Citrix Web App and API Protection vs Rapid7 AppSpider comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary

We performed a comparison between Citrix Web App and API Protection and Rapid7 AppSpider based on real PeerSpot user reviews.

Find out what your peers are saying about Amazon, Microsoft, F5 and others in Web Application Firewall (WAF).
To learn more, read our detailed Web Application Firewall (WAF) Report (Updated: March 2024).
765,234 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"When our primary link goes down I can still get to my Cisco devices and the NetScaler devices on-prem because of the SDN solution. If the internet connection at one of the branches goes down, we can still route them, they still get internet based on the SDN solution through one of the other sites. They can carry on working.""Citrix Web App API Protection allows you to enable a blocking mode""The work balancing applications are the most valuable feature.""The web application firewall which protects our services on the internet, and then of course services like our ability to provide high availability for the services we are offering are the most valuable features.""The advantage of Citrix Web App and API Protection is just its graphic user interface for beginners. The solution is nothing special, but we have to use it for the corporation. Another advantage of Citrix Web App and API Protection is that we have our copy to test things and get the know-how of it.""I like the solution's simplicity compared to Citrix's on-prem solutions.""The solution's technical support is good.""I prefer this solution because of its user-friendly interface. I find it simple and close to what I am currently using, which is Citrix Fortiva Access for Multi-Factor Authentication. I appreciate the familiar user interface and troubleshooting tools it offers."

More Citrix Web App and API Protection Pros →

"I would say that it is stable, as I am not aware of any major issues.""Rapid7 AppSpider is good at managing different applications. It uses applets and generates reports to cover the PCA/GDPR compliance requirements.""It is really accurate and the rate of false positives is very low.""The entire solution is interactive and has a point-and-click user experience, which makes it easy to find items or drill down on information. You don't need specialized skills to use the product.""It scans all the components developed within a web application.""The initial deployment is very straightforward and simple. The product is stable if configured properly.""I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us.""When it is set up properly, it can do scanning on web apps with multiple engines automatically."

More Rapid7 AppSpider Pros →

Cons
"Security could be improved because then I can get rid of my Cisco firewalls. If they improve the security then I could run my security, my proxy, my firewalling and my SDN solution on one device instead of having to have multiple devices.""Their upgrades are not very backward compatible, and sometimes they mess up.""The user interface could be more friendly. Some wizards and other documentation for administrators, as well as some use cases, helps us to understand the solution.""An area for improvement in Citrix Web App and API Protection is for it to give real-time notifications and alerts. It would be practical if the solution warns you if there's an attack or if the load or traffic volume increases or decreases. An additional feature I'd like to see in Citrix Web App and API Protection is a prediction or artificial intelligence on what is happening, for example, attacks.""The reporting is not so good. They don't have an application to connect the logs.""I am not an expert in this solution, but simplicity and user-friendly interfaces are crucial for me. I would appreciate advice from Citrix, particularly in the form of an interactive guide for API protection. It would be helpful if they could provide specific points and recommendations for cybersecurity, indicating areas that need attention or improvement. I find such interactive guidance valuable.""Citrix Web App and API Protection could improve in the area of licensing""The solution's pricing is a big concern and should be improved."

More Citrix Web App and API Protection Cons →

"The enterprise interface is too simple. It should be more customizable.""AppSpider could improve in the area of integration. They need to add more integration opportunities.""There are some glitches with stability, and it is an area for improvement.""The solution is too slow. It could take a full day to scan. Competitors are much faster.""Implementing Rapid7 AppSpider requires scanning and self-identification mechanisms. You can add different types of authentication to each scan.""One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions.""The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution.""The dashboard and interface are crucial and they need some improvement."

More Rapid7 AppSpider Cons →

Pricing and Cost Advice
  • "We have all the features and functions of Citrix because we have a premium license."
  • "For partners, NetScaler is not as expensive price-wise versus F5."
  • "Citrix Web App and API Protection are in the middle when we talk about pricing and licensing"
  • "The pricing for Citrix Web App and API Protection is unreasonable. I don't know the exact price, but I heard it's tens of thousands and it's a bit too much for the small country I live in."
  • "The solution is expensive compared to one of its competitors."
  • "On a scale from one to ten, where one is cheap, and ten is expensive, I rate the solution's pricing an eight or nine out of ten."
  • "I rate the pricing an eight out of ten since it is expensive."
  • "In Turkey, everything is good, but it seems expensive for us due to the currency exchange. I don't have a specific rating scale, but if I had to rate the price, I would say it's around a six out of ten."
  • More Citrix Web App and API Protection Pricing and Cost Advice →

  • "It is expensive if you want to buy the Enterprise version that is able to scan multiple applications at once."
  • "The price is pretty fair."
  • "The licensing cost depends on the number of users."
  • "AppSpider is closed-source software and you need to acquire a license in order to use it."
  • "The price of Rapid7 AppSpider cost 9,000 annually but there is limited usage. Large companies are able to negotiate a better price or a better deal for the usage with the vendor."
  • More Rapid7 AppSpider Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
    765,234 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:I prefer this solution because of its user-friendly interface. I find it simple and close to what I am currently using, which is Citrix Fortiva Access for Multi-Factor Authentication. I appreciate the… more »
    Top Answer:In Turkey, everything is good, but it seems expensive for us due to the currency exchange. I don't have a specific rating scale, but if I had to rate the price, I would say it's around a six out of… more »
    Top Answer:I am not an expert in this solution, but simplicity and user-friendly interfaces are crucial for me. I would appreciate advice from Citrix, particularly in the form of an interactive guide for API… more »
    Top Answer:The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all… more »
    Top Answer:The price of Rapid7 AppSpider cost 9,000 annually but there is limited usage. Large companies are able to negotiate a better price or a better deal for the usage with the vendor. The price of the… more »
    Top Answer:The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution.
    Ranking
    Views
    1,549
    Comparisons
    940
    Reviews
    6
    Average Words per Review
    430
    Rating
    7.3
    Views
    1,380
    Comparisons
    1,011
    Reviews
    3
    Average Words per Review
    429
    Rating
    7.3
    Comparisons
    Also Known As
    Citrix NetScaler AppFirewall , Citrix Web App Firewall
    AppSpider
    Learn More
    Overview

    Citrix Web App Firewall is a web application firewall (WAF) that protects web applications and sites from both known and unknown attacks, including application-layer and zero-day threats. Despite an ever-evolving threat landscape, Citrix Web App Firewall delivers comprehensive protection without degrading throughput or application response times. Available as a cloud solution or integrated within the Citrix ADC platform, simplified configuration controls further mitigate risk. Our pooled licensing options allow you to grow incrementally and scale on demand.

    SPAs, APIs, mobile—the evolution of application technology is measured in months, not years. Is your web application security testing tool designed to keep up? AppSpider lets you collect all the information needed to test all the apps so that you aren’t left with gaping application risks.

    Our dynamic application security testing (DAST) solution crawls to the deepest, darkest corners of even the most modern and complex apps to effectively test for risk and get you the insight you need to remediate faster. With AppSpider on your side (or, rather, all of your sides), you’ll be able to scan all the apps today and always be ready for whatever comes next.

    Sample Customers
    NSS Labs, ICSA Labs
    Microsoft
    Top Industries
    VISITORS READING REVIEWS
    Educational Organization56%
    Computer Software Company10%
    Financial Services Firm8%
    Government4%
    REVIEWERS
    Financial Services Firm33%
    University33%
    Comms Service Provider33%
    VISITORS READING REVIEWS
    Computer Software Company18%
    Financial Services Firm15%
    Government8%
    Healthcare Company6%
    Company Size
    REVIEWERS
    Small Business36%
    Large Enterprise64%
    VISITORS READING REVIEWS
    Small Business9%
    Midsize Enterprise61%
    Large Enterprise30%
    REVIEWERS
    Small Business54%
    Midsize Enterprise15%
    Large Enterprise31%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise15%
    Large Enterprise66%
    Buyer's Guide
    Web Application Firewall (WAF)
    March 2024
    Find out what your peers are saying about Amazon, Microsoft, F5 and others in Web Application Firewall (WAF). Updated: March 2024.
    765,234 professionals have used our research since 2012.

    Citrix Web App and API Protection is ranked 19th in Web Application Firewall (WAF) with 10 reviews while Rapid7 AppSpider is ranked 25th in Application Security Testing (AST) with 13 reviews. Citrix Web App and API Protection is rated 7.8, while Rapid7 AppSpider is rated 7.8. The top reviewer of Citrix Web App and API Protection writes "Has a good graphic user interface for beginners, but lacks real-time notifications, alerts, and artificial intelligence". On the other hand, the top reviewer of Rapid7 AppSpider writes "Useful vulnerability reporting data, flexible, and simple implementation". Citrix Web App and API Protection is most compared with F5 Advanced WAF, Azure Front Door, Fortinet FortiWeb, AWS WAF and Akamai App and API Protector, whereas Rapid7 AppSpider is most compared with Rapid7 InsightAppSec, OWASP Zap, Acunetix, Tenable.io Web Application Scanning and Invicti.

    We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.