We performed a comparison between HCL AppScan and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The HCL AppScan turnaround time for Burp Suite or any new feature request is pretty good, and that is why we are sticking with the HCL."
"It was easy to set up."
"AppScan is stable."
"There's extensive functionality with custom rules and a custom knowledge base."
"We are now deploying less defects to production."
"Usually when we deploy the application, there is a process for ethical hacking. The main benefit is that, the ethical hacking is almost clean, every time. So it's less cost, less effort, less time to production."
"This solution saves us time due to the low number of false positives detected."
"The most valuable feature of the solution is the scanning or security part."
"We have experienced quick customer support. They have a complete list of our previous issues along with our history, which makes it faster for them to solve issues."
"Qualys' process of updating signatures is something we really appreciate, and it's way ahead of its industry peers."
"I have found the detection of vulnerabilities tool thorough with good results and the graphical display output to be wonderful and full of colors. It allows many types of outputs, such as bar and chart previews."
"QualysGuard web-based scanner is very useful for performing external penetration and PCI scans from remote locations."
"Qualys Web Application Scanning has multiple features like threat protection and container security scanning in one box."
"The product prevents possible vulnerabilities in our network."
"We can do scanning and submit reports straight to the customers when there are new vulnerabilities, then tell them whether they are affected or not."
"Its most valuable features are patch management, vulnerability management, and PCI compliance."
"We have experienced challenges when trying to integrate this solution with other products. When you compare it with the other SecOps products, the quality of the output is too low. It is not a new-age product. It is very outdated."
"They have to improve support."
"There are so many lines of code with so many different categories that I am likely to get lost. "
"The solution's scalability can be a matter of concern because one license runs on one machine only."
"One thing which I think can be improved is the CI/CD Integration"
"IBM Security AppScan needs to add performance optimization for quickly scanning the target web applications."
"Visibility is an issue for us. Our partners do not know we have integrations with some of IBM products."
"A desktop version should be added."
"There should be better visibility into the application."
"The product's pricing could be better."
"The reporting contains too many false positives."
"There could be better management and faster scanning."
"Qualys Web Application Scanning is very complex to use, and its graphical interface is not very user-friendly."
"The scanner reports a lot of false positives, which is something that needs to be improved."
"It should have better automatic reporting."
"The area of false positives could be improved. There are quite a number of false positives as compared to other solutions. They could probably fine tune the algorithm to be able to reduce the number of false positives being detected."
More Qualys Web Application Scanning Pricing and Cost Advice →
HCL AppScan is ranked 15th in Application Security Tools with 41 reviews while Qualys Web Application Scanning is ranked 18th in Application Security Tools with 31 reviews. HCL AppScan is rated 7.8, while Qualys Web Application Scanning is rated 7.8. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, OWASP Zap and Snyk, whereas Qualys Web Application Scanning is most compared with OWASP Zap, SonarQube, Veracode, PortSwigger Burp Suite Professional and Checkmarx One. See our HCL AppScan vs. Qualys Web Application Scanning report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.