HCL AppScan Room for Improvement
RN
reviewer1428084
Principal Architect, Application Build Security. at a transportation company with 10,001+ employees
The dashboard, for AppScan or the Fortified fast tool, which we use needs to be improved. We always raise that as an announcement request because statistics gathering or management reports based on statistics are quite important. that is the only generic feature that we always request from the product team. The standard response is "Yes, it is in the pipeline, we will take a look."
We would like to see all of the results in the same product. However, specific products for a specific test are available on the market. For example, you cannot upload the task report to the DAST report dashboard and instead request that the product team or vendor team create a sophisticated dashboard for that. Definitely, they will say "No, it is not possible because you have a DAST tool on the market. Go and purchase that. It will have your dashboard. If you're a DevSecOps team, and you ask me I would like to see all of the reports uploaded and collaborated on the same dashboard of the particular product. This is the reason we are using an open-sourced vulnerable management tool.
View full review »TD
reviewer1415661
General Manager at a consultancy with 51-200 employees
There are some false positives, which need to be removed, but this is common with all types of scanners.
One thing which I think can be improved is the CI/CD Integration. There is a CI/CD Integration model, but I guess they are deliberately not using it currently. There are challenges when integrating AppScan with CI/CD because sometimes the activation plus the login mechanism provided doesn't work properly. Sometimes a login mechanism fails and then the whole scan fails. It's difficult to integrate with CI/CD.
View full review »SH
reviewer1467588
Owner/ Consultant at a tech services company with 1-10 employees
The solution often has a high number of false positives. It's an aspect they really need to improve upon.
The product has vulnerabilities, or findings, that are almost identical in nature.
View full review »Buyer's Guide
HCL AppScan
June 2022
Learn what your peers think about HCL AppScan. Get advice and tips from experienced pros sharing their opinions. Updated: June 2022.
610,812 professionals have used our research since 2012.
EE
reviewer1676757
Innovation manager at a computer software company with 51-200 employees
The performance could be better. Sometimes it doesn't work so well. There's a tool for connecting the cloud with the application server. Sometimes it doesn't work really well.
I have not come across any missing features.
View full review »FM
reviewer1495479
Senior Manager, IT Test Automation Engineering at a outsourcing company with 10,001+ employees
They have to improve support. Their support before, when it was IBM, was very good technical support. However, now, it's very bad.
They could add more language coverage. They don't cover so many development languages. They really should be covering more. If they did, it would be a huge improvement.
View full review »The solution could improve by having a mobile version.
View full review »AppScan is too complicated and should be made more user-friendly.
View full review »Buyer's Guide
HCL AppScan
June 2022
Learn what your peers think about HCL AppScan. Get advice and tips from experienced pros sharing their opinions. Updated: June 2022.
610,812 professionals have used our research since 2012.