Try our new research platform with insights from 80,000+ expert users

Imperva Application Security Platform vs Prolexic comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 22, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cloudflare
Sponsored
Ranking in Distributed Denial-of-Service (DDoS) Protection
2nd
Average Rating
8.6
Reviews Sentiment
7.0
Number of Reviews
78
Ranking in other categories
CDN (1st), WAN Optimization (4th), Managed DNS (1st), Domain Name System (DNS) Security (5th), Cloud Security Posture Management (CSPM) (10th)
Imperva Application Securit...
Ranking in Distributed Denial-of-Service (DDoS) Protection
4th
Average Rating
8.6
Reviews Sentiment
7.0
Number of Reviews
135
Ranking in other categories
CDN (3rd), Web Application Firewall (WAF) (3rd), Bot Management (1st), API Security (2nd)
Prolexic
Ranking in Distributed Denial-of-Service (DDoS) Protection
11th
Average Rating
7.8
Reviews Sentiment
6.2
Number of Reviews
5
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of March 2026, in the Distributed Denial-of-Service (DDoS) Protection category, the mindshare of Cloudflare is 16.2%, down from 18.2% compared to the previous year. The mindshare of Imperva Application Security Platform is 8.5%, up from 7.9% compared to the previous year. The mindshare of Prolexic is 2.9%, down from 3.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Distributed Denial-of-Service (DDoS) Protection Mindshare Distribution
ProductMindshare (%)
Cloudflare16.2%
Imperva Application Security Platform8.5%
Prolexic2.9%
Other72.4%
Distributed Denial-of-Service (DDoS) Protection
 

Featured Reviews

M.A. Faisal - PeerSpot reviewer
General Manager at bKash Limited
Advanced protection has secured critical web workloads and provides clear traffic visibility
From a security perspective, there remains a security loophole, as some browsers in the market can bypass the Turnstile solution, which requires approximately 40 seconds to do so. From a performance perspective, this is acceptable. We also tried Google reCAPTCHA, and that can also be bypassed. From a security perspective, I would say neither solution is completely secured. Regarding uptime, we have faced a couple of incidents due to Cloudflare in recent years, so I cannot say we receive 100% uptime for our region. We sometimes face challenges, including downtime and other issues. As a result, we are not receiving 100% uptime from Cloudflare's solution. Since most of our customers are in this region, we need alternatives. We need something more competitive than Cloudflare. Unfortunately, in Bangladesh, Cloudflare has three points of presence already, and we cannot find any other solution provider in Bangladesh as an alternative, which presents another challenge. Competitor solutions have more attack signatures, which ensure better security compared to Cloudflare's predefined configurations. Customers do not have options to modify any configuration parameters in Cloudflare, whereas other competitor solutions, such as F5 Distributed Cloud, allow customers to tune configurations according to their requirements. Cloudflare could improve in this area. Additionally, regarding visibility, Cloudflare has static visibility, but they could adopt dynamic graph features for their customers.
reviewer1247523 - PeerSpot reviewer
Head of Sales Services Department at a comms service provider with 51-200 employees
Solution ensures website availability and proactive threat mitigation
Over the seven years, the most valuable features of Imperva DDoS that I have found are related to DDoS attacks, which are a group of attacks, and not all of them can be resolved on the endpoint level before the website. Using the web firewall before the website is a common use case to protect against malicious requests to the website. I have utilized Imperva's Intelligent Traffic Filtering feature. This feature helps me understand how the attack is progressing and what is happening inside the requests to our website. It allows me to granularly grant or deny access to certain parts of our website. This helps when we know our customers and the types of requests that can be sent from them, enabling us to block some malicious requests. Imperva DDoS has User Behavior Analytics and Threat Intelligence on its board, and this helps us to be protected proactively. Imperva DDoS connects to its database of threats, storing whole information about attacks all over the world in one simple engine. Everyone can use this feature, which can connect to this engine and get information about what is going on at the world level. That is the way to be protected at the company's level. The integration capabilities of Imperva DDoS are very easy and simple. We can run it in 2 hours.
Gavin Pinho - PeerSpot reviewer
Privacy & Risk Management Vice President, Information Security at a computer software company with 501-1,000 employees
Has faced challenges with bot detection while benefiting from strong threat monitoring and compliance support
Akamai's most valuable features include being industry recognized and PCI compliant, which is really great; their cloud is PCI compliant, and having a vendor that is PCI certified is crucial for organizations focused on PCI compliance. We utilize the real-time monitoring of the solution. Real-time monitoring helps us identify network vulnerabilities by allowing us to see a spike in traffic and understand the traffic levels compared to this time last month or last week. If we notice a sudden increase, we investigate further to determine if it indicates a DDoS attack or a card testing situation. In terms of threat detection capabilities, they are very good because Akamai has a SOC service that we have tapped into for active threat detection and threat hunting, and they monitor everything carefully 24/7. Scrubbing is done by Akamai as a backend service, and we utilize their SOC, which is a service that you pay additional fees for, allowing us to have our queries prioritized. Prolexic features help maintain business continuity during high-volume attacks by having built-in threat detection capabilities in its bot detection and other functionalities, as attacks usually occur through intelligent bots trying to infiltrate the system.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution is stable, and the DNS servers are simple to use."
"The UI is good."
"The most valuable features of the solution are performance and security."
"The most valuable feature of the solution is external DNS. It is also very secure. They have their own main server and once you configure it, the product takes care of everything. There are no issues in resolving IPs and low latency is also present."
"The technical support is good."
"The solution offers the flexibility to control configuration rules."
"The most valuable feature of Cloudflare DNS is security."
"From what I've seen so far, there are no negatives to report as of yet"
"The solution is scalable."
"Imperva DDoS helps us automate production. The client had specific requirements for a cloud project in the financial sector."
"The solution can scale."
"If you are using the appliance as opposed to the virtual deployment, it can stand as the network layer-two and provide real transparency."
"Imperva WAF's strongest features are the detection of web application threats and vulnerabilities in the source code."
"Scalability is pretty easy on the base platform. You just add another, and you're ready to go."
"Imperva Incapsula has many valuable features. One, it protects the top 10 OWAS vulnerability, the open web application software platform, this is standard. Secondly, it protects against broken authentication. As well, it has remote execution of code."
"The most valuable features for us are the DDoS and Bot."
"Akamai's most valuable features include being industry recognized and PCI compliant, which is really great; their cloud is PCI compliant, and having a vendor that is PCI certified is crucial for organizations focused on PCI compliance."
"The solution does not have hardware or maintenance requirements and is very easy to scale."
 

Cons

"Although I think it's quite good, it doesn't provide me with all the features I would expect to have if I were using Imperva."
"Cloudflare's console should be made more user-friendly."
"Cloudflare does not have an on-premise solution. If they had different approaches they could be better suited to accommodate more customers, such as on-premise and hybrid deployments. For example, hybrid deployments would be useful where you could move the traffic from the enterprise to the cloud."
"The timing aspect can lead to it being considered overpriced. This is a particular concern we have with Cloudflare, as they may struggle with accurately detecting the client."
"It would be beneficial for us if Cloudflare could offer a scrubbing solution. This would involve taking a snapshot of my website and keeping it live during a DDoS attack, ensuring uninterrupted service for our users. DDoS attacks are typically short in duration, and having Cloudflare maintain the site's availability from its secure network would enhance the overall user experience. I would appreciate it if Cloudflare could consider implementing this feature. Many organizations already utilize similar capabilities in their CDN platforms, where a static snapshot of the web page is displayed during DDoS attacks. In terms of features, Cloudflare needs to enhance its resilience and stay more focused on adopting new technologies. For instance, solutions like F5 XC Box, Access Solution, and Distributed Cloud Solution have impressive features, and Cloudflare should strive to match and exceed those capabilities. There's a need for improvement in areas like AI-based DDoS attacks and Layer 7 WAF features. Cloudflare should prioritize enhancements in areas such as behavioral DDoS and protection against SQL injection attacks, considering the prevalent trend of public exposure to the internet for business reasons. Overall, Cloudflare needs to invest more in advancing its feature set."
"It should be easier to collect the logs with companies like Sumo. However, based on my discussions with the salespeople, I understand that's how they make their money. With the enterprise product, they want people doing those kinds of enterprise features to do the logging. They want them to pay a lot of money, and that's where I have an issue with them. That should be a default. You should be able to get the log no matter what. The logging should be universal."
"It should confirm audit findings of the assigned area with auditees to ensure that the audit conclusions are based on an accurate understanding of the issues."
"It would be helpful if the solution could continue evolving to compete with the other solutions on the market."
"The product's customization capabilities are a bit problematic, requiring support cases for backend modifications."
"The product could use a broader scope in the area of policies."
"Their portal is very limited and needs improvement."
"They can provide an option to create reports, automatically import the entire report, and create rules again. In a real-life crisis, it would be helpful to be able to import a report and generate security rules from that report. I should be able to create a simple query and import the reports automatically. It can maybe also tell us the format of the report."
"It needs to be improved every time there are new attacks."
"The rules surrounding the making of web applications could be improved."
"Sometimes our web application firewall will slow down."
"I'd like the option to pick your bot protection."
"The solution needs additional product options for small and medium enterprises."
"In bot management, there are times when attackers find ways to bypass Akamai, which is a continuously evolving challenge."
 

Pricing and Cost Advice

"For Cloudflare, I recommend it heavily for small businesses with revenue under a couple of million dollars. Onboarding is easy, and they even have a free plan. This makes it simple for businesses in the $100,000-$500,000 range to try it out and see its value, allowing them to scale up their infrastructure as needed."
"Cloudflare's pricing is not much higher and is good for middle-level organizations."
"I believe their performance has improved, but I'd like to refrain from discussing the pricing aspect related to the cloud. The pricing, in my opinion, could be simplified, and I think they should consider reevaluating the pricing for support, as it can be quite high. At times, this cost can make it challenging to choose CARFAGuard or opt for the support."
"The cost primarily depends on the size of the organization."
"The product's pricing is minimal compared to other products."
"The price of the solution is expensive."
"I give the price a five out of ten."
"The price is reasonable."
"The pricing is somewhat expensive. It is actually a huge investment when compared to other countries."
"We are satisfied with the pricing."
"For enterprise contracts you will be in touch with a dedicated account manager who will guide you regarding licensing."
"Imperva Web Application Firewall is expensive."
"The tool's pricing is good."
"There are some licenses that you have to buy to use some features. Its price could be better. Price is always important because, at the end of the day, customers have a budget. If you can meet the budget, you can sell, and if you don't, you cannot sell."
"There are a couple of different licensing models."
"Imperva Web Application Firewall price is higher compared to other solutions. However, everything is included in the price."
"The pricing is a pay-as-you-go model that is charged by the hour."
report
Use our free recommendation engine to learn which Distributed Denial-of-Service (DDoS) Protection solutions are best for your needs.
884,873 professionals have used our research since 2012.
 

Comparison Review

it_user68487 - PeerSpot reviewer
Security Expert with 51-200 employees
Nov 6, 2013
CloudFlare vs Incapsula: Web Application Firewall
CloudFlare vs Incapsula: Round 2 Web Application Firewall Comparative Penetration Testing Analysis Report v1.0 Summary This document contains the results of a second comparative penetration test conducted by a team of security specialists at Zero Science Lab against two cloud-based Web…
 

Top Industries

By visitors reading reviews
Financial Services Firm
10%
Comms Service Provider
10%
Computer Software Company
9%
Manufacturing Company
8%
Financial Services Firm
12%
Manufacturing Company
9%
Computer Software Company
9%
Comms Service Provider
6%
Financial Services Firm
29%
Comms Service Provider
17%
Manufacturing Company
9%
Computer Software Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise8
Large Enterprise26
By reviewers
Company SizeCount
Small Business84
Midsize Enterprise25
Large Enterprise62
No data available
 

Questions from the Community

Which is the best DDoS protection solution for a big ISP for monitoring and mitigating?
Cloudflare. We are moving from Akamai prolexic to Cloudflare. Cloudflare anycast network outperforms Akamai static GR...
Which would you choose - Cloudflare DNS or Quad9?
Cloudflare DNS is a very fast, very reliable public DNS resolver. It is an enterprise-grade authoritative DNS service...
What do you like most about Cloudflare?
Cloudflare offers CDN and DDoS protection. We have the front end, API, and database in how you structure applications.
Which Web Application Firewall (WAF) would you recommend? R&S or Imperva?
Imperva is a strong choice, given their security focus and ongoing R&D into the product in areas such as bot mana...
What is your experience regarding pricing and costs for Imperva DDoS?
The pricing, setup costs, and licensing of Imperva DDoS are reasonable for the amount of technical capabilities provi...
What needs improvement with Imperva DDoS?
I would like to see improvements in the pooling of threats and attacks, possibly to enlarge the scale of indicators o...
What needs improvement with Akamai Prolexic Routed?
For the DDoS protection, I don't see any areas for improvement because they are pretty solid there, though in bot man...
What is your primary use case for Akamai Prolexic Routed?
The main use case for DDoS protection is to mitigate risks, and there are multiple ways Akamai provides DDoS protecti...
What advice do you have for others considering Akamai Prolexic Routed?
We have a couple of products, including DDoS protection, WAF, and Bot Manager. There are two ways Akamai does DDoS pr...
 

Also Known As

Cloudflare DNS
Imperva Bot Management, Imperva Web Application Firewall, Imperva API Security
Akamai Prolexic Routed
 

Overview

 

Sample Customers

Trusted by over 9,000,000 Internet Applications and APIs, including Nasdaq, Zendesk, Crunchbase, Steve Madden, OkCupid, Cisco, Quizlet, Discord and more.
Hitachi, BNZ, Bitstamp, Moz, InnoGames, BTCChina, Wix, LivePerson, Zillow and more.
Fidor Bank
Find out what your peers are saying about Imperva Application Security Platform vs. Prolexic and other solutions. Updated: March 2026.
884,873 professionals have used our research since 2012.