We performed a comparison between GitLab and HCL AppScan based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Git hosting has an integration with ACD which is why we liked this solution in the first place."
"I have had no problem with the stability of the solution."
"It is scalable."
"The merging feature makes it easy later on for the deployment."
"The solution has an established roadmap that lays out its plans for upgrades over the next two to three years."
"The solution is stable."
"The most valuable feature of GitLab is its security."
"The solution's service delivery model is fantastic."
"The UI was very intuitive."
"Technical support is helpful."
"We leverage it as a quality check against code."
"We use it as a security testing application."
"It's generally a very user-friendly tool. Anyone can easily learn how to scan"
"It was easy to set up."
"IBM AppScan has made our work easy, as we can do four to five scans of websites at a time, which saves time when it comes to vulnerability."
"The reporting part is the most valuable feature."
"The solution could be faster."
"GitLab would be improved with the addition of templates for deployment on local PCs."
"I would like to have some features to support peer review."
"The only thing our company is really waiting on in terms of features is the development of metrics."
"The user interface could be more user-friendly. We do most of our operations through the website interface but it could be better."
"Expand features to match other tools such as a static code analysis tool so third-party integrations are not required."
"Some of the scripts that we encountered in GitLab were not fully functional and threw up errors."
"I've noticed an area for improvement in GitLab, particularly needing to go through many steps to push the code to the repository. Resolving that issue would make the product better. My team quickly fixed it by writing a small script, then double-clicking or enabling the script to take care of the issue. However, that quick fix was from my team and not the GitLab team, so in the next release, if an automatic deployment feature would be available in GitLab, then that would be good because, in Visual Studio, you can do that with just one click of a button."
"They have to improve support."
"IBM Security AppScan needs to add performance optimization for quickly scanning the target web applications."
"We have experienced challenges when trying to integrate this solution with other products. When you compare it with the other SecOps products, the quality of the output is too low. It is not a new-age product. It is very outdated."
"It has crashed at times."
"The tool should improve its output. Scanning is not a challenge anymore since there are many such tools available in the market. The product needs to focus on how its output is being used by end users. It should be also more user-friendly. One of the major challenges is in the tool's integration with applications that need to be scanned. Sometimes, the scanning is not proper."
"We would like to integrate with some of the other reporting tools that we're planning to use in the future."
"The solution's scalability can be a matter of concern because one license runs on one machine only."
"They should have a better UI for dashboards."
GitLab is ranked 7th in Application Security Tools with 70 reviews while HCL AppScan is ranked 14th in Application Security Tools with 39 reviews. GitLab is rated 8.6, while HCL AppScan is rated 7.6. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". GitLab is most compared with Microsoft Azure DevOps, Bamboo, AWS CodePipeline, SonarQube and Tekton, whereas HCL AppScan is most compared with SonarQube, Veracode, Acunetix, Checkmarx One and PortSwigger Burp Suite Professional. See our GitLab vs. HCL AppScan report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.