Qualys Web Application Scanning Primary Use Case
PK
PankajKhullar
Senior Security Engineer at Charter Communications
We use Qualys Web Application Scanning for compliance requirements, scanning all applications once a month. We mainly focus on host-based scanning and PCI compliance. We also utilize its global asset view module.
View full review »MS
MukeshSaha
Associate Principal, Software Engineering at LTI - Larsen & Toubro Infotech
We use Qualys Web Application Scanning from a development perspective. It provides fewer false positives and is accurate. We have also integrated this tool into our CI/CD pipeline. Additionally, we use it for web application scanning. We have over two thousand applications that need to be scanned monthly, and we can schedule scans according to our time zone.
View full review »
I use it for web application scanning to scan for vulnerabilities within our internal and external assets.
View full review »
Buyer's Guide
Qualys Web Application Scanning
March 2025

Learn what your peers think about Qualys Web Application Scanning. Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
860,825 professionals have used our research since 2012.
KM
Kamil Matusik
Head of Operations, Supply Chain at Lyreco Deutschland GmbH
We use it as part of our vulnerability management strategy. Specifically, we scan web applications to identify vulnerabilities during deployment. Additionally, we use container scanning to check container vulnerabilities and infrastructure scanning to assess server vulnerabilities.
View full review »We use the solution for multiple purposes, such as infrastructure vulnerability scanning and web application scanning.
View full review »JP
Jay_Prakash
Cyber security specialist at a financial services firm with 10,001+ employees
We use the platform for vulnerability management and website testing. It helps us identify and remediate web-based vulnerabilities in our applications, ensuring their security from potential attackers.
We use the software to help us with application scaling. We can scale our server environment both on Linux and Microsoft using it.
View full review »VG
Vytautas Gudynas
Senior IT Security Specialist at Citadele Banka AS
We use the solution to scan the website.
View full review »I use Qualys Web Application Scanning for various customers both within and outside the country.
Our clients are mainly from the education and banking sectors, where we support them with financial and backend services.
We have been using Qualys Web Application Scanning for automated web architecture scanning in an enterprise environment.
View full review »The primary use case includes scanning the web applications that are public facing.
View full review »The primary use case includes scanning the web applications that are public facing.
View full review »Our customers use the solution to audit their web-application before releasing them to the Internet.
EG
Elmano Francisco Gonga
IT Security Analyst at Banco de Fomento Angola
We use the solution for scanning and vulnerability management.
View full review »We use the solution alongside others for static scanning. It's used for endpoint scanning.
View full review »My main use of Qualys WAS is for multifactor authentication for web and mobile applications.
View full review »There are two parts. We use Web Application Scanning licenses to constantly assess our websites. When there are any changes on our websites, Qualys checks to see if there is a vulnerability. We use a SecOps/DevOps methodology, so Qualys is integrated into the development cycle. Qualys runs every time we update the site.
View full review »My company works for another company called Ecolab here in Bangalore. We are an Ecolab digital center, we develop mobile application. We use Vericode and this solution for testing these web applications before going live. This includes the full testing periods and the production phase. Once it has been tested, we then get them ready to go live.
View full review »HJ
Hwang James
Data Specialist at CHUN SHIN LIMITED
We are using Qualys for vulnerability detection in our IDC (International Data Center) on our web pages and world-wide-web applications and services.
View full review »I think we have the fastest version, and they always upgrade it. I think it's the $2 or $3-a-month version. They have multiple engines inside it, but it's a site-based service. It is not on-demand, so Qualys will host it. It's the pay as you go service that is on the software-as-a-service.
We use the DAST, dynamic application scan test.
View full review »We are using Qualys Web Application Scanning for our customers. We have the expertise in the solution to provide our customers with the results.
We use the tool for scanning web applications for our clients.
View full review »We primarily use this solution for VM scanning. We scan more than a thousand applications.
View full review »For some projects, we will need to use this on-premises. It depends on the confidentiality of our project. For other projects, we will also be deploying on the cloud or maybe a hybrid solution as well.
We are looking forward to having a relationship as a partner with this company and maybe one or two others. We are not just a customer. We have a bunch of freelancers that we are working with in three different companies in Slovenia, Australia, and other countries. We are looking for solutions to make our testing and security checks more affordable.
View full review »My primary use case of this solution is to audit the security level of my customer's internet. We offer this as a service.
View full review »The demo was mainly centered around vulnerability management. We were looking to find a tool which is able to do vulnerability management for internal assets and web applications which face the Internet and are exposed on it. We want a platform which can do vulnerability assessment for internal assets and also for assets which are published on the internet.
I did this demo for three to six months.
View full review »RT
Reviewer32192
Delivery Manager at a tech vendor with 1,001-5,000 employees
We use it for external connection testing whenever we have a customer who utilizes post scanning tools for their main message. From the scanner's perspective, we use the scanner results to do manual testing.
View full review »We have a lot of applications in our environment that we need to scan frequently. We have a lot of tutorial sites, e-learning sites, and other related websites which we have to build, maintain, and scan continuously for security purposes.
View full review »Cloud hosted application, and was also accessible through mobile app.
View full review »We use Qualys Internet-based scanners for external penetration testing as well as PCI scans for our clients. The tool being Internet based, it can be accessed from any location, and it does not have issues with updating the patches as well as versions (QualysGuard updates the tool at specific periods in a year with prior information). The report generated by QualysGuard is very detailed and easy to understand.
View full review »We primarily use Qualys Web Application Scanning for website penetration testing.
View full review »Buyer's Guide
Qualys Web Application Scanning
March 2025

Learn what your peers think about Qualys Web Application Scanning. Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
860,825 professionals have used our research since 2012.