HCL AppScan Pros and Cons

APPSCAN is the best tool fast to use and get results at the right level of analysis. The user can quickly request the scans with a limited exploration or a deep and accurate one, as well as a specific security rule.

The fact that Inteligent Analyses are supplied it save time for the Security Engineers during the triage, as well as for the developpers who have the Fix Group feature to quickly identify where to do the corrections to resolve several vulnerabilities with few source code modifications. Review collected by and hosted on G2.com.

APPSCAN is mostly installable under Windows with SQL SERVER, except the Static scanner, available on all platforms. But HCL already supplied some containerized parts that introduced a game-changer for the installation. Review collected by and hosted on G2.com.

The solution is logic and the GUI is intuitive to use Review collected by and hosted on G2.com.

According to my opinion there are no dislike points to notify Review collected by and hosted on G2.com.

Great to have tool for appsec.really covers all vulnerabilities in DAST with less false positive.pluse setting up the solution is super easy. Review collected by and hosted on G2.com.

Sometime solution goes in session detection problem that should be fixed. Review collected by and hosted on G2.com.

User-friendly application, the best tool for find vulnerability and application testing Review collected by and hosted on G2.com.

this tool take some Time to scan any web application Review collected by and hosted on G2.com.

Easy Navigation & configuration of scan policies etc Review collected by and hosted on G2.com.

Reported false positive are high in numbers which lets lot of manual work Review collected by and hosted on G2.com.

The most important I like about this is the IAST- Interactive application security testing is the best part which I like because it will crawl the application with us and get more chances to get more vulnerabilities as compare to DAST and SAST.

SAST and DAST obviously these feature will do there best.

Mobile application is also adding plus point which will make this tool as all rounder just like in cricket the player who knows batting, bowling, fielding and wicket keeping.

This is the tool which added the advantage of all the things. Review collected by and hosted on G2.com.

No support for the react js applications as it should have. which will improve appscan support

Anyway it is having SAST, DAST, Mobile apps and IAST. which is best part of it. Review collected by and hosted on G2.com.

In report side, developers can understand details and solution method of vulnerability. On my side(security engineer) I have been tested AppScan with 2 other rival. The vulnerability analysis AppScan is doing is quite sufficient. In my review I think that was enough for OWASP TOP10 requirements. Review collected by and hosted on G2.com.

User interface could be more colorful :) Review collected by and hosted on G2.com.

Vulnerability database always up to date and Also user friendly surface with effective reporting options Review collected by and hosted on G2.com.

Global support response can be more faster. Review collected by and hosted on G2.com.

The results of HCL AppScan are reliable and it's a very user friendly. Review collected by and hosted on G2.com.

The cloud and On Prem version should work seamlessly. Review collected by and hosted on G2.com.

This one of best tool for Application scan to identify the flaws and remediation to fix the flaws in the application Review collected by and hosted on G2.com.

Some time IBM Security AppScan provides false positive results Review collected by and hosted on G2.com.