GitLab vs HCL AppScan comparison

Cancel
You must select at least 2 products to compare!
GitLab Logo
4,272 views|3,527 comparisons
HCLTech Logo
5,763 views|4,452 comparisons
Comparison Buyer's Guide
Executive Summary

We performed a comparison between GitLab and HCL AppScan based on real PeerSpot user reviews.

Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed GitLab vs. HCL AppScan Report (Updated: March 2024).
765,234 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"GitLab's best features are continuous integration and fast deployment.""The solution's most valuable feature is that it is compatible with GitHub. The product's integration capabilities are sufficient for our small company of 35 people.""GitLab's best feature is Actions.""Of all available products, it was the easiest to use and easy to install.""The merging feature makes it easy later on for the deployment.""The best thing is that as the developers work on separate tasks, all of the code goes there and the other team members don't have to wait on each other to finish.""It is very flexible and easy because you can store data on cloud.""The solution makes the CI/CD pipelines easy to execute."

More GitLab Pros →

"I like the recording feature.""AppScan is stable.""The solution is easy to use.""It identifies all the URLs and domains on its own and then performs tests and provides the results.""The solution offers services in a few specific development languages.""It provides a better integration for our ecosystem.""The most valuable feature of the solution is Postman.""The most valuable feature of HCL AppScan is scanning QR codes."

More HCL AppScan Pros →

Cons
"The only thing our company is really waiting on in terms of features is the development of metrics.""Some of the scripts that we encountered in GitLab were not fully functional and threw up errors.""GitLab could improve by having more plugins and better user-friendliness.""As GitLab is not perfect, what needs improvement in the solution is the Wiki feature of the groups or the repertories because currently, it's not searchable by default. You'll need an indexing service such as Elasticsearch to make it searchable, and that requires too much work, so for me, it's the main feature that should be improved in GitLab. In the next version of the solution, from the top of my head, the documentation could be improved. Besides the Wiki, it would be good if there's documentation that would be automatically generated based on the code repository. In other words, there should be some tutorials from GitLab for developers in the next release.""Expand features to match other tools such as a static code analysis tool so third-party integrations are not required.""Reporting could be improved.""GitLab's Windows version is yet not available and having this would be an improvement.""There is room for improvement in GitLab Agents."

More GitLab Cons →

"It's a little bit basic when you talk about the Web Services. If AppScan improved its maturity on Web Services testing, that would be good.""There are so many lines of code with so many different categories that I am likely to get lost. ​""​IBM Security AppScan Source is rather hard to use​.""AppScan is too complicated and should be made more user-friendly.""The solution's scalability can be a matter of concern because one license runs on one machine only.""It has crashed at times.""The dashboard, for AppScan or the Fortified fast tool, which we use needs to be improved.""Sometimes it doesn't work so well."

More HCL AppScan Cons →

Pricing and Cost Advice
  • "I think that we pay approximately $100 USD per month."
  • "The price is okay."
  • "It seems reasonable. Our IT team manages the licenses."
  • "Its price is fine. It is on the cheaper side and not expensive. You have to pay additionally for GitLab CI/CD minutes. Initially, we used the free version. When we ran out of GitLab minutes, we migrated to the paid version."
  • "It is very expensive. We can't bear it now, and we have to find another solution. We have a yearly subscription in which we can increase the number of licenses, but we have to pay at the end of the year."
  • "I don't mind the price because I use the free version."
  • "We are using its free version, and we are evaluating its Premium version. Its Ultimate version is very expensive."
  • "The price of GitLab could be better, it is expensive."
  • More GitLab Pricing and Cost Advice →

  • "AppScan is a little bit expensive. IBM needs to work a little bit on the pricing model, decreasing the license cost."
  • "With the features, that they offer, and the support, they offer, AppScan pricing is on a higher level."
  • "Pricing was the main reason that we went ahead with this solution as they were the lowest in the market."
  • "HCL AppScan is expensive."
  • "I would rate the product's pricing a nine out of ten. The product's pricing is expensive compared to the features that they offer."
  • "The price is very expensive."
  • "The solution is moderately priced."
  • "The price of HCL AppScan is okay, in my opinion. You just buy HCL AppScan and don't pay anything anymore, meaning it is just a one-time purchase."
  • More HCL AppScan Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
    765,234 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:The solution makes the CI/CD pipelines easy to execute.
    Top Answer:The tool should include a feature that helps to edit the code directly.
    Top Answer:The product has valuable features for static and dynamic testing.
    Top Answer:HCL AppScan generates false results. Sometimes, it incorrectly identifies requests as vulnerable when they are not vulnerable. In the ADSL feature managed, the primary objective is to identify… more »
    Top Answer:HCL AppScan efficiently scans through the website and identifies vulnerabilities for AWS. It is reducing tools day by day, making it more efficient.
    Ranking
    Views
    4,272
    Comparisons
    3,527
    Reviews
    48
    Average Words per Review
    401
    Rating
    8.6
    Views
    5,763
    Comparisons
    4,452
    Reviews
    17
    Average Words per Review
    339
    Rating
    7.2
    Comparisons
    Microsoft Azure DevOps logo
    Compared 47% of the time.
    Bamboo logo
    Compared 6% of the time.
    AWS CodePipeline logo
    Compared 5% of the time.
    SonarQube logo
    Compared 4% of the time.
    Tekton logo
    Compared 4% of the time.
    Also Known As
    Fuzzit
    IBM Security AppScan, Rational AppScan, AppScan
    Learn More
    Overview

    GitLab is a complete DevOps platform that enables teams to collaborate and deliver software faster. 

    It provides a single application for the entire DevOps lifecycle, from planning and development to testing, deployment, and monitoring. 

    With GitLab, teams can streamline their workflows, automate processes, and improve productivity.

    IBM Security AppScan enhances web application security and mobile application security, improves application security program management and strengthens regulatory compliance. By scanning your web and mobile applications prior to deployment, AppScan enables you to identify security vulnerabilities and generate reports and fix recommendations.

    Sample Customers
    1. NASA  2. IBM  3. Sony  4. Alibaba  5. CERN  6. Siemens  7. Volkswagen  8. ING  9. Ticketmaster  10. SpaceX  11. Adobe  12. Intuit  13. Autodesk  14. Rakuten  15. Unity Technologies  16. Pandora  17. Electronic Arts  18. Nordstrom  19. Verizon  20. Comcast  21. Philips  22. Deutsche Telekom  23. Orange  24. Fujitsu  25. Ericsson  26. Nokia  27. General Electric  28. Cisco  29. Accenture  30. Deloitte  31. PwC  32. KPMG
    Essex Technology Group Inc., Cisco, West Virginia University, APIS IT
    Top Industries
    REVIEWERS
    Financial Services Firm16%
    Computer Software Company16%
    Manufacturing Company13%
    Retailer10%
    VISITORS READING REVIEWS
    Educational Organization25%
    Computer Software Company12%
    Financial Services Firm10%
    Manufacturing Company8%
    REVIEWERS
    Government16%
    Transportation Company16%
    Manufacturing Company11%
    Insurance Company11%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Financial Services Firm14%
    Government10%
    Manufacturing Company8%
    Company Size
    REVIEWERS
    Small Business44%
    Midsize Enterprise9%
    Large Enterprise47%
    VISITORS READING REVIEWS
    Small Business15%
    Midsize Enterprise34%
    Large Enterprise52%
    REVIEWERS
    Small Business25%
    Midsize Enterprise11%
    Large Enterprise64%
    VISITORS READING REVIEWS
    Small Business17%
    Midsize Enterprise13%
    Large Enterprise70%
    Buyer's Guide
    GitLab vs. HCL AppScan
    March 2024
    Find out what your peers are saying about GitLab vs. HCL AppScan and other solutions. Updated: March 2024.
    765,234 professionals have used our research since 2012.

    GitLab is ranked 7th in Application Security Tools with 68 reviews while HCL AppScan is ranked 14th in Application Security Tools with 39 reviews. GitLab is rated 8.6, while HCL AppScan is rated 7.6. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". GitLab is most compared with Microsoft Azure DevOps, Bamboo, AWS CodePipeline, SonarQube and Tekton, whereas HCL AppScan is most compared with SonarQube, Veracode, Acunetix, OWASP Zap and PortSwigger Burp Suite Professional. See our GitLab vs. HCL AppScan report.

    See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.

    We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.