We performed a comparison between HCL AppScan and OpenText LoadRunner Cloud based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools."We leverage it as a quality check against code."
"Usually when we deploy the application, there is a process for ethical hacking. The main benefit is that, the ethical hacking is almost clean, every time. So it's less cost, less effort, less time to production."
"It comes with all of the templates that we need. For example, we are a company that is regulated by PCI. In order to be PCI compliant, we have a lot of checks and procedures to which we have to comply."
"The static scans are good, and the SaaS as well."
"It is easy it is to use. It is quick to find things, because of the code scanning tools. It's quite simple to use and it is very good the way it reports the findings."
"Technical support is helpful."
"It's generally a very user-friendly tool. Anyone can easily learn how to scan"
"This solution saves us time due to the low number of false positives detected."
"It is feature-rich. It supports most protocols, which is important because I am in charge of a team at the bank, and we do performance testing for all kinds of different applications. We have tons of them. We even do video streams."
"The product’s most valuable feature is the Vuser license; it allows us to reduce the cost as per requirement."
"The TCO has been optimized along with the total ROI."
"The initial setup was straightforward."
"The beauty of LoadRunner Cloud is that we can use the load generator that is hosted by us on-premises, and we also have the option to use their hosted load generator. If it is a public-hosted application, we can also use their public-hosted load generator, but in our case, all our applications are hosted in our data center, so we are using the on-premise load generator. We have the option to deploy those load generators as we want."
"Both the professional and cloud versions of Micro Focus LoadRunner use the same scripting or programming to execute performance modeling operations. This feature allows users to use various programming languages such as Java, C, or C++, which can run within either of the two environments. This flexibility in the programming language is a strong point of the software."
"The most valuable feature is that we do not have to accommodate the load-testing infrastructure in our own data center."
"It's a fast product, so you don't have much trouble in terms of maintenance overhead. You don't want to just look into configuring load generators, look for upgrades, and end up having that take up a lot of your time. With this solution, you just log in and you start using it. This means that there is a huge benefit in terms of the overhead of maintaining the infrastructure and the maintenance effort."
"There are so many lines of code with so many different categories that I am likely to get lost. "
"It has crashed at times."
"They have to improve support."
"There is room for improvement in the pricing model."
"Many silly false positives are produced."
"The penetration testing feature should be included."
"I would love to see more containers. Many of the tools are great, they require an amount of configuration, setup and infrastructure. If most the applications were in a container, I think everything would be a little bit faster, because all our clients are now using containers."
"We would like to see a check in the specific vulnerabilities in mobile applications or rooted devices, such as jailbreaking devices."
"Sometimes, you are utilizing one of the low generators, then all of a sudden if you discontinue from one project, it actually deletes the entire low generator."
"There is a steep learning curve for the product, too."
"Scriptless automation is an area that can be improved."
"I'd like to see more ability to dive more deeply into the configuration."
"It doesn't provide custom reports. You can only use the default reports which contain irrelevant data or is missing data that we need."
"I would like for there to be better integration with other tools so that when you do load testing you can also do a security check."
"One area of improvement in the software's support is the replaying of captured data within the development environment. It would be beneficial if the replay feature could accurately mimic what the actual application is doing for better analysis and testing."
"One area for improvement in LoadRunner Cloud, especially for agile models, is its limited support for functional testing alongside its robust non-functional testing capabilities."
HCL AppScan is ranked 14th in Application Security Tools with 39 reviews while OpenText LoadRunner Cloud is ranked 6th in Performance Testing Tools with 39 reviews. HCL AppScan is rated 7.6, while OpenText LoadRunner Cloud is rated 8.2. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of OpenText LoadRunner Cloud writes "Enterprise modeling, server maintenance, and competitive pricing". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, Checkmarx One and PortSwigger Burp Suite Professional, whereas OpenText LoadRunner Cloud is most compared with OpenText LoadRunner Enterprise, Tricentis NeoLoad, OpenText LoadRunner Professional, BlazeMeter and Apache JMeter.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
