We changed our name from IT Central Station: Here's why

Rapid7 AppSpider vs Tenable.io Web Application Scanning comparison

Cancel
You must select at least 2 products to compare!
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"It is really accurate and the rate of false positives is very low.""The setup is usually straightforward.""When it is set up properly, it can do scanning on web apps with multiple engines automatically.""I would say that it is stable, as I am not aware of any major issues."

More Rapid7 AppSpider Pros →

"Our customers adopt this solution because of the replication testing and the vulnerability assessment it can do. It is a multi-faceted product.""The most valuable feature is the reporting, which provides a good level of detail with respect to vulnerabilities.""Tenable.io Web Application Scanning is very easy to use."

More Tenable.io Web Application Scanning Pros →

Cons
"The enterprise interface is too simple. It should be more customizable.""The tech support is responsive but issues remain unresolved.""Support response times are slow and can be improved.""The dashboard and interface are crucial and they need some improvement.""Integration could be better.""AppSpider could improve in the area of integration. They need to add more integration opportunities."

More Rapid7 AppSpider Cons →

"The reporting has a very limited customization capability.""I would like for them to add proxy filtering, where you can transfer and alter the package. It is fully automated. Other web application testers programs are actually proxy software, and the proxy software gives you the flexibility of modifying the outgoing package, which will actually help you in exploiting any vulnerability in detail.""It would be great if there were a dashboard that is more user-friendly."

More Tenable.io Web Application Scanning Cons →

Pricing and Cost Advice
  • "It is expensive if you want to buy the Enterprise version that is able to scan multiple applications at once."
  • "The price is pretty fair."
  • More Rapid7 AppSpider Pricing and Cost Advice →

  • "The pricing is okay."
  • "It follows the same licensing scheme as Tenable.io and Tenable. sc."
  • More Tenable.io Web Application Scanning Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Application Security Testing (AST) solutions are best for your needs.
    564,729 professionals have used our research since 2012.
    Questions from the Community
    Ask a question

    Earn 20 points

    Top Answer: 
    Tenable.io Web Application Scanning is very easy to use.
    Top Answer: 
    It follows the same licensing scheme as Tenable.io and Tenable SC. A separate license is required for support. I can't be certain, but I believe the fees are determined by the number of IP addresses… more »
    Top Answer: 
    The reporting in Tenable.io Web Application Scanning is not as good as the reporting in Tenable SC. Tenable SC's reporting is extremely powerful. The reporting has a very limited customization… more »
    Ranking
    Views
    4,267
    Comparisons
    3,299
    Reviews
    2
    Average Words per Review
    368
    Rating
    7.5
    20th
    Views
    4,341
    Comparisons
    3,679
    Reviews
    3
    Average Words per Review
    362
    Rating
    7.7
    Comparisons
    Also Known As
    AppSpider
    Learn More
    Overview

    SPAs, APIs, mobile—the evolution of application technology is measured in months, not years. Is your web application security testing tool designed to keep up? AppSpider lets you collect all the information needed to test all the apps so that you aren’t left with gaping application risks.

    Our dynamic application security testing (DAST) solution crawls to the deepest, darkest corners of even the most modern and complex apps to effectively test for risk and get you the insight you need to remediate faster. With AppSpider on your side (or, rather, all of your sides), you’ll be able to scan all the apps today and always be ready for whatever comes next.

    Tenable.io Web Application Scanning safely, accurately and automatically scans your web applications, providing deep visibility into vulnerabilities and valuable context to prioritize remediation.

    Offer
    Learn more about Rapid7 AppSpider
    Learn more about Tenable.io Web Application Scanning
    Sample Customers
    Microsoft
    IMDEX
    Top Industries
    VISITORS READING REVIEWS
    Computer Software Company25%
    Comms Service Provider24%
    Financial Services Firm8%
    Government6%
    VISITORS READING REVIEWS
    Computer Software Company25%
    Comms Service Provider16%
    Government9%
    Financial Services Firm6%
    Company Size
    REVIEWERS
    Small Business50%
    Midsize Enterprise25%
    Large Enterprise25%
    No Data Available
    Find out what your peers are saying about Veracode, Checkmarx, PortSwigger and others in Application Security Testing (AST). Updated: January 2022.
    564,729 professionals have used our research since 2012.

    Rapid7 AppSpider is ranked 16th in Application Security Testing (AST) with 4 reviews while Tenable.io Web Application Scanning is ranked 20th in Application Security with 3 reviews. Rapid7 AppSpider is rated 7.6, while Tenable.io Web Application Scanning is rated 7.6. The top reviewer of Rapid7 AppSpider writes "Scan web applications for vulnerabilities and automate testing with various engines". On the other hand, the top reviewer of Tenable.io Web Application Scanning writes "Good reporting and integration, but it needs a user-friendly dashboard". Rapid7 AppSpider is most compared with Rapid7 InsightAppSec, OWASP Zap, Netsparker by Invicti, Acunetix by Invicti and Fortify WebInspect, whereas Tenable.io Web Application Scanning is most compared with PortSwigger Burp Suite Professional, Qualys Web Application Scanning, Acunetix by Invicti, Veracode and Sonatype Nexus Lifecycle.

    We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.