Try our new research platform with insights from 80,000+ expert users
Qualys Web Application Scanning Logo

Qualys Web Application Scanning pros and cons

Vendor: Qualys
3.8 out of 5

Pros & Cons summary

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

QualysGuard provides fast and assured results for external and PCI scans.
It easily scales without major challenges and offers comprehensive cloud-based and easily deployable features.
It integrates well with other tools and creates comprehensive reports, making remediation easy.
Its single console provides consolidated reporting from on-prem to cloud compliance, covering multiple security aspects.
It ensures accurate scans with minimal false positives and provides valuable features like patch and vulnerability management.

CONS

Qualys Web Application Scanning has issues with false positives, which could be reduced with algorithm improvements.
Pricing for Qualys Web Application Scanning is considered expensive and should be more competitive.
Qualys Web Application Scanning lacks full platform coverage for the Policy Compliance model, which needs enhancement.
Concurrent scan capabilities in Qualys Web Application Scanning are limited, making scalability challenging.
Qualys Web Application Scanning does not support automatic crawling and deep testing compared to competitors like IBM AppScan.
 

Qualys Web Application Scanning Pros review quotes

Brammadevan K - PeerSpot reviewer
Feb 22, 2024
The vulnerability management feature is a strong one. And also the patch management feature.
AnkitSharma13 - PeerSpot reviewer
Aug 21, 2025
The advantage of Qualys Web Application Scanning lies in its user-friendly dashboard and appealing reports, which are useful for presentation to leadership.
reviewer1254240 - PeerSpot reviewer
Jan 12, 2020
The simplicity of exporting reports and the simplicity and clarity of the reports included with the product are good.
Learn what your peers think about Qualys Web Application Scanning. Get advice and tips from experienced pros sharing their opinions. Updated: August 2025.
866,755 professionals have used our research since 2012.
Daniel_Ndiba - PeerSpot reviewer
Aug 16, 2018
It combines both web application vulnerability management and internal vulnerability management on one platform and dashboard. Usually, you have to purchase separate tools.
JP
Sep 4, 2024
Automated scanning has significantly improved our web application security management by reducing manual work.
reviewer1387992 - PeerSpot reviewer
Aug 11, 2020
The feature that I have found most valuable is the progressive scan. It is good. It's done in 24 hours.
reviewer1138395 - PeerSpot reviewer
Feb 16, 2022
Qualys' process of updating signatures is something we really appreciate, and it's way ahead of its industry peers.
SubhajitAich - PeerSpot reviewer
Aug 25, 2023
Qualys Web Application Scanning has multiple features like threat protection and container security scanning in one box.
HJ
Sep 27, 2020
It is easy to use.
RT
Aug 2, 2018
We can do scanning and submit reports straight to the customers when there are new vulnerabilities, then tell them whether they are affected or not.
 

Qualys Web Application Scanning Cons review quotes

Brammadevan K - PeerSpot reviewer
Feb 22, 2024
There's a distinction between internal and external scanning processes that could be streamlined. Currently, for internal scanning, specific configurations and scanner appliances need to be deployed within the network, which differs from the simpler setup for external scans. This dual process complicates the setup for comprehensive scanning coverage.
AnkitSharma13 - PeerSpot reviewer
Aug 21, 2025
The downside of Qualys Web Application Scanning is that it cannot crawl automatically.
reviewer1254240 - PeerSpot reviewer
Jan 12, 2020
The pricing does not seem to be competitive.
Learn what your peers think about Qualys Web Application Scanning. Get advice and tips from experienced pros sharing their opinions. Updated: August 2025.
866,755 professionals have used our research since 2012.
Daniel_Ndiba - PeerSpot reviewer
Aug 16, 2018
The area of false positives could be improved. There are quite a number of false positives as compared to other solutions. They could probably fine tune the algorithm to be able to reduce the number of false positives being detected.
JP
Sep 4, 2024
One area for improvement is the user interface. The new UI, which was recently upgraded, feels more complex and less user-friendly than the old version.
reviewer1387992 - PeerSpot reviewer
Aug 11, 2020
The UI is not user-friendly and you don't have a yearly reporting facility where you can slice and dice in different jobs.
reviewer1138395 - PeerSpot reviewer
Feb 16, 2022
We procured around 110 licenses for Web Application Scanning, but we have issues running concurrent scans. I don't currently have the option to trigger scans for all 100-plus websites. The default limit is around 10 conference scans. It's not very scalable, to be honest, because of the limitation that they put on concurrent scans.
SubhajitAich - PeerSpot reviewer
Aug 25, 2023
Qualys Web Application Scanning is very complex to use, and its graphical interface is not very user-friendly.
HJ
Sep 27, 2020
The reporting contains too many false positives.
RT
Aug 2, 2018
In terms of the Policy Compliance model which they currently have, not all the platforms are being covered. If they could improve on the Policy Compliance model, since there are policies which are benchmarked against it, this will be helpful for us.