We performed a comparison between Fortra Tripwire IP360 and HCL AppScan based on real PeerSpot user reviews.
Find out what your peers are saying about Tenable, Wiz, SentinelOne and others in Vulnerability Management."It's become the pinnacle point for anything that enters the network or anything that's passing through to production to first be affected by IP360, hardened, and up to standard. For our integrity management, one was deployed in the bank about two years ago and that's still going to expand the usage and the product itself. That will go hand in hand with training and expanding the product as for where it's deployed."
"Tripwire IP360 is a very stable solution."
"We could manage our entire IP range with the solution."
"The UI was very intuitive."
"The most valuable feature of the solution is the scanning or security part."
"The security and the dashboard are the most valuable features."
"This solution saves us time due to the low number of false positives detected."
"The solution is easy to install. I would rate the product's setup between six to seven out of ten. The deployment time depends on the applications that need to be scanned. We have a development and operations team to take care of the product's maintenance."
"It comes with all of the templates that we need. For example, we are a company that is regulated by PCI. In order to be PCI compliant, we have a lot of checks and procedures to which we have to comply."
"The product has valuable features for static and dynamic testing."
"The most valuable feature of HCL AppScan is scanning QR codes."
"The reporting functions can use improvement. There is room for growth because reporting functions differ a lot depending on what you're going to output. It depends on whether it's for technical or senior management and how it's interpreted. There could be growth within the reporting functionality side."
"We need to dedicate time and resources to keep it running."
"I am not very impressed by the technical support."
"The tool should improve its output. Scanning is not a challenge anymore since there are many such tools available in the market. The product needs to focus on how its output is being used by end users. It should be also more user-friendly. One of the major challenges is in the tool's integration with applications that need to be scanned. Sometimes, the scanning is not proper."
"Many silly false positives are produced."
"One thing which I think can be improved is the CI/CD Integration"
"HCL AppScan needs to improve security."
"We would like to see a check in the specific vulnerabilities in mobile applications or rooted devices, such as jailbreaking devices."
"It's a little bit basic when you talk about the Web Services. If AppScan improved its maturity on Web Services testing, that would be good."
"In future releases, I would like to see more aggressive reports. I would also like to see less false positives."
"They could add a software component analysis tool."
Fortra Tripwire IP360 is ranked 39th in Vulnerability Management with 6 reviews while HCL AppScan is ranked 15th in Application Security Tools with 40 reviews. Fortra Tripwire IP360 is rated 7.0, while HCL AppScan is rated 7.6. The top reviewer of Fortra Tripwire IP360 writes "The solution helps users to manage their entire IP range, but it's unreliable and very expensive to maintain". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". Fortra Tripwire IP360 is most compared with Tenable Nessus, whereas HCL AppScan is most compared with SonarQube, Veracode, Acunetix, PortSwigger Burp Suite Professional and OWASP Zap.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
