Acunetix vs HCL AppScan comparison

Invicti and HCLSoftware are both solutions in the Application Security Tools category. Invicti is ranked #16 with an average rating of 8.3, while HCLSoftware is ranked #15 with an average rating of 7.9. Invicti holds a 2.6% mindshare in AS, compared to HCLSoftware ’s 2.7% mindshare. Additionally, 86% of Invicti users are willing to recommend the solution, compared to 83% of HCLSoftware users who would recommend it.

Acunetix

Read 31 Acunetix reviews

3,627 Views
2,917 Comparison Views

86% willing to recommend

HCL AppScan

Read 43 HCL AppScan reviews

4,123 Views
3,144 Comparison Views

83% willing to recommend

Acunetix

HCL AppScan

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

HCL AppScan and Acunetix compete in the application security market. HCL AppScan has an edge due to its robust support and cost-effectiveness, whereas Acunetix stands out with its feature comprehensiveness.

Features: HCL AppScan offers extensive integration capabilities, detailed security analysis, and strong support. Acunetix provides accurate scanning, a wide vulnerability coverage, and quick results.

Room for Improvement: HCL AppScan could enhance scan speed, workflow intuitiveness, and integration features. Acunetix might improve scalability, proactive integrations, and user interface.

Ease of Deployment and Customer Service: HCL AppScan has streamlined deployment and reliable customer support. Acunetix provides both cloud and on-premise solutions with responsive assistance.

Pricing and ROI: HCL AppScan is cost-effective with compelling ROI due to low setup costs. Acunetix offers high ROI justifying its higher initial costs with its features.

To learn more, read our detailed Acunetix vs. HCL AppScan Report (Updated: January 2025).

Buyer's Guide

Acunetix vs. HCL AppScan

January 2025

Download the complete report

Helped 825,609 peers since 2012

Categories and Ranking

Acunetix

Ranking in Application Security Tools

16th

Ranking in Static Application Security Testing (SAST)

13th

Average Rating

7.8

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Vulnerability Management (21st), DevSecOps (6th)

HCL AppScan

Ranking in Application Security Tools

15th

Ranking in Static Application Security Testing (SAST)

12th

Average Rating

7.8

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Dynamic Application Security Testing (DAST) (1st)

Mindshare comparison

As of January 2025, in the Application Security Tools category, the mindshare of Acunetix is 2.6%, up from 2.4% compared to the previous year. The mindshare of HCL AppScan is 2.7%, down from 2.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Application Security Tools

Featured Reviews

AnubhavGoswami

Compliance Manager at Compunnel

Attractive automated reports with boost user productivity and an easy setup

The primary use is mainly related to vulnerability assessment, including both public and internal IP addresses By using this tool, we have reduced the workload and increased the productivity of users. It generates automated reports. This feature is beneficial when sharing reports with clients as…

Read full review

AnshulTomar

Cyber Security Architect and Presales Consultant at Kyndryl

Scalable platform with efficient static and dynamic testing features

We use the product for Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST). By integrating AppScan into our CI/CD pipelines, aligned with Agile methodologies, we ensure that security testing becomes an integral part of the software development lifecycle The…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most important feature is that it's a web-based graphical user interface. That is a great addition. Also, the ability to schedule scans is great."

"The scalability is good. The scalability is more than good because it can operate both as a standalone and it can be integrated as part of applications. So that really makes it a very, very versatile solution to have."

"We are able to create a report which shows the PCI DSS scoring and share it with the application teams. Then, they can correlate and see exactly what they need to fix, and why."

"The most valuable feature of the solution is the speed at which it can scan multiple domains in just a few hours."

"It can operate both as a standalone and it can be integrated with other applications, which makes it a very versatile solution to have."

"The usability and overall scan results are good."

"The solution is highly stable."

"I find it to be one of the most comprehensive tools, with support for manual intervention."

More Acunetix pros

"The most valuable feature of the solution is the scanning or security part."

"The solution is easy to use."

"The static scans are good, and the SaaS as well."

"It has certainly helped us find vulnerabilities in our software, so this is priceless in the end."

"This solution saves us time due to the low number of false positives detected."

"This is a stable solution."

"Compared to other tools only AppScan supports special language."

"AppScan's most valuable features include its ability to identify vulnerabilities accurately, provide detailed remediation steps, and the newly introduced AI-powered features that enhance its functionality further."

More HCL AppScan pros

Cons

"There is room for improvement in website authentication because I've seen other products that can do it much better."

"When monitoring the traffic we always have issues with the bandwidth consumption and the throttling of traffic."

"The pricing is a bit on the higher side."

"The solution can be improved by adding the ability to scan subdomains automatically, and by providing reports that can be exported to external databases to share with other solutions."

"The solution limits the number of scans. It would be much better if we could have unlimited scans."

"We want to see how much bandwidth usage it consumes. When we monitor traffic we have issues with the consumption and throttling of the traffic."

"We have had issues during upgrades where their scans worked on some apps better with previous versions. Then, we had to work with their tech support, who were great, to get it fixed for the next version."

"Acunetix needs to improve its cost."

More Acunetix cons

"A desktop version should be added."

"If HCL AppScan is able to alert the clients over email once the scan is complete, it would be great. Right now, HCL AppScan doesn't let me know if the scanning part is finished or not, because of which I have to come back and check mostly."

"We would like to see a check in the specific vulnerabilities in mobile applications or rooted devices, such as jailbreaking devices."

"Improvement can be done as per customer requirements."

"AppScan needs to improve its handling of false positives."

"I would like to see the roadmap for this product. We are still waiting to see it as we have only so many resources."

"The product has some technical limitations."

"The solution often has a high number of false positives. It's an aspect they really need to improve upon."

More HCL AppScan cons

Pricing and Cost Advice

"It is a bit expensive. If you need to check five applications, you have to pay almost 14,000. It is an agreement for two years at 7,000 per year for only five applications. You cannot change the applications in the license. So, you are stuck with the same license for the five applications for one full year."

"When compared with other products, the pricing is a little bit high. But it gives value for the price. It serves the purpose and is worthwhile for the price we pay."

"Acunetix was around the same price as all the other vendors we looked at, nothing special."

"The solution is expensive."

"The costs aren't very expensive. It costs around $3000 or $4000."

"All things considered, I think it has a good price/value ratio."

"Implementing Acunetix needs a medium or larger business agency, because you need some money to get Acunetix. It is costly, but if you care about your agency's security, then maybe it's a cost that might help you in the future."

"The cost is based on two types of licenses, ConsultLite, and ConsultPlus, as well as the number of domains that are scanned."

More Acunetix pricing and cost advice

"With the features, that they offer, and the support, they offer, AppScan pricing is on a higher level."

"Our clients are willing to pay the extra money. It is expensive."

"The product has premium pricing and could be more competitive."

"Pricing was the main reason that we went ahead with this solution as they were the lowest in the market."

"HCL AppScan is expensive."

"The tool was expensive."

"I would rate the product's pricing a nine out of ten. The product's pricing is expensive compared to the features that they offer."

"AppScan is a little bit expensive. IBM needs to work a little bit on the pricing model, decreasing the license cost."

More HCL AppScan pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.

See recommendations

825,609 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

13%

Government

Manufacturing Company

Computer Software Company

18%

Financial Services Firm

15%

Manufacturing Company

11%

Government

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Acunetix Vulnerability Scanner?

The tool's most valuable feature is scan configurations. We use it for external physical applications. The scanning time depends on the application's code.

See all answers

What is your primary use case for Acunetix Vulnerability Scanner?

I use Acunetix for penetration testing purposes. This is the primary use case.

See all answers

What advice do you have for others considering Acunetix Vulnerability Scanner?

I rate the overall solution nine out of ten. I prefer Acunetix for its more precise and accurate results.

See all answers

What do you like most about HCL AppScan?

The most valuable feature of HCL AppScan is its integration with the SDLC, particularly during the coding phase.

See all answers

What needs improvement with HCL AppScan?

AppScan needs to improve its handling of false positives. It also requires enhancements in customer support, similar to what Veracode provides. Regularly scheduling calls with clients to discuss fe...

See all answers

What is your primary use case for HCL AppScan?

The primary use case for AppScan is for security purposes. I compare AppScan with other tools such as Veracode. We use AppScan for vulnerability detection and auto-remediation of vulnerabilities wi...

See all answers

Comparisons

OWASP Zap vs Acunetix

Compared 16% of the time

PortSwigger Burp Suite Professional vs Acunetix

Compared 12% of the time

Tenable.io Web Application Scanning vs Acunetix

Compared 8% of the time

PortSwigger Burp Suite Enterprise Edition vs Acunetix

Compared 6% of the time

Invicti vs Acunetix

Compared 6% of the time

More Acunetix Competitors

SonarQube Server (formerly SonarQube) vs HCL AppScan

Compared 13% of the time

Veracode vs HCL AppScan

Compared 11% of the time

Fortify on Demand vs HCL AppScan

Compared 8% of the time

PortSwigger Burp Suite Professional vs HCL AppScan

Compared 8% of the time

OWASP Zap vs HCL AppScan

Compared 7% of the time

More HCL AppScan Competitors

Product Reports

Buyer's Guide

Acunetix

January 2025

Download Acunetix product report

Buyer's Guide

HCL AppScan

December 2024

Download HCL AppScan product report

Also Known As

AcuSensor

IBM Security AppScan, Rational AppScan, AppScan

Learn More

Invicti

HCLSoftware

Overview

Acunetix Web Vulnerability Scanner is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross site scripting, and other exploitable vulnerabilities.

IBM Security AppScan enhances web application security and mobile application security, improves application security program management and strengthens regulatory compliance. By scanning your web and mobile applications prior to deployment, AppScan enables you to identify security vulnerabilities and generate reports and fix recommendations.

Sample Customers

Joomla!, Digicure, Team Random, Credit Suisse, Samsung, Air New Zealand

Essex Technology Group Inc., Cisco, West Virginia University, APIS IT

Buyer's Guide

Acunetix vs. HCL AppScan

January 2025

Free Report: Acunetix vs. HCL AppScan

Find out what your peers are saying about Acunetix vs. HCL AppScan and other solutions. Updated: January 2025.

DOWNLOAD NOW

825,609 professionals have used our research since 2012.

See our Acunetix vs. HCL AppScan report.

See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.