HCL AppScan

HCL AppScan Reviews

Do you work for this company? Learn how we help vendors

Ratings and Reviews
(1-3 of 3)

Companies can't remove reviews or game the system. Here's why
November 07, 2021

HCL AppScan insights

Score 7 out of 10
Vetted Review
Verified User
Review Source
  • learns behavior of each application to test application-specific vulnerabilities
  • Provides mobile application scan with predefined templates
  • simplify the upfront planning for configuration
  • improves the resource management to prevent from crashes and timeout
Score 8 out of 10
Vetted Review
Verified User
Review Source
  • AppScan works well in finding application vulnerabilities such as SQL injection, cross-site scripting and all of the OWASP top 10.
  • Flexible reporting allows us to generate executive reports for application owners as well as separate technical reports for developers and system engineers.
  • Technical reports include remediation information and cross reference CVSS scores
  • Because it maintains data on all repeated assessments it helps us to do trending and metrics on compliance
  • We have been asking IBM to upgrade the connectivity from scanner to database to use TLS 1.2. Currently uses TLS 1.0 which we are trying to completely deprecate from our environment.
  • We have been having some login issues with authenticated scans for applications that use federated login (Shibboleth) dur to re-directs and timeouts. For these systems we have to bypass the federation and login directly to the application.

HCL AppScan Scorecard Summary

What is HCL AppScan?

AppScan (formerly Rational AppScan) is an application security testing solution acquired by HCL Technologies from IBM in late 2018. Appscan supports both dynamic (DAST) and static (SAST) application security testing.

HCL AppScan Pricing

HCL AppScan Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

What is HCL AppScan?

AppScan (formerly Rational AppScan) is an application security testing solution acquired by HCL Technologies from IBM in late 2018. Appscan supports both dynamic (DAST) and static (SAST) application security testing.

Who uses HCL AppScan?

The most common users of HCL AppScan are from Mid-size Companies and the Information Technology & Services industry.