We performed a comparison between Acunetix and HCL AppScan based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Their technical support has been very active. If I have an issue, I can reach out to them and get an answer pretty quick."
"The automated approach to these repetitive discovery attempts would take days to do manually and therefore it helps reduce the time needed to do an assessment."
"One of the features that I feel is groundbreaking, that I would like to see expanded on, is the IAS feature: The Interactive Application Security Testing module that gets loaded onto an application on a server, for more in-depth, granular findings. I think that is really neat. I haven't seen a lot of competitors doing that."
"We use the solution for the scanning of vulnerabilities like SQL injections."
"The most important feature is that it's a web-based graphical user interface. That is a great addition. Also, the ability to schedule scans is great."
"It comes equipped with an internal applicator, which automatically identifies and addresses vulnerabilities within the program."
"Acunetix has an awesome crawler. It gives a referral site map of near targets and also goes really deep to find all the inputs without issues. This was valuable because it helped me find some files or directories, like web admin panels without authentication, which were hidden."
"The scalability is good. The scalability is more than good because it can operate both as a standalone and it can be integrated as part of applications. So that really makes it a very, very versatile solution to have."
"The solution is easy to use."
"AppScan is stable."
"We are now deploying less defects to production."
"The UI was very intuitive."
"Compared to other tools only AppScan supports special language."
"It comes with all of the templates that we need. For example, we are a company that is regulated by PCI. In order to be PCI compliant, we have a lot of checks and procedures to which we have to comply."
"You can easily find particular features and functions through the UI."
"There's extensive functionality with custom rules and a custom knowledge base."
"Integration into other tools is very limited for Acunetix. While we're trying to incorporate a CI/CD process where we're integrating with JIRA and we're integrating with Jenkins and Chef, it becomes problematic. Other tools give you a high integration capability to connect into different solutions that you may already have, like JIRA."
"Tools that would allow us to work more efficiently with the mobile environment, with Android and iOS."
"The vulnerability identification speed should be improved."
"Acunetix needs to be dynamic with JavaScript code, unlike Netsparker which can scan complex agents."
"It would be nice to have a feature to "retest" only a single vulnerability that the customer reports as patched, and delete it from the next scans since it has already been patched."
"The pricing is a bit on the higher side."
"There are some versions of the solution that are not as stable as others."
"When monitoring the traffic we always have issues with the bandwidth consumption and the throttling of traffic."
"IBM Security AppScan Source is rather hard to use."
"The penetration testing feature should be included."
"The pricing has room for improvement."
"Scans become slow on large websites."
"The solution needs to improve in some areas. The tool needs to add more languages. It also needs to improve its speed."
"Sometimes it doesn't work so well."
"IBM Security AppScan needs to add performance optimization for quickly scanning the target web applications."
"They should have a better UI for dashboards."
Acunetix is ranked 17th in Application Security Tools with 26 reviews while HCL AppScan is ranked 15th in Application Security Tools with 41 reviews. Acunetix is rated 7.6, while HCL AppScan is rated 7.8. The top reviewer of Acunetix writes "Fantastic reporting features hindered by slow scanning ". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". Acunetix is most compared with OWASP Zap, Tenable.io Web Application Scanning, PortSwigger Burp Suite Professional, Fortify WebInspect and Veracode, whereas HCL AppScan is most compared with SonarQube, Veracode, OWASP Zap, PortSwigger Burp Suite Professional and Checkmarx One. See our Acunetix vs. HCL AppScan report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.