HCL AppScan vs Rapid7 AppSpider comparison

Cancel
You must select at least 2 products to compare!
HCLTech Logo
5,763 views|4,455 comparisons
Rapid7 Logo
1,380 views|1,011 comparisons
Comparison Buyer's Guide
Executive Summary

We performed a comparison between HCL AppScan and Rapid7 AppSpider based on real PeerSpot user reviews.

Find out in this report how the two Application Security Testing (AST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed HCL AppScan vs. Rapid7 AppSpider Report (Updated: March 2024).
765,386 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The HCL AppScan turnaround time for Burp Suite or any new feature request is pretty good, and that is why we are sticking with the HCL.""The most valuable feature of HCL AppScan is scanning QR codes.""The product is useful, particularly in its sensitivity and scanning capabilities.""It identifies all the URLs and domains on its own and then performs tests and provides the results.""The solution offers services in a few specific development languages.""The static scans are good, and the SaaS as well.""The solution is easy to use.""The most valuable feature of the solution is Postman."

More HCL AppScan Pros →

"The initial deployment is very straightforward and simple. The product is stable if configured properly.""It is really accurate and the rate of false positives is very low.""What I like most about AppSpider is that it's easy to use and its automated scan gives me all the details I need to know when it comes to vulnerabilities and their solutions.""The entire solution is interactive and has a point-and-click user experience, which makes it easy to find items or drill down on information. You don't need specialized skills to use the product.""AppSpider's most valuable feature is reporting - everything is stored in the local database so it can be sent to other machines.""The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all the reports exactly what we want in a flexible way.""The setup is usually straightforward.""I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us."

More Rapid7 AppSpider Pros →

Cons
"The solution needs to improve in some areas. The tool needs to add more languages. It also needs to improve its speed.""They could add a software component analysis tool.""HCL AppScan needs to improve security.""There is not a central management for static and dynamic.""Visibility is an issue for us. Our partners do not know we have integrations with some of IBM products.""It has crashed at times.""I would love to see more containers. Many of the tools are great, they require an amount of configuration, setup and infrastructure. If most the applications were in a container, I think everything would be a little bit faster, because all our clients are now using containers.""One thing which I think can be improved is the CI/CD Integration"

More HCL AppScan Cons →

"The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution.""The solution is too slow. It could take a full day to scan. Competitors are much faster.""The product needs to be able to scale for large companies, like ours. We have millions of IP addresses that need to be scanned, and the scalability is not great.""There are some glitches with stability, and it is an area for improvement.""This price of this solution is a little bit expensive.""Integration could be better.""AppSpider has some problems with the RAM needed while scanning.""AppSpider could improve in the area of integration. They need to add more integration opportunities."

More Rapid7 AppSpider Cons →

Pricing and Cost Advice
  • "AppScan is a little bit expensive. IBM needs to work a little bit on the pricing model, decreasing the license cost."
  • "With the features, that they offer, and the support, they offer, AppScan pricing is on a higher level."
  • "Pricing was the main reason that we went ahead with this solution as they were the lowest in the market."
  • "HCL AppScan is expensive."
  • "I would rate the product's pricing a nine out of ten. The product's pricing is expensive compared to the features that they offer."
  • "The price is very expensive."
  • "The solution is moderately priced."
  • "The price of HCL AppScan is okay, in my opinion. You just buy HCL AppScan and don't pay anything anymore, meaning it is just a one-time purchase."
  • More HCL AppScan Pricing and Cost Advice →

  • "It is expensive if you want to buy the Enterprise version that is able to scan multiple applications at once."
  • "The price is pretty fair."
  • "The licensing cost depends on the number of users."
  • "AppSpider is closed-source software and you need to acquire a license in order to use it."
  • "The price of Rapid7 AppSpider cost 9,000 annually but there is limited usage. Large companies are able to negotiate a better price or a better deal for the usage with the vendor."
  • More Rapid7 AppSpider Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Application Security Testing (AST) solutions are best for your needs.
    765,386 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:The product has valuable features for static and dynamic testing.
    Top Answer:HCL AppScan generates false results. Sometimes, it incorrectly identifies requests as vulnerable when they are not vulnerable. In the ADSL feature managed, the primary objective is to identify… more »
    Top Answer:HCL AppScan efficiently scans through the website and identifies vulnerabilities for AWS. It is reducing tools day by day, making it more efficient.
    Top Answer:The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all… more »
    Top Answer:The price of Rapid7 AppSpider cost 9,000 annually but there is limited usage. Large companies are able to negotiate a better price or a better deal for the usage with the vendor. The price of the… more »
    Top Answer:The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution.
    Ranking
    Views
    5,763
    Comparisons
    4,455
    Reviews
    17
    Average Words per Review
    339
    Rating
    7.2
    Views
    1,380
    Comparisons
    1,011
    Reviews
    3
    Average Words per Review
    429
    Rating
    7.3
    Comparisons
    Also Known As
    IBM Security AppScan, Rational AppScan, AppScan
    AppSpider
    Learn More
    Overview

    IBM Security AppScan enhances web application security and mobile application security, improves application security program management and strengthens regulatory compliance. By scanning your web and mobile applications prior to deployment, AppScan enables you to identify security vulnerabilities and generate reports and fix recommendations.

    SPAs, APIs, mobile—the evolution of application technology is measured in months, not years. Is your web application security testing tool designed to keep up? AppSpider lets you collect all the information needed to test all the apps so that you aren’t left with gaping application risks.

    Our dynamic application security testing (DAST) solution crawls to the deepest, darkest corners of even the most modern and complex apps to effectively test for risk and get you the insight you need to remediate faster. With AppSpider on your side (or, rather, all of your sides), you’ll be able to scan all the apps today and always be ready for whatever comes next.

    Sample Customers
    Essex Technology Group Inc., Cisco, West Virginia University, APIS IT
    Microsoft
    Top Industries
    REVIEWERS
    Government16%
    Transportation Company16%
    Financial Services Firm11%
    Manufacturing Company11%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Financial Services Firm14%
    Government10%
    Manufacturing Company8%
    REVIEWERS
    Financial Services Firm33%
    University33%
    Comms Service Provider33%
    VISITORS READING REVIEWS
    Computer Software Company18%
    Financial Services Firm15%
    Government8%
    Healthcare Company6%
    Company Size
    REVIEWERS
    Small Business25%
    Midsize Enterprise11%
    Large Enterprise64%
    VISITORS READING REVIEWS
    Small Business17%
    Midsize Enterprise13%
    Large Enterprise70%
    REVIEWERS
    Small Business54%
    Midsize Enterprise15%
    Large Enterprise31%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise15%
    Large Enterprise66%
    Buyer's Guide
    HCL AppScan vs. Rapid7 AppSpider
    March 2024
    Find out what your peers are saying about HCL AppScan vs. Rapid7 AppSpider and other solutions. Updated: March 2024.
    765,386 professionals have used our research since 2012.

    HCL AppScan is ranked 12th in Application Security Testing (AST) with 39 reviews while Rapid7 AppSpider is ranked 25th in Application Security Testing (AST) with 13 reviews. HCL AppScan is rated 7.6, while Rapid7 AppSpider is rated 7.8. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of Rapid7 AppSpider writes "Useful vulnerability reporting data, flexible, and simple implementation". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, OWASP Zap and PortSwigger Burp Suite Professional, whereas Rapid7 AppSpider is most compared with Rapid7 InsightAppSec, OWASP Zap, Acunetix, Tenable.io Web Application Scanning and Checkmarx. See our HCL AppScan vs. Rapid7 AppSpider report.

    See our list of best Application Security Testing (AST) vendors.

    We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.