We performed a comparison between CAST Highlight and HCL AppScan based on real PeerSpot user reviews.
Find out in this report how the two Software Composition Analysis (SCA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It offers good performance."
"The most valuable features of CAST Highlight are automation and speed."
"The way it tells you which codebase is more ready for the cloud and which codebase is less ready is very valuable. It works seamlessly with most languages."
"CAST Highlight is easy to use and has a good dashboard."
"The most valuable features of the CAST Highlight are the interface and there are three notations that are very simple to understand and communicate with."
"The HCL AppScan turnaround time for Burp Suite or any new feature request is pretty good, and that is why we are sticking with the HCL."
"For me, as a manager, it was the ease of use. Inserting security into the development process is not normally an easy project to do. The ability for the developer to actually use it and get results and focuses, that's what counted."
"The reporting part is the most valuable feature."
"The static scans are good, and the SaaS as well."
"Usually when we deploy the application, there is a process for ethical hacking. The main benefit is that, the ethical hacking is almost clean, every time. So it's less cost, less effort, less time to production."
"The UI was very intuitive."
"Compared to other tools only AppScan supports special language."
"IBM AppScan has made our work easy, as we can do four to five scans of websites at a time, which saves time when it comes to vulnerability."
"There's a bit of a learning curve at the outset."
"CAST Highlight could improve to allow us to comment and do a deep analysis by ourselves."
"The ease of configuration and customization could be improved in CAST Highlight."
"Its price should be better. It is a pretty costly tool. They have two products: CAST Highlight and CAST AIP. I would expect CAST Highlight to have the Help dashboard and the Engineering dashboard. These dashboards are currently a part of CAST AIP, and if these are made available in CAST Highlight, customers won't have to use two different products all the time."
"The reports that describe the issues of concern are rather abstract and the issues should be more clearly described to the user."
"I would like to see the roadmap for this product. We are still waiting to see it as we have only so many resources."
"There are so many lines of code with so many different categories that I am likely to get lost. "
"Scans become slow on large websites."
"They could add a software component analysis tool."
"Sometimes it doesn't work so well."
"The pricing has room for improvement."
"There is not a central management for static and dynamic."
"We would like to integrate with some of the other reporting tools that we're planning to use in the future."
CAST Highlight is ranked 10th in Software Composition Analysis (SCA) with 5 reviews while HCL AppScan is ranked 15th in Application Security Tools with 40 reviews. CAST Highlight is rated 7.8, while HCL AppScan is rated 7.6. The top reviewer of CAST Highlight writes "Easy to set up with optimized and automated insights". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". CAST Highlight is most compared with SonarQube, Snyk, Veracode, Checkmarx One and Black Duck, whereas HCL AppScan is most compared with SonarQube, Veracode, Acunetix, PortSwigger Burp Suite Professional and OWASP Zap. See our CAST Highlight vs. HCL AppScan report.
We monitor all Software Composition Analysis (SCA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.