The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution.
Network & Security Engineer at PT. Centrin Online Prima
Reseller
Top 5
2023-04-11T06:04:36Z
Apr 11, 2023
It needs better integration with mobile applications. It would be better if we could scan not only web applications but also mobile applications, like iOS, Android, and Windows Mobile. It would be better for our team to have the ability to scan mobile applications as well. The performance could be better when it comes to scanning two mobile applications.
Head Information Security at Akhtar Fuiou Technologies
Real User
Top 5
2022-11-17T12:22:54Z
Nov 17, 2022
One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions. This is the main aspect that I hope to see Rapid7 improve on. Beyond reducing false positives, I would also like to see them implement better reporting features, particularly in the executive summary type of reports which need to be user-friendly and easily understood by non-technical people. The recommendations and solutions on these reports could always be improved to make them more relevant, too. Lastly, the stability isn't that great, and sometimes it becomes non-responsive. I feel like the stability of the application is very average and currently needs more work.
AppSpider has some problems with the RAM needed while scanning. There are also a lot of options, which can make it difficult to configure the system to get the results you want.
Network & Security Engineer at PT. Centrin Online Prima
Reseller
Top 5
2020-12-22T22:09:00Z
Dec 22, 2020
Integration could be better. For example, while doing the scanning, using the recording username and passwords, there are issues. Also, they could integrate CSED into the product which would benefit in the future.
Network & Security Engineer at PT. Centrin Online Prima
Reseller
Top 5
2020-09-27T04:09:52Z
Sep 27, 2020
AppSpider could improve in the area of integration. They need to add more opportunities. The documentation about integration with AppSpider is bad news and some integrations are quite difficult to do right now. It would be nice if we had a simple resource where we could look up on the internet what they are set up to integrate with. Some products will not currently integrate with AppSpider. The interface of the enterprise product is a bit too simple. It would be good if there were options for customizing the views more like a dashboard.
Security Consultant at a tech vendor with 11-50 employees
Real User
2020-04-16T08:44:43Z
Apr 16, 2020
With AppSpider, you can scan only one application at a time. If you have AppSpider Enterprise then you can connect one or two more scanners and scan multiple applications at one time. Support response times are slow and can be improved.
There are some reports that are not so good. They could provide scanning or compliance on some of them. The solution is too slow. It could take a full day to scan. Competitors are much faster.
Information Security Senior Expert (Founding member, African Cybersecurity Center) at a financial services firm with 10,001+ employees
Real User
2019-10-22T04:42:00Z
Oct 22, 2019
This price of this solution is a little bit expensive. The average cost is still good for us because our budget is more open to security solutions. We need twenty-four-hour security because we are a bank.
SPAs, APIs, mobile—the evolution of application technology is measured in months, not years. Is your web application security testing tool designed to keep up? AppSpider lets you collect all the information needed to test all the apps so that you aren’t left with gaping application risks.
Our dynamic application security testing (DAST) solution crawls to the deepest, darkest corners of even the most modern and complex apps to effectively test for risk and get you the insight you...
The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution.
It needs better integration with mobile applications. It would be better if we could scan not only web applications but also mobile applications, like iOS, Android, and Windows Mobile. It would be better for our team to have the ability to scan mobile applications as well. The performance could be better when it comes to scanning two mobile applications.
One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions. This is the main aspect that I hope to see Rapid7 improve on. Beyond reducing false positives, I would also like to see them implement better reporting features, particularly in the executive summary type of reports which need to be user-friendly and easily understood by non-technical people. The recommendations and solutions on these reports could always be improved to make them more relevant, too. Lastly, the stability isn't that great, and sometimes it becomes non-responsive. I feel like the stability of the application is very average and currently needs more work.
AppSpider has some problems with the RAM needed while scanning. There are also a lot of options, which can make it difficult to configure the system to get the results you want.
There are some glitches with stability, and it is an area for improvement.
Integration could be better. For example, while doing the scanning, using the recording username and passwords, there are issues. Also, they could integrate CSED into the product which would benefit in the future.
AppSpider could improve in the area of integration. They need to add more opportunities. The documentation about integration with AppSpider is bad news and some integrations are quite difficult to do right now. It would be nice if we had a simple resource where we could look up on the internet what they are set up to integrate with. Some products will not currently integrate with AppSpider. The interface of the enterprise product is a bit too simple. It would be good if there were options for customizing the views more like a dashboard.
With AppSpider, you can scan only one application at a time. If you have AppSpider Enterprise then you can connect one or two more scanners and scan multiple applications at one time. Support response times are slow and can be improved.
The dashboard and interface are crucial and they need some improvement.
There are some reports that are not so good. They could provide scanning or compliance on some of them. The solution is too slow. It could take a full day to scan. Competitors are much faster.
This price of this solution is a little bit expensive. The average cost is still good for us because our budget is more open to security solutions. We need twenty-four-hour security because we are a bank.
Implementing Rapid7 AppSpider requires scanning and self-identification mechanisms. You can add different types of authentication to each scan.