We performed a comparison between Fortify WebInspect and HCL AppScan based on real PeerSpot user reviews.
Find out in this report how the two Dynamic Application Security Testing (DAST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution is easy to use."
"The solution is able to detect a wide range of vulnerabilities. It's better at it than other products."
"The solution's technical support was very helpful."
"The user interface is ok and it is very simple to use."
"Guided Scan option allows us to easily scan and share reports."
"Technical support has been good."
"Good at scanning and finding vulnerabilities."
"The most valuable feature is the static analysis."
"It was easy to set up."
"We leverage it as a quality check against code."
"The solution is easy to use."
"Compared to other tools only AppScan supports special language."
"The most valuable feature of HCL AppScan is its integration with the SDLC, particularly during the coding phase."
"The HCL AppScan turnaround time for Burp Suite or any new feature request is pretty good, and that is why we are sticking with the HCL."
"You can easily find particular features and functions through the UI."
"The most valuable feature of HCL AppScan is scanning QR codes."
"We have often encountered scanning errors."
"Our biggest complaint about this product is that it freezes up, and literally doesn't work for us."
"Fortify WebInspect could improve user-friendliness. Additionally, it is very bulky to use."
"The initial setup was complex."
"The scanner could be better."
"One thing I would like to see them introduce is a cloud-based platform."
"Lately, we've seen more false negatives."
"Not sufficiently compatible with some of our systems."
"I would love to see more containers. Many of the tools are great, they require an amount of configuration, setup and infrastructure. If most the applications were in a container, I think everything would be a little bit faster, because all our clients are now using containers."
"The databases for HCL are small and have room for improvement."
"The solution could improve by having a mobile version."
"There are so many lines of code with so many different categories that I am likely to get lost. "
"There is room for improvement in the pricing model."
"A desktop version should be added."
"Improvement can be done as per customer requirements."
"Sometimes it doesn't work so well."
Fortify WebInspect is ranked 2nd in Dynamic Application Security Testing (DAST) with 17 reviews while HCL AppScan is ranked 1st in Dynamic Application Security Testing (DAST) with 41 reviews. Fortify WebInspect is rated 7.0, while HCL AppScan is rated 7.8. The top reviewer of Fortify WebInspect writes "A powerful tool catering to multiple use cases that provides reasonably good technical support". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". Fortify WebInspect is most compared with PortSwigger Burp Suite Professional, Fortify on Demand, Acunetix, OWASP Zap and Qualys Web Application Scanning, whereas HCL AppScan is most compared with SonarQube, Veracode, Acunetix, OWASP Zap and Qualys Web Application Scanning. See our Fortify WebInspect vs. HCL AppScan report.
See our list of best Dynamic Application Security Testing (DAST) vendors.
We monitor all Dynamic Application Security Testing (DAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.