Name: HCL AppScan
Rating: 8.4 (24 reviews)
Author: HCL Technologies

HCL AppScan

Overview

What is HCL AppScan?

AppScan (formerly Rational AppScan) is an application security testing solution acquired by HCL Technologies from IBM in late 2018. Appscan supports both dynamic (DAST) and static (SAST) application security testing.

HCL AppScan: Things you wished you know before.

7 out of 10

January 10, 2023

This application helps to perform Dynamic Application Scan, in which the HCL AppScan dynamically navigates through the site and finds any …

An Automated and Integrated Platform that provides a Holistic Visibility into the Security

10 out of 10

December 23, 2022

HCL AppScan is an automated and integrated platform that provides a holistic visibility into the security posture of an application. It …

A tool that can perform diagnostics according to the application specifications.

8 out of 10

June 07, 2022

For years I have compared it with products from other companies and free products, but to be honest, the test patterns have become …

HCL AppScan insights

7 out of 10

November 07, 2021

HCL AppScan provides mobile application scan with predefined templates integration with common code repositories supported Supports 13+ …

HCL AppScan a reliable solution for all your application security needs

8 out of 10

July 30, 2021

HCL AppScan (formerly from IBM) is an application security solution that helps my team to review security flaws and bugs in developing …

AppScan helps up keep Web Apps in Compliance

8 out of 10

September 12, 2018

We use IBM AppScan as part of our overall vulnerability management program. These assessments are in depth and use several tools, AppScan …

Read all reviews

Reviewer Pros & Cons

View all pros & cons

Explore the application for vulnerabilities
Like its storing multiple manuals explore, It should have the capability of storing multiple logins.

Verified User

Engineer in Engineering

Computer Software Company, 10,001+ employees

Easy to connect to our CI/CD pipeline
Sometimes take long time for scanning

Sanjana Gupta

Internet Marketing Manager

PyramidX (Information Technology & Services, 11-50 employees)

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of HCL AppScan, and make your voice heard!

Record a review

Return to navigation

Pricing

View all pricing

HCL AppScan

N/A

Unavailable

What is HCL AppScan?

Entry-level set up fee?

No setup fee

Offerings

Free Trial
Free/Freemium Version
Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

17 people want pricing too

Alternatives Pricing

SonarQube

Free

What is SonarQube?

SonarQube (formerly Sonar) is an open source application security solution.

Indusface WAS

$59

per month

What is Indusface WAS?

Indusface Web Application Scanner provides an application security audit to detect a range of high-risk Vulnerabilities, Malware, and Critical CVEs.

Return to navigation

Product Details

About
Tech Details

What is HCL AppScan?

HCL AppScan Technical Details

Operating Systems	Unspecified
Mobile Application	No

Return to navigation

Comparisons

View all alternatives

Compare with

Reviews and Ratings

(24)

Reviews

(1-6 of 6)

Sort by

Popular Filters

Companies can't remove reviews or game the system. Here's why

January 10, 2023

HCL AppScan: Things you wished you know before.

Verified User

Engineer in Engineering

Computer Software Company, 10,001+ employees

Score 7 out of 10

Vetted Review

Verified User

Likelihood to Recommend

I would say that HCL AppScan is very simple to understand and use since it uses a user-friendly interface and the terminologies that are used in the interface of the application is very clear. We can automate a scan with any third party like Jenkins. The fact, I don't like is the time takes to execute the application, it should be better.

December 23, 2022

An Automated and Integrated Platform that provides a Holistic Visibility into the Security

Sanjana Gupta

Internet Marketing Manager

PyramidX (Information Technology & Services, 11-50 employees)

Score 10 out of 10

Vetted Review

Verified User

Likelihood to Recommend

In HCL AppScan automation maintain a reasonable pace of review and remediation of flaws for our apps. HCL AppScan is a cloud-based enterprise mobile application security testing solution for Android and iOS applications developed using Java, .Net or Objective-C. So it covers all our area and It consists of three components: AppScan Source Edition for developing and testing apps internally, AppScan Standard Edition for testing internally or externally, and AppScan Enterprise Edition for large enterprises who need to secure their entire mobile application portfolio across the organization with multiple device types.

June 07, 2022

A tool that can perform diagnostics according to the application specifications.

Brandon R Hudson

Software Engineer

Digi International (Information Technology & Services, 501-1000 employees)

Score 8 out of 10

Vetted Review

Verified User

Likelihood to Recommend

Web applications these days have evolved too much and have become extremely complex. With AppScan, the configuration can be done through the GUI by using functions such as "login management" and "multi-step operation". To be honest, there are some parts of these functions that are difficult to understand, but I think we have to wait for more for the arrival of AI.

November 07, 2021

HCL AppScan insights

Franck Gafsou

Security Architect

AT (Telecommunications, 10,001+ employees)

Score 7 out of 10

Vetted Review

Verified User

Likelihood to Recommend

strengths : identifies Static and Dynamic Security vulnerabilities, has IDE plugins for ease of use like VS Plugin, Eclipse Plugin, IntelliJ, etc
Challenges : support build of code files prior to scan, offers limited static analysis features for data identification and runtime data tracking

July 30, 2021

HCL AppScan a reliable solution for all your application security needs

Verified User

Team Lead in Marketing

Information Technology & Services Company, 5001-10,000 employees

Score 8 out of 10

Vetted Review

Verified User

Likelihood to Recommend

HCL AppScan (formerly from IBM) is well suited for reducing security flaws in my team's secure code development. The software identifies a lot of issues automatically which helps us reduce delivery time and prevent security breaches. HCL AppScan (formerly from IBM) lacks innovation and automation functionalities, while other tools offer artificial intelligence-driven analysis that helps the team reduce time and money. Also, there is a need to reduce false-positives generated by the solution

September 12, 2018

AppScan helps up keep Web Apps in Compliance

Seth Shestack

Executive Director, Deputy CISO

Temple University (Higher Education, 5001-10,000 employees)

Score 8 out of 10

Vetted Review

Verified User

Likelihood to Recommend

This application is well suited for all web applications with the primary difficulty being that is does not handle federated logins.
However since we have validated our federation and vetted it well it is not a critical issue to bypass federation for scanning a site, only an inconvenience as we have to setup bypass authentication and then remove so that is cannot be used by an attacker.

Return to navigation

HCL AppScan

Entry-level set up fee?

Offerings

Would you like us to let the vendor know that you want pricing?

Alternatives Pricing

SonarQube

Indusface WAS

SonarQube

PortSwigger Burp Suite

Black Duck Software Composition Analysis (SCA)

Veracode

Invicti

Checkmarx

Nessus

Acunetix by Invicti

Micro Focus Fortify on Demand

Tenable.io