• Home
  • HCL AppScan vs. Rapid7 AppSpider

HCL AppScan vs Rapid7 AppSpider comparison

Cancel
You must select at least 2 products to compare!
HCLTech Logo

HCL AppScan

Read 39 HCL AppScan reviews
5,630 views|4,307 comparisons
81% willing to recommend
Rapid7 Logo

Rapid7 AppSpider

Read 13 Rapid7 AppSpider reviews
1,317 views|966 comparisons
100% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
HCL AppScan vs. Rapid7 AppSpider
March 2024
Executive Summary

We performed a comparison between HCL AppScan and Rapid7 AppSpider based on real PeerSpot user reviews.

Find out in this report how the two Application Security Testing (AST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed HCL AppScan vs. Rapid7 AppSpider Report (Updated: March 2024).
Download the complete report
767,847 professionals have used our research since 2012.
Featured Review
AnanyaRoy
A stable and scalable product useful for application security scanning
Rizwan-Alam
Researched HCL AppScan but chose Rapid7 AppSpider: Easy automated web app scanning, but gives many false positives and isn't always stable
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Usually when we deploy the application, there is a process for ethical hacking. The main benefit is that, the ethical hacking is almost clean, every time. So it's less cost, less effort, less time to production.""The static scans are good, and the SaaS as well.""The security and the dashboard are the most valuable features.""The solution offers services in a few specific development languages.""It was easy to set up.""It is easy it is to use. It is quick to find things, because of the code scanning tools. It's quite simple to use and it is very good the way it reports the findings.""The solution is easy to use.""AppScan is stable."

More HCL AppScan Pros →

"What I like most about AppSpider is that it's easy to use and its automated scan gives me all the details I need to know when it comes to vulnerabilities and their solutions.""The entire solution is interactive and has a point-and-click user experience, which makes it easy to find items or drill down on information. You don't need specialized skills to use the product.""I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us.""The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all the reports exactly what we want in a flexible way.""AppSpider's most valuable feature is reporting - everything is stored in the local database so it can be sent to other machines.""The setup is usually straightforward.""When it is set up properly, it can do scanning on web apps with multiple engines automatically.""It scans all the components developed within a web application."

More Rapid7 AppSpider Pros →

Cons
"A desktop version should be added.""They could add a software component analysis tool.""I would like to see the roadmap for this product. We are still waiting to see it as we have only so many resources.""We have experienced challenges when trying to integrate this solution with other products. When you compare it with the other SecOps products, the quality of the output is too low. It is not a new-age product. It is very outdated.""Visibility is an issue for us. Our partners do not know we have integrations with some of IBM products.""There are so many lines of code with so many different categories that I am likely to get lost. ​""Many silly false positives are produced.""The penetration testing feature should be included."

More HCL AppScan Cons →

"The product needs to be able to scale for large companies, like ours. We have millions of IP addresses that need to be scanned, and the scalability is not great.""Implementing Rapid7 AppSpider requires scanning and self-identification mechanisms. You can add different types of authentication to each scan.""The dashboard and interface are crucial and they need some improvement.""AppSpider could improve in the area of integration. They need to add more integration opportunities.""Integration could be better.""One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions.""The enterprise interface is too simple. It should be more customizable.""This price of this solution is a little bit expensive."

More Rapid7 AppSpider Cons →

Pricing and Cost Advice
  • "AppScan is a little bit expensive. IBM needs to work a little bit on the pricing model, decreasing the license cost."
  • "With the features, that they offer, and the support, they offer, AppScan pricing is on a higher level."
  • "Pricing was the main reason that we went ahead with this solution as they were the lowest in the market."
  • "HCL AppScan is expensive."
  • "I would rate the product's pricing a nine out of ten. The product's pricing is expensive compared to the features that they offer."
  • "The price is very expensive."
  • "The solution is moderately priced."
  • "The price of HCL AppScan is okay, in my opinion. You just buy HCL AppScan and don't pay anything anymore, meaning it is just a one-time purchase."

    • More HCL AppScan Pricing and Cost Advice →

  • "It is expensive if you want to buy the Enterprise version that is able to scan multiple applications at once."
  • "The price is pretty fair."
  • "The licensing cost depends on the number of users."
  • "AppSpider is closed-source software and you need to acquire a license in order to use it."
  • "The price of Rapid7 AppSpider cost 9,000 annually but there is limited usage. Large companies are able to negotiate a better price or a better deal for the usage with the vendor."

    • More Rapid7 AppSpider Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Application Security Testing (AST) solutions are best for your needs.
    See Recommendations
    767,847 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about HCL AppScan?
    Top Answer:The product has valuable features for static and dynamic testing.
    Read all 17 answers   →
    What needs improvement with HCL AppScan?
    Top Answer:HCL AppScan generates false results. Sometimes, it incorrectly identifies requests as vulnerable when they are not vulnerable. In the ADSL feature managed, the primary objective is to identify… more »
    Read all 20 answers   →
    What is your primary use case for HCL AppScan?
    Top Answer:HCL AppScan efficiently scans through the website and identifies vulnerabilities for AWS. It is reducing tools day by day, making it more efficient.
    Read all 18 answers   →
    What do you like most about Rapid7 AppSpider?
    Top Answer:The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all… more »
    Read all 13 answers   →
    What is your experience regarding pricing and costs for Rapid7 AppSpider?
    Top Answer:The price of Rapid7 AppSpider cost 9,000 annually but there is limited usage. Large companies are able to negotiate a better price or a better deal for the usage with the vendor. The price of the… more »
    Read all 6 answers   →
    What needs improvement with Rapid7 AppSpider?
    Top Answer:The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution.
    Read all 12 answers   →
    Ranking
    12th
    out of 67 in Application Security Testing (AST)
    Views
    5,630
    Comparisons
    4,307
    Reviews
    17
    Average Words per Review
    339
    Rating
    7.2
    25th
    out of 67 in Application Security Testing (AST)
    Views
    1,317
    Comparisons
    966
    Reviews
    3
    Average Words per Review
    429
    Rating
    7.3
    Comparisons
    Also Known As
    IBM Security AppScan, Rational AppScan, AppScan
    AppSpider
    Learn More
    HCLTech
    Rapid7
    Overview

    IBM Security AppScan enhances web application security and mobile application security, improves application security program management and strengthens regulatory compliance. By scanning your web and mobile applications prior to deployment, AppScan enables you to identify security vulnerabilities and generate reports and fix recommendations.

    SPAs, APIs, mobile—the evolution of application technology is measured in months, not years. Is your web application security testing tool designed to keep up? AppSpider lets you collect all the information needed to test all the apps so that you aren’t left with gaping application risks.

    Our dynamic application security testing (DAST) solution crawls to the deepest, darkest corners of even the most modern and complex apps to effectively test for risk and get you the insight you need to remediate faster. With AppSpider on your side (or, rather, all of your sides), you’ll be able to scan all the apps today and always be ready for whatever comes next.

    Sample Customers
    Essex Technology Group Inc., Cisco, West Virginia University, APIS IT
    Microsoft
    Top Industries
    REVIEWERS
    Government16%
    Transportation Company16%
    Financial Services Firm11%
    Manufacturing Company11%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Financial Services Firm14%
    Government10%
    Manufacturing Company9%
    REVIEWERS
    Financial Services Firm33%
    University33%
    Comms Service Provider33%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Financial Services Firm16%
    Government8%
    Healthcare Company6%
    Company Size
    REVIEWERS
    Small Business25%
    Midsize Enterprise11%
    Large Enterprise64%
    VISITORS READING REVIEWS
    Small Business17%
    Midsize Enterprise13%
    Large Enterprise71%
    REVIEWERS
    Small Business54%
    Midsize Enterprise15%
    Large Enterprise31%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise15%
    Large Enterprise65%
    Buyer's Guide
    HCL AppScan vs. Rapid7 AppSpider
    March 2024
    Free Report: HCL AppScan vs. Rapid7 AppSpider
    Find out what your peers are saying about HCL AppScan vs. Rapid7 AppSpider and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    767,847 professionals have used our research since 2012.

    HCL AppScan is ranked 12th in Application Security Testing (AST) with 39 reviews while Rapid7 AppSpider is ranked 25th in Application Security Testing (AST) with 13 reviews. HCL AppScan is rated 7.6, while Rapid7 AppSpider is rated 7.8. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of Rapid7 AppSpider writes "Useful vulnerability reporting data, flexible, and simple implementation". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, Checkmarx One and PortSwigger Burp Suite Professional, whereas Rapid7 AppSpider is most compared with Rapid7 InsightAppSec, OWASP Zap, Acunetix, Invicti and Checkmarx One. See our HCL AppScan vs. Rapid7 AppSpider report.

    See our list of best Application Security Testing (AST) vendors.

    We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.