We performed a comparison between HCL AppScan and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."IBM AppScan has made our work easy, as we can do four to five scans of websites at a time, which saves time when it comes to vulnerability."
"We use it as a security testing application."
"It identifies all the URLs and domains on its own and then performs tests and provides the results."
"AppScan is stable."
"You can easily find particular features and functions through the UI."
"This solution saves us time due to the low number of false positives detected."
"It is easy it is to use. It is quick to find things, because of the code scanning tools. It's quite simple to use and it is very good the way it reports the findings."
"The most valuable feature of HCL AppScan is its integration with the SDLC, particularly during the coding phase."
"The most valuable feature is that we are able to scan the services and put credentials like a user ID password. We can verify the vulnerability level."
"Licensing is the most valuable. Qualys provides the best licensing for companies. It is the best product for the development purposes of web applications. The product has a lot of integrations."
"The interface is user-friendly and easy to understand."
"We have experienced quick customer support. They have a complete list of our previous issues along with our history, which makes it faster for them to solve issues."
"The most valuable feature of Qualys Web Application Scanning is the effective scanning that can be done."
"The product prevents possible vulnerabilities in our network."
"It is a good product for website penetration testing to detect vulnerabilities."
"It is easy to use."
"IBM Security AppScan Source is rather hard to use."
"Improvement can be done as per customer requirements."
"Scans become slow on large websites."
"I would love to see more containers. Many of the tools are great, they require an amount of configuration, setup and infrastructure. If most the applications were in a container, I think everything would be a little bit faster, because all our clients are now using containers."
"They could add a software component analysis tool."
"There is room for improvement in the pricing model."
"AppScan is too complicated and should be made more user-friendly."
"The solution could improve by having a mobile version."
"In terms of the Policy Compliance model which they currently have, not all the platforms are being covered. If they could improve on the Policy Compliance model, since there are policies which are benchmarked against it, this will be helpful for us."
"They should try to include business logic vulnerabilities in the scanner testing."
"The scanner reports a lot of false positives, which is something that needs to be improved."
"There should be better visibility into the application."
"The product should allow users to upload their payloads."
"The software’s pricing could be improved."
"The solution needs to adjust its pricing. They should make it more affordable."
"The virus code updates are not frequent enough."
More Qualys Web Application Scanning Pricing and Cost Advice →
HCL AppScan is ranked 14th in Application Security Tools with 41 reviews while Qualys Web Application Scanning is ranked 19th in Application Security Tools with 31 reviews. HCL AppScan is rated 7.8, while Qualys Web Application Scanning is rated 7.8. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, PortSwigger Burp Suite Professional and Snyk, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and Acunetix. See our HCL AppScan vs. Qualys Web Application Scanning report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.