Qualys Web Application Scanning Competitors and Alternatives

Get our free report covering OWASP , Veracode, SonarQube, and other competitors of Qualys Web Application Scanning. Updated: September 2020.
437,827 professionals have used our research since 2012.

Read reviews of Qualys Web Application Scanning competitors and alternatives

Real User
IT Manager at a financial services firm with 1,001-5,000 employees
Nov 18 2019

What is most valuable?

The most important feature is that we are able to parameterize all of the attacks so that our developers can run the attacks directly from their environments and desktops. They don't need any expertise or to know the difficulties of the… more »

What needs improvement?

In general, this is a good tool to check the security from the attacker's standpoint. However, when thinking about improvements there are still some attacks that we are not able to control with this kind of tool because there are some… more »

What's my experience with pricing, setup cost, and licensing?

I'm not involved in the financial negotiations, but I believe it's not an expensive product and cheaper than other similar tools. I understand we bought 100 URLs. It's likely that we'll need to purchase more once we deploy the tool to the… more »

Which solution did I use previously and why did I switch?

For static analysis, we previously used different tools. We carried out an evaluation comparing different tools, and Acunetix was the one that most of us liked.

What other advice do I have?

I would recommend the product. It's very easy to integrate with Jenkins, with ALM. The most important element for us is that it's very easy for developers to use. They don't need to have any knowledge about security, threats or anything… more »
AhmedS. Younis
Real User
Retail Services Senior Manager at e-finance
May 11 2020

What is most valuable?

The most valuable features that I've found in this solution was the level of accuracy and also that the process of scanning was very quick and we're easily able to change the frame of a scan. I use the many applications and security management tools and the accuracy is important for me. Other solutions like NetBus don't have such an accurate timeline.

What needs improvement?

Improvement could be made in the area of production. Features like macro recording that I've used in other solutions would improve this product. Recording macro for complex applications, especially web applications where there is a complex web application for login or logout format. We could record the macro for login to make a dynamic scanning process, which makes it easier to scan methodology… more »

What other advice do I have?

This is not a simple solution, there is a complexity there. A lot of companies here don't like the idea of using a cloud provider or cloud application for scanning. We prefer to have stand-alone applications and not use the cloud. It's something they could offer, like Qualys. I would rate this solution an eight out of 10.
Real User
Security Researcher at a tech services company with 51-200 employees
May 05 2020

What is most valuable?

The most valuable feature is the performance. The user interface is ok and it is very simple to use.

What needs improvement?

There were times when we had to run the login sequence several times in order to capture it properly. It took us between eight and ten hours to scan an entire site, which is somewhat slow and something that I think can be improved.

Which solution did I use previously and why did I switch?

I have used Qualys in the past but more for vulnerability management in the infrastructure, as opposed to web application security.

What other advice do I have?

I would rate this solution a seven out of ten.

Which other solutions did I evaluate?

I have been told by friends and colleagues that Acunetix is better, so I will be evaluating that solution in the future.
Get our free report covering OWASP , Veracode, SonarQube, and other competitors of Qualys Web Application Scanning. Updated: September 2020.
437,827 professionals have used our research since 2012.