We performed a comparison between HCL AppScan and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's generally a very user-friendly tool. Anyone can easily learn how to scan"
"We use it as a security testing application."
"We are now deploying less defects to production."
"The reporting part is the most valuable feature."
"The most valuable feature of the solution is Postman."
"This solution saves us time due to the low number of false positives detected."
"The most valuable feature of the solution is the scanning or security part."
"We leverage it as a quality check against code."
"Its most valuable features are patch management, vulnerability management, and PCI compliance."
"The product prevents possible vulnerabilities in our network."
"The simplicity of exporting reports and the simplicity and clarity of the reports included with the product are good."
"Qualys WAS' most valuable features are the navigation flow of the UI and the option for a different layer of security (identification and operation through email and mobile)."
"The interface is user-friendly and easy to understand."
"The Qualys Web Application Scanning solution offers a single comprehensive console and consolidated reporting, covering all aspects from on-prem to cloud and compliance, etcetera."
"Qualys Web Application Scanning has multiple features like threat protection and container security scanning in one box."
"It is easy to use."
"The databases for HCL are small and have room for improvement."
"It's a little bit basic when you talk about the Web Services. If AppScan improved its maturity on Web Services testing, that would be good."
"They have to improve support."
"The tool should improve its output. Scanning is not a challenge anymore since there are many such tools available in the market. The product needs to focus on how its output is being used by end users. It should be also more user-friendly. One of the major challenges is in the tool's integration with applications that need to be scanned. Sometimes, the scanning is not proper."
"We have experienced challenges when trying to integrate this solution with other products. When you compare it with the other SecOps products, the quality of the output is too low. It is not a new-age product. It is very outdated."
"We would like to integrate with some of the other reporting tools that we're planning to use in the future."
"IBM Security AppScan Source is rather hard to use."
"I would like to see the roadmap for this product. We are still waiting to see it as we have only so many resources."
"The product should allow users to upload their payloads."
"Qualys Web Application Scanning is very complex to use, and its graphical interface is not very user-friendly."
"The scanner reports a lot of false positives, which is something that needs to be improved."
"There should be better visibility into the application."
"The solution needs to adjust its pricing. They should make it more affordable."
"The UI is not user-friendly and you don't have a yearly reporting facility where you can slice and dice in different jobs."
"The GUI could be a little less complicated as it opens a lot of new windows for creating search lists, templates, reports, or for scanning purposes."
"It should have better automatic reporting."
More Qualys Web Application Scanning Pricing and Cost Advice →
HCL AppScan is ranked 14th in Application Security Tools with 41 reviews while Qualys Web Application Scanning is ranked 19th in Application Security Tools with 31 reviews. HCL AppScan is rated 7.8, while Qualys Web Application Scanning is rated 7.8. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, PortSwigger Burp Suite Professional and Snyk, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and Acunetix. See our HCL AppScan vs. Qualys Web Application Scanning report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.