For Japanese customers, localization is needed. The product should offer a GUI in Japanese and provide Japanese reports for end-users.

One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions. This is the main aspect that I hope to see Rapid7 improve on. 

Beyond reducing false positives, I would also like to see them implement better reporting features, particularly in the executive summary type of reports which need to be user-friendly and easily understood by non-technical people. The recommendations and solutions on these reports could always be improved to make them more relevant, too.

Lastly, the stability isn't that great, and sometimes it becomes non-responsive. I feel like the stability of the application is very average and currently needs more work.

The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution.

It needs better integration with mobile applications. It would be better if we could scan not only web applications but also mobile applications, like iOS, Android, and Windows Mobile. It would be better for our team to have the ability to scan mobile applications as well. The performance could be better when it comes to scanning two mobile applications.

AppSpider has some problems with the RAM needed while scanning. There are also a lot of options, which can make it difficult to configure the system to get the results you want. 

AppSpider could improve in the area of integration. They need to add more opportunities. The documentation about integration with AppSpider is bad news and some integrations are quite difficult to do right now. It would be nice if we had a simple resource where we could look up on the internet what they are set up to integrate with. Some products will not currently integrate with AppSpider.   

The interface of the enterprise product is a bit too simple. It would be good if there were options for customizing the views more like a dashboard.  

There are some glitches with stability, and it is an area for improvement.

Integration could be better. For example, while doing the scanning, using the recording username and passwords, there are issues. Also, they could integrate CSED into the product which would benefit in the future.

With AppSpider, you can scan only one application at a time. If you have AppSpider Enterprise then you can connect one or two more scanners and scan multiple applications at one time.

Support response times are slow and can be improved.

The dashboard and interface are crucial and they need some improvement.

There are some reports that are not so good. They could provide scanning or compliance on some of them.

The solution is too slow. It could take a full day to scan. Competitors are much faster.

This price of this solution is a little bit expensive. The average cost is still good for us because our budget is more open to security solutions. We need twenty-four-hour security because we are a bank.

Implementing Rapid7 AppSpider requires scanning and self-identification mechanisms. You can add different types of authentication to each scan.