Trustwave App Scanner [EOL] OverviewUNIXBusinessApplication

Buyer's Guide

Download the Application Security Tools Buyer's Guide including reviews and more. Updated: November 2022

What is Trustwave App Scanner [EOL]?
Provides ability to test applications for security vulnerabilities, security policies and regulatory compliance.

Trustwave App Scanner [EOL] was previously known as Hailstorm, Cenzic Hailstorm.

Trustwave App Scanner [EOL] Customers
Leading Health Insurer
Trustwave App Scanner [EOL] Video

Archived Trustwave App Scanner [EOL] Reviews (more than two years old)

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
Security Manager at a healthcare company with 1,001-5,000 employees
Real User
Stable solution that has increased the maturity of our security program
Pros and Cons
  • "The stability is great. We haven't had any issues at all with it."
  • "I would like to see a little more flexibility with regards to setting up profiles for vulnerabilities."

What is our primary use case?

Vulnerability management is our primary use case.

How has it helped my organization?

It hasn't really affected the way our organization function. It just gives us preparedness, readiness. However, it has increased our staff productivity by about five percent, and it has increased the maturity of our security program.

What needs improvement?

I would like to see a little more flexibility with regards to setting up profiles for vulnerabilities. For the most part, it fits our needs but a little more flexibility would be great.

I would also like to have more information on AI. If we start to deploy AI in our infrastructure, does it cover that as well?

What do I think about the stability of the solution?

The stability is great. We haven't had any issues at all with it.

Buyer's Guide
Application Security Tools
November 2022
Find out what your peers are saying about Trustwave, HCL, Veracode and others in Application Security Tools. Updated: November 2022.
655,774 professionals have used our research since 2012.

What do I think about the scalability of the solution?

The scalability works because we're not really a large shop. For all intents and purposes, it fits us.

How are customer service and support?

We haven't had to use technical support.

How was the initial setup?

The initial setup was straightforward.

What about the implementation team?

We did not use an integrator.

What was our ROI?

The simple fact that it puts us in a better place for identifying our vulnerabilities is a form of ROI. We're able to discover them faster, become cleaner. That's definitely our ROI.

Which other solutions did I evaluate?

This was the only vendor we looked at.

What other advice do I have?

I rate this solution a ten out of ten. It fits our needs.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
it_user708990 - PeerSpot reviewer
Security Program Manager at a tech company with 10,001+ employees
Real User
I believe it produced less false positives compared to its competitors

What is most valuable?

I believe it has produced less false positives compared to its competitors.

How has it helped my organization?

Was used for scanning PCI application along with Fortify for source code scans. Was tightly integrated with Secure SDLC.

What needs improvement?

Used to crash/freeze due to poor performance, not sure about newer versions.

For how long have I used the solution?

Two years, approximately.

What do I think about the scalability of the solution?

None that I can remember.

How are customer service and technical support?

Had good technical support, as far I could remember.

Which solution did I use previously and why did I switch?

This scanner was more efficient compared to its competitors.

How was the initial setup?

Used the standalone software.

What's my experience with pricing, setup cost, and licensing?

The purchase was done by a different team. So, no idea.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Application Security Tools
November 2022
Find out what your peers are saying about Trustwave, HCL, Veracode and others in Application Security Tools. Updated: November 2022.
655,774 professionals have used our research since 2012.
it_user496950 - PeerSpot reviewer
Student Worker, Information Security Office at a university with 1,001-5,000 employees
Vendor
It helps us troubleshoot failed scans and incomplete statuses.

What is most valuable?

  • Web application vulnerability scanning of various applications from different departments
  • Troubleshooting failed scans and incomplete statuses

How has it helped my organization?

I have been using this platform to scan the application for vulnerabilities since I started in this field.

Trustwave App Scanner makes it really easy and convenient for us to notify the website owners before the scans, as well as providing the scan results.

What needs improvement?

One feature that I would really want is the number of total applications in the web GUI; after selecting a filter on the applications, it would be really helpful if it shows the number of applications.

For how long have I used the solution?

I have been using it for more than a year now. I've been using it since July 2015.

What do I think about the stability of the solution?

I did not encounter any stability issues. It has always worked properly for me.

Which solution did I use previously and why did I switch?

I did not previously use a different solution. This has been the platform I have been using since my introduction to this field.

How was the initial setup?

Initial setup was straightforward; it was not so complex. I started with the basics and then slowly got deeper into it. If one goes systematically throughout the system, it shouldn't be hard to understand.

What other advice do I have?

It's a perfect tool for someone who's looking for a stable, user-friendly and performance-oriented platform for web application scanning.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
it_user248517 - PeerSpot reviewer
Associate Software Engineer(Security) at a tech company with 10,001+ employees
Real User
It's a good product, but you should only use it if your products are based on old web technologies.

What is most valuable?

Web application security testing is a valuable feature.

How has it helped my organization?

It has automated security test-cases for web applications.

What needs improvement?

It doesn't support modern web technologies such as GWT, Angular, JS etc.

For how long have I used the solution?

I've used it for six to seven years.

What was my experience with deployment of the solution?

No issues encountered.

What do I think about the stability of the solution?

No issues encountered.

What do I think about the scalability of the solution?

Yes there were some issues.

How are customer service and technical support?

Customer Service:

8/10.

Technical Support:

7/10.

Which solution did I use previously and why did I switch?

I wasn't using a different solution prior to this one.

How was the initial setup?

It was straightforward.

Which other solutions did I evaluate?

We also looked at WebInspect.

What other advice do I have?

It's a good product, but you should only use it if your products are based on old web technologies.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
it_user245403 - PeerSpot reviewer
Associate QA Engineer at a tech company with 10,001+ employees
Real User
Although the user experience could be improved, it's the best dynamic code analysis tool one can invest in.

What is most valuable?

It identifies the vulnerabilities in SSL.

How has it helped my organization?

We were able to unravel bugs in earlier stages of product development and thus deliver maximum value to our customer during the release to market phase.

What needs improvement?

  • Reporting
  • User experience
  • New user on-boarding

For how long have I used the solution?

I've been using it for five months, since January 2015.

What was my experience with deployment of the solution?

No issues encountered.

What do I think about the stability of the solution?

Yes we did, but I'm not sure if it was Hailstorm itself or the product onto which it was run.

What do I think about the scalability of the solution?

No issues encountered.

How are customer service and technical support?

Customer Service:

7/10.

Technical Support:

7/10.

Which solution did I use previously and why did I switch?

No previous solution was used.

How was the initial setup?

It was complex as I have to make sure all the requirements are in place before on-boarding Hailstorm.

What about the implementation team?

We used a vendor team whose expertise was 7/10.

What was our ROI?

Overall, we have experienced a better ROI since using Hailstorm.

What other advice do I have?

Go ahead and use Hailstorm as it's the best dynamic code analysis tool one can invest in and it gives a better ROI than most.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user