Qualys Web Application Scanning Review

It showed us vulnerabilities that we were not aware of and did not know how to test for. The organization of the assets was a little confusing and overwhelming.


What is most valuable?

  • Ease of use and setup
  • Visibility into our environment

How has it helped my organization?

WAS gave us visibility into our externally exposed web applications and showed us vulnerabilities that we were not aware of and did not know how to test for. We didn't need any knowledge of these vulnerabilities or how they worked to scan for them and to gain the visibility.

What needs improvement?

The organization of the assets was a little confusing and overwhelming. The system could also use some work in pivoting from a VM scan to add the servers with web applications exposed to the WAS server. It frequently created WAS assets that did not have web applications.

For how long have I used the solution?

I have been using it for 18 months.

What was my experience with deployment of the solution?

Scalability would be tough because of how the endpoints are organized. We did not have any issues with deployment or stability.

How are customer service and technical support?

We had a dedicated Technical Account Manager and the support was great.

Which solution did I use previously and why did I switch?

We did not previously use a different solution.

How was the initial setup?

Setup of WAS is pretty straightforward and only the organization of endpoints is a bit complex.

What about the implementation team?

Implementation was very simple because we were only using the cloud product and did not have any on-prem scanners.

What was our ROI?

Being able to gain visibility into our environment created a great ROI and licensing for us was competitive, but would have made it tough to scale to our whole internal environment.

**Disclosure: I am a real user, and this review is based on my own experience and opinions.
More Qualys Web Application Scanning reviews from users
...who work at a Financial Services Firm
...who compared it with Rapid7 AppSpider
Add a Comment
Guest