HCL AppScan Room for Improvement
There are some false positives, which need to be removed, but this is common with all types of scanners. One thing which I think can be improved is the CI/CD Integration. There is a CI/CD Integration model, but I guess they are deliberately not using it currently. There are challenges when integrating AppScan with CI/CD because sometimes the activation plus the login mechanism provided doesn't work properly. Sometimes a login mechanism fails and then the whole scan fails. It's difficult to integrate with CI/CD. View full review »
The solution often has a high number of false positives. It's an aspect they really need to improve upon. The product has vulnerabilities, or findings, that are almost identical in nature. View full review »
While I did not identify any specific bugs in this application. I did find that sometimes a restart was needed to deal with unresponsiveness means when AppScan is in a hang situation, this happens usually when you select a large number of sources. IBM Security AppScan needs to add performance optimization for quickly scanning the target web applications. View full review »
Find out what your peers are saying about HCL, Micro Focus, Veracode and others in Application Security. Updated: January 2021.
455,301 professionals have used our research since 2012.
It would be nice to be able to specify the parameter values used in the login sequence function. View full review »
Find out what your peers are saying about HCL, Micro Focus, Veracode and others in Application Security. Updated: January 2021.
455,301 professionals have used our research since 2012.