HCL AppScan Room for Improvement
reviewer1415661
General Manager at a tech company with 1,001-5,000 employees
There are some false positives, which need to be removed, but this is common with all types of scanners. One thing which I think can be improved is the CI/CD Integration. There is a CI/CD Integration model, but I guess they are deliberately not using it currently. There are challenges when integrating AppScan with CI/CD because sometimes the activation plus the login mechanism provided doesn't work properly. Sometimes a login mechanism fails and then the whole scan fails. It's difficult to integrate with CI/CD. View full review »
reviewer1467588
Owner/ Consultant at a tech services company with 1-10 employees
The solution often has a high number of false positives. It's an aspect they really need to improve upon. The product has vulnerabilities, or findings, that are almost identical in nature. View full review »
Shaikh Jamal Uddin
Cybersecurity Architecture and Technology Lead at Appxone
While I did not identify any specific bugs in this application. I did find that sometimes a restart was needed to deal with unresponsiveness means when AppScan is in a hang situation, this happens usually when you select a large number of sources. IBM Security AppScan needs to add performance optimization for quickly scanning the target web applications. View full review »
Find out what your peers are saying about HCL, Micro Focus, Veracode and others in Application Security. Updated: January 2021.
455,301 professionals have used our research since 2012.
Sungmin Chun
Chief researcher at INSEC Security
It would be nice to be able to specify the parameter values used in the login sequence function. View full review »
Find out what your peers are saying about HCL, Micro Focus, Veracode and others in Application Security. Updated: January 2021.
455,301 professionals have used our research since 2012.
Popular Comparisons
SonarQube
Veracode
Checkmarx
Micro Focus Fortify on Demand
OWASP Zap
Fortify WebInspect
PortSwigger Burp
Qualys Web Application Scanning
Netsparker Web Application Security Scanner
Acunetix Vulnerability Scanner
WhiteSource
Rapid7 AppSpider
Visual Studio Test Professional
Coverity
Polyspace Code Prover
Buyer's Guide
Download our free Application Security Report and find out what your peers are saying about HCL, Micro Focus, Veracode, and more!
Quick Links
Learn More: Questions:
- When evaluating Application Security, what aspect do you think is the most important to look for?
- Which application security solutions include both vulnerability scans and quality checks?
- What are the threats associated with using ‘bogus’ cybersecurity tools?
- How was the 2020 Twitter Hack carried out? How could it have been prevented?
- Is SonarQube the best tool for static analysis?
- What are the OWASP top 10 in 2020?
- SAST vs. DAST: Which is better for application security testing?