We performed a comparison between HCL AppScan and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We leverage it as a quality check against code."
"For me, as a manager, it was the ease of use. Inserting security into the development process is not normally an easy project to do. The ability for the developer to actually use it and get results and focuses, that's what counted."
"The solution offers services in a few specific development languages."
"The static scans are good, and the SaaS as well."
"The most valuable feature of the solution is the scanning or security part."
"The reporting part is the most valuable feature."
"This solution saves us time due to the low number of false positives detected."
"The UI was very intuitive."
"Licensing is the most valuable. Qualys provides the best licensing for companies. It is the best product for the development purposes of web applications. The product has a lot of integrations."
"This product is designed for easy scalability and can easily scale up without major challenges."
"Qualys WAS' most valuable features are the navigation flow of the UI and the option for a different layer of security (identification and operation through email and mobile)."
"The product prevents possible vulnerabilities in our network."
"It works with many different products."
"It is a cloud-based solution, so it is easy to scale."
"You can integrate your Burp Suite results and create an integrated report. Also, the way it shows the results - threats and exploit details - makes remediation very easy."
"We can do scanning and submit reports straight to the customers when there are new vulnerabilities, then tell them whether they are affected or not."
"The tool should improve its output. Scanning is not a challenge anymore since there are many such tools available in the market. The product needs to focus on how its output is being used by end users. It should be also more user-friendly. One of the major challenges is in the tool's integration with applications that need to be scanned. Sometimes, the scanning is not proper."
"Sometimes it doesn't work so well."
"AppScan is too complicated and should be made more user-friendly."
"IBM Security AppScan needs to add performance optimization for quickly scanning the target web applications."
"We have experienced challenges when trying to integrate this solution with other products. When you compare it with the other SecOps products, the quality of the output is too low. It is not a new-age product. It is very outdated."
"A desktop version should be added."
"If HCL AppScan is able to alert the clients over email once the scan is complete, it would be great. Right now, HCL AppScan doesn't let me know if the scanning part is finished or not, because of which I have to come back and check mostly."
"IBM Security AppScan Source is rather hard to use."
"The software’s pricing could be improved."
"In certain cases, this product does have false positives, which the company should work on."
"The pricing does not seem to be competitive."
"The scanner reports a lot of false positives, which is something that needs to be improved."
"The product's pricing could be better."
"Qualys Web Application Scanning is very complex to use, and its graphical interface is not very user-friendly."
"The area of false positives could be improved. There are quite a number of false positives as compared to other solutions. They could probably fine tune the algorithm to be able to reduce the number of false positives being detected."
"It should have better automatic reporting."
More Qualys Web Application Scanning Pricing and Cost Advice →
HCL AppScan is ranked 14th in Application Security Tools with 39 reviews while Qualys Web Application Scanning is ranked 19th in Application Security Tools with 31 reviews. HCL AppScan is rated 7.6, while Qualys Web Application Scanning is rated 7.8. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, Checkmarx One and Snyk, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and Checkmarx One. See our HCL AppScan vs. Qualys Web Application Scanning report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.