We performed a comparison between Acunetix and HCL AppScan based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The scalability is good. The scalability is more than good because it can operate both as a standalone and it can be integrated as part of applications. So that really makes it a very, very versatile solution to have."
"Overall, it's a very good tool and a very good engine."
"Picks up weaknesses in our app setups."
"Our developers can run the attacks directly from their environments, desktops."
"It can operate both as a standalone and it can be integrated with other applications, which makes it a very versatile solution to have."
"The usability and overall scan results are good."
"The most valuable feature of the solution is the speed at which it can scan multiple domains in just a few hours."
"Acunetix has an awesome crawler. It gives a referral site map of near targets and also goes really deep to find all the inputs without issues. This was valuable because it helped me find some files or directories, like web admin panels without authentication, which were hidden."
"The static scans are good, and the SaaS as well."
"The solution is easy to use."
"It provides a better integration for our ecosystem."
"The security and the dashboard are the most valuable features."
"It is a stable solution...It is a scalable solution...The initial setup or installation of HCL AppScan is easy."
"AppScan is stable."
"It identifies all the URLs and domains on its own and then performs tests and provides the results."
"The product has valuable features for static and dynamic testing."
"Currently only supports web scanning."
"When monitoring the traffic we always have issues with the bandwidth consumption and the throttling of traffic."
"Acunetix needs to include agent analysis."
"It would be nice to have a feature to "retest" only a single vulnerability that the customer reports as patched, and delete it from the next scans since it has already been patched."
"You can't actually change your password after you've set it unless you go back into the administration account and you change it there. Thus, if you're locked out and don't remember your password, that's a thing."
"While we do have it integrated with other solutions, it could still offer more integrations."
"It should be easier to recreate something manually, with the manual tool, because Acunetix is an automatic tool. If it finds something, it should be easier to manually replicate it. Sometimes you don't get the raw data from the input and output, so that could be improved."
"The only problem that they have is the price. It is a bit expensive, and you cannot change the number of applications for the whole year."
"I think being able to search across more containers, especially some of the docker elements. We need a little tighter integration there. That's the only thing I can see at this point."
"Sometimes it doesn't work so well."
"The product has some technical limitations."
"The dashboard, for AppScan or the Fortified fast tool, which we use needs to be improved."
"The solution's scalability can be a matter of concern because one license runs on one machine only."
"The solution often has a high number of false positives. It's an aspect they really need to improve upon."
"I would like to see the roadmap for this product. We are still waiting to see it as we have only so many resources."
"The databases for HCL are small and have room for improvement."
Acunetix is ranked 16th in Application Security Tools with 26 reviews while HCL AppScan is ranked 14th in Application Security Tools with 39 reviews. Acunetix is rated 7.6, while HCL AppScan is rated 7.6. The top reviewer of Acunetix writes "Fantastic reporting features hindered by slow scanning ". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". Acunetix is most compared with OWASP Zap, Tenable.io Web Application Scanning, PortSwigger Burp Suite Professional, Fortify WebInspect and Veracode, whereas HCL AppScan is most compared with SonarQube, Veracode, Checkmarx One, PortSwigger Burp Suite Professional and OWASP Zap. See our Acunetix vs. HCL AppScan report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.