No more typing reviews! Try our Samantha, our new voice AI agent.
HCL AppScan Logo

HCL AppScan pros and cons

Vendor: HCLSoftware
3.8 out of 5
Leave a review

Pros & Cons summary

HCL AppScan offers compliance templates, accurate vulnerability identification with severity levels, and supports static, dynamic, and QR code scanning. It integrates with SDLC, aiding developers with AI-powered remediation steps. However, it faces challenges like integration limitations, slow scans on large websites, false positives, and scalability issues. Performance enhancement for web application scanning is needed, along with improved CI/CD integration, security, reporting features, and better vulnerability detection through AI.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

HCL AppScan provides comprehensive templates for compliance needs like PCI.
It allows simultaneous scanning of multiple websites, enhancing efficiency.
It facilitates the integration of security checks into the development process.
It offers advanced vulnerability identification with detailed remediation steps.
It has strong integration with the SDLC, especially during the coding phase.

CONS

HCL AppScan needs to improve its handling of false positives.
Security features should be enhanced in HCL AppScan.
Performance optimization is required for faster scanning in HCL AppScan.
HCL AppScan should improve its CI/CD integration capabilities.
Integrating HCL AppScan with other tools presents challenges.
 

HCL AppScan Pros review quotes

Ravi Khanchandani - PeerSpot reviewer
Ravi Khanchandani
Founder Director at Techsa Services
Nov 17, 2025
HCL AppScan has helped us improve our security posture, as we've been able to identify quite a few issues.
Read full review
MS
MukeshSaha
Associate Principal, Software Engineering at LTI - Larsen & Toubro Infotech
Nov 11, 2024
AppScan's most valuable features include its ability to identify vulnerabilities accurately, provide detailed remediation steps, and the newly introduced AI-powered features that enhance its functionality further.
Read full review
Gladwin Christian - PeerSpot reviewer
Gladwin Christian
QA manager at SmartStream Technologies ltd.
Sep 29, 2023
The most valuable feature of the solution is the scanning or security part.
Read full review
Buyer's Guide
HCL AppScan
May 2026
Free Report: HCL AppScan Reviews and More
Learn what your peers think about HCL AppScan. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.
DOWNLOAD NOW
893,221 professionals have used our research since 2012.
Rishi Anupam - PeerSpot reviewer
Rishi Anupam
Senior Manager at Airtel
May 29, 2023
The reporting part is the most valuable feature.
Read full review
Sthembiso Zondi - PeerSpot reviewer
Sthembiso Zondi
Head of Software Engineering at ronaldmariah@gmail.com
Jul 3, 2024
The platform has valuable security features, helping us identify sensitive code issues and the possibility of internal applications' exposure to external threats.
Read full review
AnshulTomar - PeerSpot reviewer
AnshulTomar
Cyber Security Architect and Presales Consultant at Kyndryl
Jan 16, 2024
The product has valuable features for static and dynamic testing.
Read full review
Miar Ahmad - PeerSpot reviewer
Miar Ahmad
Software Engineer at Inspire for Solutions Development
Feb 6, 2023
The most valuable feature of the solution is Postman.
Read full review
CV
CRISTIANO VIEIRA SILVA
Mechanical maintenance technician at SAQ
Apr 19, 2024
The most valuable feature of HCL AppScan is its integration with the SDLC, particularly during the coding phase.
Read full review
SG
SHIRDI SAIRAM GATTU
Application Security Engineer at a transportation company with 1,001-5,000 employees
Dec 11, 2023
It's generally a very user-friendly tool. Anyone can easily learn how to scan
Read full review
AnanyaRoy - PeerSpot reviewer
AnanyaRoy
Risk Analyst at Deloitte
Sep 25, 2023
It is a stable solution...It is a scalable solution...The initial setup or installation of HCL AppScan is easy.
Read full review
Show 10 more reviews (out of 41)
 

HCL AppScan Cons review quotes

Ravi Khanchandani - PeerSpot reviewer
Ravi Khanchandani
Founder Director at Techsa Services
Nov 17, 2025
There is one feature called SCA, which stands for Software Composition Analysis, that could be improved.
Read full review
MS
MukeshSaha
Associate Principal, Software Engineering at LTI - Larsen & Toubro Infotech
Nov 11, 2024
AppScan needs to improve its handling of false positives.
Read full review
Gladwin Christian - PeerSpot reviewer
Gladwin Christian
QA manager at SmartStream Technologies ltd.
Sep 29, 2023
The solution's scalability can be a matter of concern because one license runs on one machine only.
Read full review
Buyer's Guide
HCL AppScan
May 2026
Free Report: HCL AppScan Reviews and More
Learn what your peers think about HCL AppScan. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.
DOWNLOAD NOW
893,221 professionals have used our research since 2012.
Rishi Anupam - PeerSpot reviewer
Rishi Anupam
Senior Manager at Airtel
May 29, 2023
The penetration testing feature should be included.
Read full review
Sthembiso Zondi - PeerSpot reviewer
Sthembiso Zondi
Head of Software Engineering at ronaldmariah@gmail.com
Jul 3, 2024
They could incorporate AI to enhance vulnerability detection and improve the product's reporting capabilities.
Read full review
AnshulTomar - PeerSpot reviewer
AnshulTomar
Cyber Security Architect and Presales Consultant at Kyndryl
Jan 16, 2024
They could add a software component analysis tool.
Read full review
Miar Ahmad - PeerSpot reviewer
Miar Ahmad
Software Engineer at Inspire for Solutions Development
Feb 6, 2023
The databases for HCL are small and have room for improvement.
Read full review
CV
CRISTIANO VIEIRA SILVA
Mechanical maintenance technician at SAQ
Apr 19, 2024
Improving usability could enhance the overall experience with AppScan. It would be beneficial to make the solution more user-friendly, ensuring that everyone can easily navigate and utilize its features.
Read full review
SG
SHIRDI SAIRAM GATTU
Application Security Engineer at a transportation company with 1,001-5,000 employees
Dec 11, 2023
In future releases, I would like to see more aggressive reports. I would also like to see less false positives.
Read full review
AnanyaRoy - PeerSpot reviewer
AnanyaRoy
Risk Analyst at Deloitte
Sep 25, 2023
If HCL AppScan is able to alert the clients over email once the scan is complete, it would be great. Right now, HCL AppScan doesn't let me know if the scanning part is finished or not, because of which I have to come back and check mostly.
Read full review
Show 10 more reviews (out of 41)

Product Categories

Product Categories
Application Security Tools
Static Application Security Testing (SAST)
Dynamic Application Security Testing (DAST)

Popular Comparisons

Popular Comparisons
SonarQube vs HCL AppScan Logo
SonarQube vs HCL AppScan
Snyk vs HCL AppScan Logo
Snyk vs HCL AppScan
Checkmarx One vs HCL AppScan Logo
Checkmarx One vs HCL AppScan
GitLab vs HCL AppScan Logo
GitLab vs HCL AppScan
Veracode vs HCL AppScan Logo
Veracode vs HCL AppScan
CrowdStrike Falcon Cloud Security vs HCL AppScan Logo
CrowdStrike Falcon Cloud Security vs HCL AppScan
Coverity Static vs HCL AppScan Logo
Coverity Static vs HCL AppScan
Acunetix vs HCL AppScan Logo
Acunetix vs HCL AppScan
PortSwigger Burp Suite Professional vs HCL AppScan Logo
PortSwigger Burp Suite Professional vs HCL AppScan
Mend.io vs HCL AppScan Logo
Mend.io vs HCL AppScan
OpenText Core Application Security vs HCL AppScan Logo
OpenText Core Application Security vs HCL AppScan
Sonatype Lifecycle vs HCL AppScan Logo
Sonatype Lifecycle vs HCL AppScan
GitHub Advanced Security vs HCL AppScan Logo
GitHub Advanced Security vs HCL AppScan
OWASP Zap vs HCL AppScan Logo
OWASP Zap vs HCL AppScan
Qualys Web Application Scanning vs HCL AppScan Logo
Qualys Web Application Scanning vs HCL AppScan
See all alternatives

Product Categories

Product Categories
Application Security Tools
Static Application Security Testing (SAST)
Dynamic Application Security Testing (DAST)

Popular Comparisons

Popular Comparisons
SonarQube vs HCL AppScan Logo
SonarQube vs HCL AppScan
Snyk vs HCL AppScan Logo
Snyk vs HCL AppScan
Checkmarx One vs HCL AppScan Logo
Checkmarx One vs HCL AppScan
GitLab vs HCL AppScan Logo
GitLab vs HCL AppScan
Veracode vs HCL AppScan Logo
Veracode vs HCL AppScan
CrowdStrike Falcon Cloud Security vs HCL AppScan Logo
CrowdStrike Falcon Cloud Security vs HCL AppScan
Coverity Static vs HCL AppScan Logo
Coverity Static vs HCL AppScan
Acunetix vs HCL AppScan Logo
Acunetix vs HCL AppScan
PortSwigger Burp Suite Professional vs HCL AppScan Logo
PortSwigger Burp Suite Professional vs HCL AppScan
Mend.io vs HCL AppScan Logo
Mend.io vs HCL AppScan
OpenText Core Application Security vs HCL AppScan Logo
OpenText Core Application Security vs HCL AppScan
Sonatype Lifecycle vs HCL AppScan Logo
Sonatype Lifecycle vs HCL AppScan
GitHub Advanced Security vs HCL AppScan Logo
GitHub Advanced Security vs HCL AppScan
OWASP Zap vs HCL AppScan Logo
OWASP Zap vs HCL AppScan
Qualys Web Application Scanning vs HCL AppScan Logo
Qualys Web Application Scanning vs HCL AppScan
See all alternatives
Related questions
  • 34
Difference between IBM Appscan and HP fortify software
  • 30
Which solution do you prefer: Fortify WebInspect or HCL AppScan?
  • 228
If you had to both encrypt and compress data during transmission, which would you do first and why?
  • 154
When evaluating Application Security, what aspect do you think is the most important to look for?
  • 276
What are the threats associated with using ‘bogus’ cybersecurity tools?
  • 243
What are the Top 5 cybersecurity trends in 2022?
  • 142
Which application security solutions include both vulnerability scans and quality checks?
  • 157
We're evaluating Tripwire, what else should we consider?
  • 355
Is SonarQube the best tool for static analysis?
  • 127
Why Do I Need Application Security Software?