We performed a comparison between HCL AppScan and Invicti based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature of HCL AppScan is scanning QR codes."
"It highlights, with several grades of severity, the types of vulnerabilities, so we can focus on the most severe security vulnerabilities in the code."
"There's extensive functionality with custom rules and a custom knowledge base."
"It provides a better integration for our ecosystem."
"The product has valuable features for static and dynamic testing."
"It's generally a very user-friendly tool. Anyone can easily learn how to scan"
"Compared to other tools only AppScan supports special language."
"The security and the dashboard are the most valuable features."
"The most valuable feature of Invicti is getting baseline scanning and incremental scan."
"The scanner is light on the network and does not impact the network when scans are running."
"It correctly parses DOM and JS and has really good support for URL Rewrite rules, which is important for today's websites."
"Invicti's best feature is the ability to identify vulnerabilities and manually verify them."
"This tool is really fast and the information that they provide on vulnerabilities is pretty good."
"Invicti is a good product, and its API testing is also good."
"The most attractive feature was the reporting review tool. The reporting review was very impressive and produced very fruitful reports."
"I like that it's stable and technical support is great."
"They have to improve support."
"I would like to see the roadmap for this product. We are still waiting to see it as we have only so many resources."
"One thing which I think can be improved is the CI/CD Integration"
"Visibility is an issue for us. Our partners do not know we have integrations with some of IBM products."
"IBM Security AppScan Source is rather hard to use."
"I would love to see more containers. Many of the tools are great, they require an amount of configuration, setup and infrastructure. If most the applications were in a container, I think everything would be a little bit faster, because all our clients are now using containers."
"IBM Security AppScan needs to add performance optimization for quickly scanning the target web applications."
"The product has some technical limitations."
"Asset scanning could be better. Once, it couldn't scan assets, and the issue was strange. The price doesn't fit the budget of small and medium-sized businesses."
"Maybe the ability to make a good reporting format is needed."
"The proxy review, the use report views, the current use tool and the subset requests need some improvement. It was hard to understand how to use them."
"Reporting should be improved. The reporting options should be made better for end-users. Currently, it is possible, but it's not the best. Being able to choose what I want to see in my reports rather than being given prefixed information would make my life easier. I had to depend on the API for getting the content that I wanted. If they could fix the reporting feature to make it more comprehensive and user-friendly, it would help a lot of end-users. Everything else was good about this product."
"The solution's false positive analysis and vulnerability analysis libraries could be improved."
"Netsparker doesn't provide the source code of the static application security testing."
"I think that it freezes without any specific reason at times. This needs to be looked into."
"The scanner itself should be improved because it is a little bit slow."
HCL AppScan is ranked 14th in Application Security Tools with 41 reviews while Invicti is ranked 20th in Application Security Tools with 25 reviews. HCL AppScan is rated 7.8, while Invicti is rated 8.2. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of Invicti writes "A customizable security testing solution with good tech support, but the price could be better". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, PortSwigger Burp Suite Professional and Tenable.io Web Application Scanning, whereas Invicti is most compared with OWASP Zap, Acunetix, PortSwigger Burp Suite Professional, Qualys Web Application Scanning and SonarQube. See our HCL AppScan vs. Invicti report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.