"We have several proxies in our environment, so we localized internet traffic between these proxies. Instead of getting a really huge proxy box, according to our size, we can use three boxes and share the traffic with A10's load-balancer feature."
"Its most valuable feature is its ability to do its job accurately, effectively, and very quickly. The amount of traffic that we have going through our system is astounding... The delay with the SSL decryption turned on is almost unnoticeable."
"With the Thunder SSLi, we're better protected. We can stop use of VPN and proxies. We are better protected against dirty traffic coming back to our schools. Having a secure decrypt zone with the equipment lowers the chances that our security infrastructure could possibly miss an attack."
"The most valuable feature is the reporting, which is compliant with international standards."
"The entire solution is interactive and has a point-and-click user experience, which makes it easy to find items or drill down on information. You don't need specialized skills to use the product."
"AppSpider's most valuable feature is reporting - everything is stored in the local database so it can be sent to other machines."
"I would say that it is stable, as I am not aware of any major issues."
"Rapid7 AppSpider is good at managing different applications. It uses applets and generates reports to cover the PCA/GDPR compliance requirements."
"The setup is usually straightforward."
"The initial deployment is very straightforward and simple. The product is stable if configured properly."
"It scans all the components developed within a web application."
"There is one thing I would like to see changed. In their features for setting things up, there is a templating system that would normally assist clients. However, we had a better time setting up the device either through the command line or through the interface and not using the templates that were pre-installed. So there is room for improvement to the templates for initial installation."
"I would like them to have a better UI (better universal design)."
"It would be great if it supported SSL operations according to Active Directory users. For example, if we want to bypass one of the servers or a client's internet access for SSL interception, we have to do it according to the IP address. It would be better if we could do it according to the Active Directory username. A10 says they kind of support that but we haven't tested it."
"The solution is too slow. It could take a full day to scan. Competitors are much faster."
"It needs better integration with mobile applications."
"AppSpider has some problems with the RAM needed while scanning."
"The product needs to be able to scale for large companies, like ours. We have millions of IP addresses that need to be scanned, and the scalability is not great."
"The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution."
"The enterprise interface is too simple. It should be more customizable."
"The tech support is responsive but issues remain unresolved."
"One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions."
Earn 20 points
A10 Networks Thunder SSLi is ranked 3rd in SSL/TLS Decryption while Rapid7 AppSpider is ranked 25th in Application Security Testing (AST) with 13 reviews. A10 Networks Thunder SSLi is rated 9.0, while Rapid7 AppSpider is rated 7.8. The top reviewer of A10 Networks Thunder SSLi writes "The SSL decryption successfully decrypts at a rate that has minimal to no impact on our end users". On the other hand, the top reviewer of Rapid7 AppSpider writes "Useful vulnerability reporting data, flexible, and simple implementation". A10 Networks Thunder SSLi is most compared with Symantec SSL Visibility Appliance, F5 BIG-IP Local Traffic Manager (LTM), Imperva Bot Management and Fortinet FortiADC, whereas Rapid7 AppSpider is most compared with Rapid7 InsightAppSec, OWASP Zap, Acunetix, Tenable.io Web Application Scanning and Invicti.
We monitor all SSL/TLS Decryption reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.