We performed a comparison between Acunetix and HCL AppScan based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution is highly stable."
"We use the solution for the scanning of vulnerabilities like SQL injections."
"The vulnerability scanning option for analyzing the security loopholes on the websites is the most valuable feature of this solution."
"The most valuable feature of the solution is the speed at which it can scan multiple domains in just a few hours."
"The most important feature is that it's a web-based graphical user interface. That is a great addition. Also, the ability to schedule scans is great."
"We are able to create a report which shows the PCI DSS scoring and share it with the application teams. Then, they can correlate and see exactly what they need to fix, and why."
"The automated approach to these repetitive discovery attempts would take days to do manually and therefore it helps reduce the time needed to do an assessment."
"Overall, it's a very good tool and a very good engine."
"I like the recording feature."
"The most valuable feature of HCL AppScan is scanning QR codes."
"The security and the dashboard are the most valuable features."
"It highlights, with several grades of severity, the types of vulnerabilities, so we can focus on the most severe security vulnerabilities in the code."
"It is a stable solution...It is a scalable solution...The initial setup or installation of HCL AppScan is easy."
"The static scans are good, and the SaaS as well."
"This solution saves us time due to the low number of false positives detected."
"Technical support is helpful."
"Acunetix needs to include agent analysis."
"Acunetix needs to improve its cost."
"Tools that would allow us to work more efficiently with the mobile environment, with Android and iOS."
"There are some versions of the solution that are not as stable as others."
"It would be nice to have a feature to "retest" only a single vulnerability that the customer reports as patched, and delete it from the next scans since it has already been patched."
"We want to see how much bandwidth usage it consumes. When we monitor traffic we have issues with the consumption and throttling of the traffic."
"There's a clear need for a reduction in pricing to make the service more accessible."
"Currently only supports web scanning."
"Many silly false positives are produced."
"We would like to see a check in the specific vulnerabilities in mobile applications or rooted devices, such as jailbreaking devices."
"The tool should improve its output. Scanning is not a challenge anymore since there are many such tools available in the market. The product needs to focus on how its output is being used by end users. It should be also more user-friendly. One of the major challenges is in the tool's integration with applications that need to be scanned. Sometimes, the scanning is not proper."
"I would love to see more containers. Many of the tools are great, they require an amount of configuration, setup and infrastructure. If most the applications were in a container, I think everything would be a little bit faster, because all our clients are now using containers."
"Sometimes it doesn't work so well."
"It's a little bit basic when you talk about the Web Services. If AppScan improved its maturity on Web Services testing, that would be good."
"The product has some technical limitations."
"There is room for improvement in the pricing model."
Acunetix is ranked 16th in Application Security Tools with 26 reviews while HCL AppScan is ranked 14th in Application Security Tools with 39 reviews. Acunetix is rated 7.6, while HCL AppScan is rated 7.6. The top reviewer of Acunetix writes "Fantastic reporting features hindered by slow scanning ". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". Acunetix is most compared with OWASP Zap, Tenable.io Web Application Scanning, PortSwigger Burp Suite Professional, Fortify WebInspect and Veracode, whereas HCL AppScan is most compared with SonarQube, Veracode, Checkmarx One, PortSwigger Burp Suite Professional and OWASP Zap. See our Acunetix vs. HCL AppScan report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
