My primary use case of this solution is to audit the security level of my customer's internet. We offer this as a service.
Qualys Web Application Scanning Review
Enables us to identify vulnerability levels and to enforce security credentials
What is our primary use case?
What is most valuable?
The most valuable feature is that we are able to scan the services and put credentials like a user ID password. We can verify the vulnerability level.
What needs improvement?
They should improve the performance of the security scanning. It should have better performance.
For how long have I used the solution?
I have been using Qualys for fifteen years.
What do I think about the stability of the solution?
The stability is very good.
What do I think about the scalability of the solution?
The scalability is very good. It is very easy to expand this solution. We scan on an IP address basis. We have credit for 250 IP addresses, and we are free to use it in our user environment, or on the cloud.
We have around twenty users using this solution.
How are customer service and technical support?
Their technical support is good. We don't use them frequently because we offer that service.
Which solution did I use previously and why did I switch?
I also checked Rapid7 for internal scanning. I picked Qualys for a specific use. It's a SaaS service. We use it to audit the security level of my customer's internet.
How was the initial setup?
The initial setup is straightforward. A deployment that we did last week took four hours in order to launch it.
What about the implementation team?
I am an integrator. I work for an integration company. I do the deployments.
What's my experience with pricing, setup cost, and licensing?
Our licensing costs are on a yearly basis. We buy a group of IP addresses we can scan on a yearly basis.
What other advice do I have?
I would advise someone considering this product is to find a solution that is easy to use. We use this solution because we need to.
I would rate it an eight out of ten. Not a ten because the reporting needs improvement. It should have better automatic reporting.
**Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller.
Last updated: Aug 22 2019
More Qualys Web Application Scanning reviews from users...who work at a Financial Services Firm
...at Large Enterprises
...who compared it with Rapid7 AppSpider
Find out what your peers are saying about Qualys, Veracode, Acunetix and others in Application Security. Updated: April 2021.
475,208 professionals have used our research since 2012.
Author
Consultab6ea
Consultant at a tech services company with 1,001-5,000 employees
Reseller
Highlights
Pros
The most valuable feature is that we are able to scan the services and put credentials like a user ID password. We can verify the vulnerability level.
Cons
It should have better automatic reporting.
Popular Comparisons
PortSwigger Burp Suite Professional
Fortify WebInspect
Acunetix Vulnerability Scanner
Rapid7 InsightAppSec
Sonatype Nexus Lifecycle
Micro Focus Fortify on Demand
Netsparker Web Application Security Scanner
Rapid7 AppSpider
Buyer's Guide
Download our free Application Security Report and find out what your peers are saying about Qualys, Veracode, Acunetix, and more!
Quick Links
Learn More: Questions:
- When evaluating Application Security, what aspect do you think is the most important to look for?
- What are the threats associated with using ‘bogus’ cybersecurity tools?
- How was the 2020 Twitter Hack carried out? How could it have been prevented?
- Is SonarQube the best tool for static analysis?
- SAST vs. DAST: Which is better for application security testing?
- What are the OWASP top 10 in 2020?