We performed a comparison between Acunetix and HCL AppScan based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It comes equipped with an internal applicator, which automatically identifies and addresses vulnerabilities within the program."
"I haven't seen reporting of that level in any other tool."
"The tool's most valuable feature is scan configurations. We use it for external physical applications. The scanning time depends on the application's code."
"We are able to create a report which shows the PCI DSS scoring and share it with the application teams. Then, they can correlate and see exactly what they need to fix, and why."
"The automated approach to these repetitive discovery attempts would take days to do manually and therefore it helps reduce the time needed to do an assessment."
"The most valuable feature of the solution is the speed at which it can scan multiple domains in just a few hours."
"We use the solution for the scanning of vulnerabilities like SQL injections."
"The most important feature is that it's a web-based graphical user interface. That is a great addition. Also, the ability to schedule scans is great."
"We are now deploying less defects to production."
"Technical support is helpful."
"The most valuable feature of HCL AppScan is scanning QR codes."
"The reporting part is the most valuable feature."
"AppScan is stable."
"The UI was very intuitive."
"You can easily find particular features and functions through the UI."
"This is a stable solution."
"Acunetix needs to be dynamic with JavaScript code, unlike Netsparker which can scan complex agents."
"The vulnerability identification speed should be improved."
"The solution's pricing could be better."
"When monitoring the traffic we always have issues with the bandwidth consumption and the throttling of traffic."
"There are some versions of the solution that are not as stable as others."
"The pricing is a bit on the higher side."
"Tools that would allow us to work more efficiently with the mobile environment, with Android and iOS."
"You can't actually change your password after you've set it unless you go back into the administration account and you change it there. Thus, if you're locked out and don't remember your password, that's a thing."
"Visibility is an issue for us. Our partners do not know we have integrations with some of IBM products."
"IBM Security AppScan needs to add performance optimization for quickly scanning the target web applications."
"The dashboard, for AppScan or the Fortified fast tool, which we use needs to be improved."
"There is not a central management for static and dynamic."
"HCL AppScan needs to improve security."
"The tool should improve its output. Scanning is not a challenge anymore since there are many such tools available in the market. The product needs to focus on how its output is being used by end users. It should be also more user-friendly. One of the major challenges is in the tool's integration with applications that need to be scanned. Sometimes, the scanning is not proper."
"The product has some technical limitations."
"The solution's scalability can be a matter of concern because one license runs on one machine only."
Acunetix is ranked 16th in Application Security Tools with 26 reviews while HCL AppScan is ranked 14th in Application Security Tools with 39 reviews. Acunetix is rated 7.6, while HCL AppScan is rated 7.6. The top reviewer of Acunetix writes "Fantastic reporting features hindered by slow scanning ". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". Acunetix is most compared with OWASP Zap, Tenable.io Web Application Scanning, PortSwigger Burp Suite Professional, Fortify WebInspect and Veracode, whereas HCL AppScan is most compared with SonarQube, Veracode, Checkmarx One, PortSwigger Burp Suite Professional and OWASP Zap. See our Acunetix vs. HCL AppScan report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.