Compare Imperva SecureSphere Web Application Firewall vs. Rapid7 AppSpider

Imperva SecureSphere Web Application Firewall is ranked 5th in Web Application Firewall (WAF) with 9 reviews while Rapid7 AppSpider is ranked 16th in Application Security Testing (AST) with 4 reviews. Imperva SecureSphere Web Application Firewall is rated 9.0, while Rapid7 AppSpider is rated 8.2. The top reviewer of Imperva SecureSphere Web Application Firewall writes "Gives me peace of mind, blocks everything we need it to block". On the other hand, the top reviewer of Rapid7 AppSpider writes "Great for scanning target sub-domains, good reporting functionality and easy to use". Imperva SecureSphere Web Application Firewall is most compared with F5 BIG-IP, Imperva Incapsula and Fortinet FortiWeb, whereas Rapid7 AppSpider is most compared with Checkmarx, Rapid7 InsightAppSec and OWASP Zap.
Cancel
You must select at least 2 products to compare!
Most Helpful Review
Find out what your peers are saying about F5, Imperva, Cloudflare and others in Web Application Firewall (WAF). Updated: November 2019.
378,570 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
Compared to other web application firewalls in the market, Imperva does things in the most accurate way.The dynamic profiling of websites is the solution's most valuable feature. The security is also good.Data masking is the most valuable feature of this solution.The solution is very scalable. It is one of the most important features. You can also expand resources and features as well.There are some features that are configured by default, so even without doing much, it can still provide a level of protection.It mitigates all of the availabilities of risks around web applications.The compliance is the most valuable aspect.It has threat intelligence and we are using Incapsula. With threat intelligence, we can separate HTTP and HTTPS traffic. We can use Incapsula to send all the threat intelligence to the WAF.

Read more »

The entire solution is interactive and has a point-and-click user experience, which makes it easy to find items or drill down on information. You don't need specialized skills to use the product.The most valuable feature is the reporting, which is compliant with international standards.Rapid7 AppSpider is good at managing different applications. It uses applets and generates reports to cover the PCA/GDPR compliance requirements.I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us.

Read more »

Cons
I think that better bot protection is needed in this solution.It would be useful if the solution used more intelligence in attack protection. For example, firewalls are to be dependent on the configuration, but if they could have some data science around it the solution would be even better. The profiling of the traffic, and making decisions surrounding that should be intelligence-based, instead of being based on the configuration of the firewall itself.Some of the features should be included in the next release is a file integrating monitoring tool. This feature should be improved.The initial setup could be simplified. Every time you have to install the solution you have to get in touch with support or somebody that can to do that for you.It would be helpful to have a "recommended deployment", or even a list of basic features that should either be used or turned on by default.Their portal is very limited and needs improvement.It's a complicated tool to keep.There could be some limitations that from the converged infrastructure perspective: when you want to converge with everything and you want Imperva to get there easily because it's not a cloud component. For example, when you want to build servers and you're using OneView to manage your software-defined networks, implementing Imperva right away is not that simple. But if you're doing just a simple cloud infrastructure with servers in there, you're good to go. Also, we are not able, with Imperva, to block by signatures. Imperva by itself needs to be complemented with another service to do URL filtering.

Read more »

The solution is too slow. It could take a full day to scan. Competitors are much faster.This price of this solution is a little bit expensive.Implementing Rapid7 AppSpider requires scanning and self-identification mechanisms. You can add different types of authentication to each scan.The product needs to be able to scale for large companies, like ours. We have millions of IP addresses that need to be scanned, and the scalability is not great.

Read more »

Pricing and Cost Advice
The cost of this solution depends on the platform.Everybody complains about the price of this solution.Make sure you understand the way that Imperva charges. It's very affordable. However, I would like to see a package with the Virtual Patching included. You get to do patching separately.

Read more »

Information Not Available
report
Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
378,570 professionals have used our research since 2012.
Ranking
Views
4,518
Comparisons
3,681
Reviews
7
Average Words per Review
532
Avg. Rating
9.0
Views
1,660
Comparisons
995
Reviews
3
Average Words per Review
259
Avg. Rating
8.3
Top Comparisons
Compared 23% of the time.
Compared 9% of the time.
Also Known As
AppSpider
Learn
Imperva
Rapid7
Overview

Web application attacks deny services and steal sensitive data. Imperva Web Application Firewall (WAF) analyzes and inspects requests coming in to applications and stops these attacks.

Protect your applications in the cloud and on-premises with the same set of security policies and management capabilities. Safely migrate apps while maintaining full protection.

Deploy Imperva WAF on-premises, in AWS and Azure, or as a cloud service itself. Easily meet the specific security and service level requirements of individual applications.

Imperva WAF protects against the most critical web application security risks: SQL injection, cross-site scripting, illegal resource access, remote file inclusion, and other OWASP Top 10 and Automated Top 20 threats. Imperva security researchers continually monitor the threat landscape and update Imperva WAF with the latest threat data.

SPAs, APIs, mobile—the evolution of application technology is measured in months, not years. Is your web application security testing tool designed to keep up? AppSpider lets you collect all the information needed to test all the apps so that you aren’t left with gaping application risks.

Our dynamic application security testing (DAST) solution crawls to the deepest, darkest corners of even the most modern and complex apps to effectively test for risk and get you the insight you need to remediate faster. With AppSpider on your side (or, rather, all of your sides), you’ll be able to scan all the apps today and always be ready for whatever comes next.

Offer
Learn more about Imperva SecureSphere Web Application Firewall
Learn more about Rapid7 AppSpider
Sample Customers
BlueCross BlueShield, eHarmony, EMF Broadcasting, GE Healthcare, Metro Bank, The Motley Fool, SiemensMicrosoft
Top Industries
VISITORS READING REVIEWS
Software R&D Company32%
Media Company11%
Comms Service Provider9%
Financial Services Firm8%
VISITORS READING REVIEWS
Software R&D Company33%
Comms Service Provider26%
Financial Services Firm7%
K 12 Educational Company Or School5%
Find out what your peers are saying about F5, Imperva, Cloudflare and others in Web Application Firewall (WAF). Updated: November 2019.
378,570 professionals have used our research since 2012.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Sign Up with Email