabakar
Lead Automation Quality Engineer in Leading UK Bank at a consultancy with 10,001+ employees
A nice addition would be if it could be extended for scenarios with custom cleansers.
reviewer2700198
IT App Security Senior Analyst at a transportation company with 10,001+ employees
For more quotes and insights, download the Veracode report
Himanshu_Tyagi - PeerSpot reviewerAdetunji Adeoje - PeerSpot reviewerKashifJamil - PeerSpot reviewer
HS
BP
reviewer2700198 - PeerSpot reviewer
 

Setup Cost

Acunetix pricing is high and complex, based on domains and targets, with mixed opinions on transparency and flexibility.
Veracode's pricing is high and complex, valued by enterprises but expensive for smaller businesses with flexible options.
The pricing cost is affordable for small and mid-sized organizations, and when compared to Checkmarx, it is significantly affordable, as Checkmarx is quite expensive.
Himanshu_Tyagi
Lead Cybersecurity at TBO
We secured a special licensing model for penetration testing companies, which is cost-effective.
Abdullah Ozkan
Information Security Engineer at Tübitak Bilgem
The pricing of Acunetix is pretty expensive and could be improved.
Srinivas Walikar
Senior Business Development Manager at Intouch World
For more quotes and insights, download the Acunetix report
It's not the most expensive solution.
AlejandroMosso
Senior Solutions Architect at IDS Comercial
Overall, Veracode's pricing is lower and more scalable than many alternatives in the market.
reviewer2753535
DevSecOps Engineer at a tech services company with 1,001-5,000 employees
If there's a security gap, you'll never know the cost or effect.
Himadri Subudhi
Works
For more quotes and insights, download the Veracode report
Himanshu_Tyagi - PeerSpot reviewer
AO
SW
AM
reviewer2753535 - PeerSpot reviewer
HS
 

Valuable Features

Acunetix offers fast, automated web vulnerability detection with user-friendly management, centralized reporting, and efficient multi-domain handling.
Veracode offers effective security analysis, CI/CD integration, multi-language support, and detailed reports for secure, compliant software development.
Its most valuable role is in enhancing security by identifying potential vulnerabilities efficiently.
Srinivas Walikar
Senior Business Development Manager at Intouch World
The solution is excellent at detecting SQL injection and cross-site scripting vulnerabilities.
KashifJamil
CEO at Xcelliti
The best feature Acunetix offers is the centralized dashboard and the quality of reports it generates, which includes various options for selecting reports and developer options for directly sharing the reports with developers.
Rahul Kumar
Senior Engineer - Penetration Tester at a government with 10,001+ employees
For more quotes and insights, download the Acunetix report
It offers confidence by preventing exposure to vulnerabilities and helps ensure that we are not deploying vulnerable code into production.
Kv Rao
Site Leader (India) at Industrial Scientific
The best features in Veracode include static analysis and the early detection of vulnerable libraries; it integrates with tools such as Jenkins.
Himadri Subudhi
Works
It fixes issues directly in the IDE while you're doing it.
reviewer2700198
IT App Security Senior Analyst at a transportation company with 10,001+ employees
For more quotes and insights, download the Veracode report
SW
KashifJamil - PeerSpot reviewerRahul Kumar - PeerSpot reviewerKv Rao - PeerSpot reviewer
HS
reviewer2700198 - PeerSpot reviewer
 

Categories and Ranking

Acunetix
Ranking in Application Security Tools
8th
Ranking in Static Application Security Testing (SAST)
5th
Average Rating
7.8
Reviews Sentiment
6.7
Number of Reviews
38
Ranking in other categories
Vulnerability Management (21st), DevSecOps (5th)
Veracode
Ranking in Application Security Tools
3rd
Ranking in Static Application Security Testing (SAST)
3rd
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
208
Ranking in other categories
Container Security (12th), Software Composition Analysis (SCA) (2nd), Static Code Analysis (1st), Dynamic Application Security Testing (DAST) (1st), Application Security Posture Management (ASPM) (1st)
 

Mindshare comparison

As of June 2026, in the Application Security Tools category, the mindshare of Acunetix is 2.4%, down from 2.8% compared to the previous year. The mindshare of Veracode is 4.3%, down from 9.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools Mindshare Distribution
ProductMindshare (%)
Veracode4.3%
Acunetix2.4%
Other93.3%
Application Security Tools
 

Featured Reviews

Rahul Kumar - PeerSpot reviewer
Rahul Kumar
Senior Engineer - Penetration Tester at a government with 10,001+ employees
Identifies vulnerabilities across bulk web applications but needs better support and cleaner reports
The best feature Acunetix offers is the centralized dashboard and the quality of reports it generates, which includes various options for selecting reports and developer options for directly sharing the reports with developers. The centralized dashboard of Acunetix gives visibility into the security aspects of mass applications; for instance, with more than 200 applications, it provides a valuable overview of findings and necessary fixes, along with a high-level summary that helps us achieve compliance through monthly and sometimes weekly scanning. In terms of reporting, Acunetix is excellent because it can generate different types of reports, such as an executive summary report, detailed reports, and developer reports that can be shared directly with developers. Acunetix positively impacts my organization by helping identify outdated libraries and applications, including legacy applications vulnerable to old attacks based on OWASP Top 10, thus aiding in compliance checks for PCI DSS and OWASP. Acunetix provides a centralized report with compliance-related aspects and a vulnerability timeline, effectively helping reduce vulnerabilities and save time.
Read full review
reviewer2753535 - PeerSpot reviewer
reviewer2753535
DevSecOps Engineer at a tech services company with 1,001-5,000 employees
Integrates security into the development process and improves team collaboration
Veracode helps organizations develop software by reducing the risk of security vulnerabilities through developer enablement and applications focused on governance. You can utilize different levels of processes to achieve better performance or a more scalable service. Since I started working with it in 2022, I’ve found it to be cost-effective as well. Overall, Veracode is a user-friendly security tool. It includes features such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA). During the development phase, we can identify vulnerabilities in the application. This process occurs in the staging environment during development. When we're ready to go to production, we conduct a final check. Essentially, this tool helps identify vulnerabilities during the code development stage, including both high-level vulnerabilities and those related to open-source software composition. We utilize specific methodologies for this purpose. Additionally, it offers a feature that allows us to set up policies based on client requirements. This means we can customize the tool to meet the specific needs of our clients, ensuring that they receive the appropriate level of security in their applications. Veracode is user-friendly as well. Compared to other tools, their scans take 15 minutes or under. If you have a large scale of libraries or data, it might take longer, but based on my personal experience, the scan usually runs within fifteen minutes. For my case study using the Veracode tool, I worked on an internal project following industry standards. We used Veracode to improve our security posture and speed up the time to market by streamlining the development process. This enhanced collaboration between developers, operations, and security teams. The automated scanning process helped identify and fix vulnerabilities earlier in the development process. We maintained compliance with regulatory requirements, avoided fines, and built customer trust by integrating security into the development process. When we conduct this scan, we receive data on a list of vulnerabilities. This information improved our communication and increased transparency, which leads to better reports about the efforts being put in. This results in a more effective and efficient collaboration process, making it user-friendly for all involved. When considering costs, if we resort to manual processes, it can be time-consuming. Therefore, we utilize automated scans to identify and fix security issues. This allows us to address vulnerabilities early in the development process, as we discussed previously. This applies both to our in-house code and third-party libraries, using Software Composition Analysis (SCA) agent-based scans. In the future, we will also implement SCA agent-based scans as a separate feature within Veracode, which can help organizations avoid the expensive and time-consuming consequences of security issues. Furthermore, we have seen an increase in compliance, helping to maintain adherence to regulatory requirements and industry standards, thereby avoiding fines and reputational damage associated with noncompliance. Additionally, by integrating security into the development process, we enhance customer trust in our organization and its products.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
See recommendations
900,644 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
12%
Manufacturing Company
10%
Computer Software Company
9%
Comms Service Provider
7%
Financial Services Firm
16%
Manufacturing Company
11%
Computer Software Company
9%
Construction Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business18
Midsize Enterprise7
Large Enterprise19
By reviewers
Company SizeCount
Small Business69
Midsize Enterprise46
Large Enterprise114
 

Questions from the Community

What is your primary use case for Acunetix Vulnerability Scanner?
In a typical enterprise environment, Acunetix is mainly used for visibility, detection, and investigation across network traffic. The main use cases usually fall into a few core areas, with primary...
See all answers
What advice do you have for others considering Acunetix Vulnerability Scanner?
I advise that Acunetix is the best option. Invest time in proper initial configuration and scope definitions. The tool is powerful, but its effectiveness depends heavily on how the authenticated ar...
See all answers
What is your experience regarding pricing and costs for Acunetix?
Everything is perfect and good, including the pricing and all related aspects.
See all answers
Which gives you more for your money - SonarQube or Veracode?
SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use...
See all answers
What is the biggest difference between Veracode and Checkmarx?
According to my experience of using both the tools in different organizations Veracode is a Cloud-native, managed AppSec platform with strong focus on ease of use, it is SaaS delivery, and provide...
See all answers
What is your experience regarding pricing and costs for Veracode Static Analysis?
My experience with pricing, setup cost, and licensing for Veracode is that it is fairly moderate.
See all answers
 

Comparisons

PortSwigger Burp Suite Professional vs Acunetix Logo
PortSwigger Burp Suite Professional vs Acunetix
Compared 8% of the time
OWASP Zap vs Acunetix Logo
OWASP Zap vs Acunetix
Compared 7% of the time
HCL AppScan vs Acunetix Logo
HCL AppScan vs Acunetix
Compared 4% of the time
Invicti vs Acunetix Logo
Invicti vs Acunetix
Compared 4% of the time
Tenable Nessus vs Acunetix Logo
Tenable Nessus vs Acunetix
Compared 3% of the time
More Acunetix Competitors
SonarQube vs Veracode Logo
SonarQube vs Veracode
Compared 6% of the time
Checkmarx One vs Veracode Logo
Checkmarx One vs Veracode
Compared 5% of the time
HCL AppScan vs Veracode Logo
HCL AppScan vs Veracode
Compared 3% of the time
Coverity Static vs Veracode Logo
Coverity Static vs Veracode
Compared 3% of the time
Black Duck SCA vs Veracode Logo
Black Duck SCA vs Veracode
Compared 2% of the time
More Veracode Competitors
 

Product Reports

Buyer's Guide
Acunetix
June 2026
Acunetix reportDownload Acunetix product report
Buyer's Guide
Veracode
May 2026
Veracode reportDownload Veracode product report
 

Also Known As

AcuSensor
Crashtest Security , Veracode Detect
 

Overview

Acunetix is a dynamic application security tool used globally for web application vulnerability scanning, focusing on SQL injection and cross-site scripting.

Acunetix provides a comprehensive web vulnerability assessment platform designed for identifying and remediating security threats. Users benefit from its ability to schedule scans, boasting a fast detection rate for common vulnerabilities. The tool's centralized dashboard helps organizations with compliance monitoring and features such as crawling and login sequence enhancements, contributing depth to its security assessments. Despite high praise for its integration capabilities and automated scanning that saves time, pricing and false positives present challenges. Organizations often use Acunetix to maintain internal security and evaluate pre-release environments.

What are Acunetix's main features?
  • Comprehensive Reporting: Detailed reports assist in security analysis and compliance audits.
  • User-Friendly Interface: Simple navigation enhances user experience.
  • Scheduled Scans: Automation of scans allows for continuous monitoring.
  • Fast Detection: Quickly identifies vulnerabilities like SQL injection and cross-site scripting.
  • Integration Capabilities: Scalable solutions with compatibility across applications.
  • Crawling & Login Sequence: Improves depth in security analysis.
What benefits should businesses look for in reviews?
  • Low False Positive Rate: Accurate vulnerability detection saves time in analysis.
  • Time Efficiency: Automated scans reduce manual workload, improving team productivity.
  • Scalability: Integration features help accommodate growth and complexity.
  • Compliance Support: Centralized dashboard supports regulatory compliance checks.

In industries like finance, healthcare, and technology, Acunetix assists in protecting sensitive data through robust scanning and reporting capabilities. Its ability to perform dynamic assessments makes it a chosen tool in regulatory environments and development settings, offering both internal security inspections and pre-release evaluations.

Invicti

Veracode is a leading provider of application security solutions, offering tools to identify, mitigate, and prevent vulnerabilities across the software development lifecycle. Its cloud-based platform integrates security into DevOps workflows, helping organizations ensure that their code remains secure and compliant with industry standards.

Veracode supports multiple application security testing types, including static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), and manual penetration testing. These tools are designed to help developers detect vulnerabilities early in development while maintaining speed in deployment. Veracode also emphasizes scalability, offering features for enterprises that manage a large number of applications across different teams. Its robust reporting and analytics capabilities allow organizations to continuously monitor their security posture and track progress toward remediation.

What are the key features of Veracode?

  • Static Analysis (SAST) - Scans source code for vulnerabilities before deployment.
  • Dynamic Analysis (DAST) - Examines applications in a running state to detect flaws in real-time.
  • Software Composition Analysis (SCA) - Identifies risks in open-source libraries and third-party components.
  • Manual Penetration Testing - Offers expert analysis for more complex vulnerabilities.
  • Integrations with DevOps tools - Seamlessly integrates with CI/CD pipelines for automated security checks.

What benefits should users consider in Veracode reviews?

  • Early detection of vulnerabilities - Helps developers fix security issues early in the development process.
  • Scalability - Supports organizations with large-scale application portfolios.
  • Compliance support - Ensures applications meet various security standards and regulations.
  • Developer training - Provides tools for educating developers on secure coding practices.
  • Comprehensive reporting - Offers detailed reports that track remediation and risk trends.

Veracode is widely adopted in industries like finance, healthcare, and government, where compliance and security are critical. It helps these organizations maintain strict security standards while enabling rapid development through its integration with Agile and DevOps methodologies.


Veracode helps businesses secure their applications efficiently, ensuring they can deliver safe and compliant software at scale.

Veracode
 

Sample Customers

Joomla!, Digicure, Team Random, Credit Suisse, Samsung, Air New Zealand
Manhattan Associates, Azalea Health, Sabre, QAD, Floor & Decor, Prophecy International, SchoolCNXT, Keap, Rekner, Cox Automotive, Automation Anywhere, State of Missouri and others.
Buyer's Guide
Acunetix vs. Veracode
June 2026
Free Report: Acunetix vs. Veracode
Find out what your peers are saying about Acunetix vs. Veracode and other solutions. Updated: June 2026.
DOWNLOAD NOW
900,644 professionals have used our research since 2012.
See our Acunetix vs. Veracode report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.