Try our new research platform with insights from 80,000+ expert users

HCL AppScan vs Klocwork comparison

HCLSoftware and Perforce are both solutions in the Application Security Tools category. HCLSoftware is ranked #15 with an average rating of 8.3, while Perforce is ranked #19 with an average rating of 8.2. HCLSoftware holds a 2.5% mindshare in AS, compared to Perforce’s 1.4% mindshare. Additionally, 84% of HCLSoftware users are willing to recommend the solution, compared to 93% of Perforce users who would recommend it.
HCL AppScan
Read 43 HCL AppScan reviews
  • 4,377 Views
  • 3,108 Comparison Views
84% willing to recommend
Klocwork
Read 25 Klocwork reviews
  • 3,353 Views
  • 1,878 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024

HCL AppScan and Klocwork compete in the software security and code analysis category. HCL AppScan seems to have the upper hand in support and pricing, while Klocwork is preferred for its advanced features.

Features: HCL AppScan offers extensive security testing capabilities, multiple integration options, and a user-friendly interface for a variety of applications. Klocwork provides advanced static code analysis, supports a wide range of coding languages, and offers comprehensive reporting features.

Room for Improvement: HCL AppScan needs to improve analysis speed, reduce false positives, and enhance user interface for usability. Klocwork could improve user experience with simplified setup processes, more intuitive navigation, and reducing resource consumption during analysis.

Ease of Deployment and Customer Service: HCL AppScan is recognized for straightforward deployment options and responsive customer service. Klocwork is effective in deployment but could benefit from offering more proactive and readily available support.

Pricing and ROI: HCL AppScan is competitively priced with good ROI as reported by users, offering a wide range of features at accessible pricing. Klocwork, though potentially more expensive, delivers value through robust features and is often worth its cost for companies requiring sophisticated code analysis capabilities.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed HCL AppScan vs. Klocwork Report (Updated: September 2025).
Buyer's Guide
HCL AppScan vs. Klocwork
September 2025
Download the complete report
Helped 868,787 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
2.1
HCL AppScan enhances architecture with fewer errors and improved security, achieving 50% return and 20% cost savings.
Sentiment score
6.2
Klocwork enhances code quality and compliance, improving efficiency in defect resolution, especially in automotive sectors, despite ROI measurement challenges.
No quotes available
For more quotes and insights, download the HCL AppScan report
The main ROI factors include efficiency and how we meet compliance standards for various automotive requirements.
For more quotes and insights, download the Klocwork report
 

Customer Service

Sentiment score
5.4
HCL AppScan's support is responsive with mixed reviews, facing regional challenges and lagging behind competitors like Veracode.
Sentiment score
6.8
Klocwork's support is praised for responsiveness, effective problem-solving, and reducing user contact via comprehensive documentation, despite prioritization issues.
Veracode provides excellent assistance and regularly scheduled calls to address customer concerns and updates.
For more quotes and insights, download the HCL AppScan report
The issue is not about the knowledge of the support but about the prioritization of the tickets they handle.
The customer support team is very responsive, proactive, and engages in conversations to ensure our needs are met.
During the initial phase when I did interact with the vendor, the support was satisfactory.
For more quotes and insights, download the Klocwork report
MS
KG
AA
PM
 

Scalability Issues

Sentiment score
4.9
HCL AppScan is scalable yet varies by license, integration issues, infrastructure compatibility, and CI/CD pipeline design effectiveness.
Sentiment score
6.7
Klocwork is scalable, efficient, and integrates well with SAST tools, suitable for teams of all sizes without scalability issues.
No quotes available
For more quotes and insights, download the HCL AppScan report
Klocwork supports our scalability needs without issues, even as project volumes increase.
The program-to-program enablement is scalable.
For more quotes and insights, download the Klocwork report
 

Stability Issues

Sentiment score
6.8
HCL AppScan is stable and reliable, with minor hardware issues, improved by recent upgrades enhancing performance and stability.
Sentiment score
6.8
Klocwork is reliable and stable, effectively handling large codebases but requires significant computing power and faster updates.
No quotes available
For more quotes and insights, download the HCL AppScan report
Installation is easy, and the solution is stable.
For more quotes and insights, download the Klocwork report
 

Room For Improvement

HCL AppScan requires improvements in vulnerability detection, usability, integration, performance, support, pricing, and language/codebase compatibility to stay competitive.
Klocwork needs improved language support, flexible reporting, better integration with Agile DevOps, and enhanced static and dynamic analysis.
No quotes available
For more quotes and insights, download the HCL AppScan report
We would like Klocwork to connect to Git and notify developers of issues tied to specific commits.
Klocwork should be able to analyze large codebases efficiently, supporting a desktop version for periodic small delta changes before pushing to the server.
Klocwork sometimes provides too many additional warnings which require expertise to manage.
For more quotes and insights, download the Klocwork report
AA
KG
PM
 

Setup Cost

HCL AppScan is considered expensive but cost-effective, with varied pricing opinions influenced by its premium features and discounts.
Klocwork's flexible pricing models are valued, though opinions vary on cost-effectiveness, catering to diverse organizational needs.
Companies often choose based on budget constraints, with Veracode being on the higher end cost-wise.
For more quotes and insights, download the HCL AppScan report
It is less expensive than Coverity.
The solution is not very cheap, however, it is less expensive than Coverity.
Klocwork's pricing seems attractive, as it uses a per-user license model that does not have a lot of overhead.
For more quotes and insights, download the Klocwork report
MS
PM
GR
KG
 

Valuable Features

HCL AppScan detects vulnerabilities, integrates with agile processes, offers scalability, user-friendly features, and AI-enhanced rapid scanning for security.
Klocwork provides efficient static code analysis with strong IDE integration, supporting multiple languages and enhancing code quality and collaboration.
AppScan's most valuable features include its ability to identify vulnerabilities accurately, provide detailed remediation steps, and the newly introduced AI-powered features that enhance its functionality further.
For more quotes and insights, download the HCL AppScan report
Its integration with the CI/CD pipeline has helped streamline the software development process.
The most valuable feature of Klocwork is the static analysis tools, which help identify potential security threats and errors.
It takes just half a day to set up.
For more quotes and insights, download the Klocwork report
MS
KG
AA
GR
 

Categories and Ranking

HCL AppScan
Ranking in Application Security Tools
15th
Ranking in Static Application Security Testing (SAST)
14th
Average Rating
7.8
Reviews Sentiment
5.9
Number of Reviews
43
Ranking in other categories
Dynamic Application Security Testing (DAST) (1st)
Klocwork
Ranking in Application Security Tools
19th
Ranking in Static Application Security Testing (SAST)
17th
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
25
Ranking in other categories
Static Code Analysis (6th)
 

Mindshare comparison

As of October 2025, in the Application Security Tools category, the mindshare of HCL AppScan is 2.5%, down from 2.6% compared to the previous year. The mindshare of Klocwork is 1.4%, down from 1.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools Market Share Distribution
ProductMarket Share (%)
HCL AppScan2.5%
Klocwork1.4%
Other96.1%
Application Security Tools
 

Featured Reviews

Gladwin Christian - PeerSpot reviewer
A useful tool to scan applications that can be easily installed
Given that we have been using HCL AppScan for many years, I think the setup process is not difficult at all. Sometimes, some issues stop or prevent my company from moving forward with the product's setup phase. We have to call HCL's support team and engage in long discussions to smoothly carry out the setup phase. In general, the product's setup phase is not difficult in our company. The solution is deployed on an on-premises model. The licenses for the solution are available only on cloud deployments nowadays. The solution is already installed in our environment. Every time a new release or software comes out from HCL, our company does a scan, which takes maybe a day or two.
Read full review
AnirbanSarkar - PeerSpot reviewer
Lets you find defects during the development phase, so you don't have to wait till the development is over to find and address flaws
What needs improvement in Klocwork, compared to other products in the market, is the dashboard or reporting mechanisms that need to be a bit more flexible. The Klocwork dashboard could be improved. Though it's good, it's not as good as some of the other products in the market, which is a problem. The reporting could be more detailed and easier to sort out because sorting in Klocwork could be a bit more time-consuming, mainly when sorting defects based on filters, compared to how it's done on other tools such as Coverity. What I'd like added in the next release of Klocwork is the peer code review Cahoots which used to be a part of Klocwork, and the architecture analysis and both have been taken out of Klocwork. I found the two critical for specific deployments, so if those can be brought back to Klocwork, that would be very good.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
See recommendations
868,787 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
12%
Government
10%
Manufacturing Company
10%
Manufacturing Company
26%
Computer Software Company
12%
Comms Service Provider
7%
Transportation Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business13
Midsize Enterprise6
Large Enterprise31
By reviewers
Company SizeCount
Small Business12
Midsize Enterprise2
Large Enterprise12
 

Questions from the Community

What do you like most about HCL AppScan?
The most valuable feature of HCL AppScan is its integration with the SDLC, particularly during the coding phase.
See all answers
What needs improvement with HCL AppScan?
AppScan needs to improve its handling of false positives. It also requires enhancements in customer support, similar to what Veracode provides. Regularly scheduling calls with clients to discuss fe...
See all answers
What is your primary use case for HCL AppScan?
The primary use case for AppScan is for security purposes. I compare AppScan with other tools such as Veracode. We use AppScan for vulnerability detection and auto-remediation of vulnerabilities wi...
See all answers
What is your experience regarding pricing and costs for Klocwork?
Klocwork's pricing seems attractive, as it uses a per-user license model that does not have a lot of overhead.
See all answers
What needs improvement with Klocwork?
One area for improvement is that when customers use different static analysis tools, they report more issues compared to Klocwork. The static analysis engine of Klocwork has areas that need improve...
See all answers
What is your primary use case for Klocwork?
I work on tools such as Klocwork, LDRA, as well as Jira and Confluence, focusing more on the software quality assurance aspect. We use Klocwork for coding and aggregate checks. We use it for static...
See all answers
 

Comparisons

SonarQube Server (formerly SonarQube) vs HCL AppScan Logo
SonarQube Server (formerly SonarQube) vs HCL AppScan
Compared 12% of the time
Acunetix vs HCL AppScan Logo
Acunetix vs HCL AppScan
Compared 11% of the time
Veracode vs HCL AppScan Logo
Veracode vs HCL AppScan
Compared 11% of the time
OWASP Zap vs HCL AppScan Logo
OWASP Zap vs HCL AppScan
Compared 8% of the time
PortSwigger Burp Suite Professional vs HCL AppScan Logo
PortSwigger Burp Suite Professional vs HCL AppScan
Compared 7% of the time
More HCL AppScan Competitors
Coverity Static vs Klocwork Logo
Coverity Static vs Klocwork
Compared 28% of the time
SonarQube Server (formerly SonarQube) vs Klocwork Logo
SonarQube Server (formerly SonarQube) vs Klocwork
Compared 27% of the time
Polyspace Code Prover vs Klocwork Logo
Polyspace Code Prover vs Klocwork
Compared 14% of the time
Helix QAC vs Klocwork Logo
Helix QAC vs Klocwork
Compared 6% of the time
Axivion Static Code Analysis vs Klocwork Logo
Axivion Static Code Analysis vs Klocwork
Compared 6% of the time
More Klocwork Competitors
 

Product Reports

Buyer's Guide
HCL AppScan
September 2025
HCL AppScan reportDownload HCL AppScan product report
Buyer's Guide
Klocwork
September 2025
Klocwork reportDownload Klocwork product report
 

Also Known As

IBM Security AppScan, Rational AppScan, AppScan
No data available
 

Overview

IBM Security AppScan enhances web application security and mobile application security, improves application security program management and strengthens regulatory compliance. By scanning your web and mobile applications prior to deployment, AppScan enables you to identify security vulnerabilities and generate reports and fix recommendations.

HCLSoftware

Klocwork detects security, safety, and reliability issues in real-time by using this static code analysis toolkit that works alongside developers, finding issues as early as possible, and integrates with teams, supporting continuous integration and actionable reporting.

Perforce
 

Sample Customers

Essex Technology Group Inc., Cisco, West Virginia University, APIS IT
ACCESS Co Ltd, Risk-AI, Winbond Electronics, Bristol-Myers Squibb Pharmaceutical Research Institute, University of Southern California, Alebra Technologies, SIMULIA, Risk Management Solutions, Brigham Young University, SRD, HRL
Buyer's Guide
HCL AppScan vs. Klocwork
September 2025
Free Report: HCL AppScan vs. Klocwork
Find out what your peers are saying about HCL AppScan vs. Klocwork and other solutions. Updated: September 2025.
DOWNLOAD NOW
868,787 professionals have used our research since 2012.
See our HCL AppScan vs. Klocwork report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.