• HOME
  • CATEGORIES

    • CATEGORIES

    • Browse All Categories
  • FOR VENDORS

    • FOR VENDORS

    • Log In to Vendor Portal
    • Get Started
  • REVIEWS

    • REVIEWS

    • Write a Review
    • Product Reviews
    • Vendor Directory
    • Product Comparisons
  • GARTNER PEER COMMUNITY™
  • GARTNER.COM
  • Community GuidelinesListing GuidelinesBrowse VendorsRules of EngagementFAQPrivacyTerms of Service
    ©2026 Gartner, Inc. and/or its affiliates.
    All rights reserved.
  • Categories

    • No categories available

      Browse All Categories

      Select a category to view markets

  • For Vendors

    • Log In to Vendor Portal 

    • Get Started 

  • Write a Review

Join / Sign In
  1. Home
  2. /
  3. AppScan
Logo of AppScan

AppScan

byHCLTech (HCLSoftware)
in
4.7
2026
Market Presence: Application Security Testing, Mobile Application Security Testing

Overview

Product Information on AppScan

Updated 8th January 2026

What is AppScan?

AppScan is a software developed to help organizations identify and manage security vulnerabilities in applications. It performs dynamic, static, interactive, and open-source security testing to analyze code and detect issues throughout the software development lifecycle. The software provides automated scanning capabilities for web, mobile, and API applications, offering remediation guidance and reporting functionalities to support compliance with regulatory standards. AppScan integrates with development and DevOps workflows to enable early detection of vulnerabilities and facilitate secure code deployment. The software addresses the business problem of reducing the risk of security breaches by enhancing application security and supporting continuous vulnerability management.

AppScan Pricing

AppScan software utilizes a subscription-based pricing model with options based on the number of applications or scans, user seats, and deployment preferences such as on-premises or cloud. Pricing tiers accommodate different organizational sizes and security needs, with additional features and support available at higher levels.

Overall experience with AppScan

IT Security & Risk Management Associate
30B + USD, Banking
FAVORABLE

“SAST, DAST, and SCA features cover full team needs”

5.0
Jul 6, 2026
This text serves as a placeholder and does not reflect the user’s review responses or opinions. This text serves as a placeholder and does not reflect the user’s review responses or opinions. This text serves as a placeholder and does not reflect the user’s review responses or opinions.
Application Security JR Specialist
500M - 1B USD, Banking
CRITICAL

“Insufficient Documentation: A Hurdle in DAST Tool Troubleshooting”

3.0
Nov 12, 2024
This text serves as a placeholder and does not reflect the user’s review responses or opinions. This text serves as a placeholder and does not reflect the user’s review responses or opinions. This text serves as a placeholder and does not reflect the user’s review responses or opinions.

Badges

Gartner Peer Insights recognizes vendors who meet or exceed both the market average Overall Experience and the market average User Interest and Adoption score through a Customers’ Choice distinction.
2026
For Market:
Application Security Testing

About Company

Company Description

Updated 29th February 2024

HCLSoftware is an integral arm of HCLTech and is primarily engaged in the development, marketing, sale, and support of software solutions. The company's main sector focus includes AI and Automation, Data, Analytics and Insights, Digital Transformation, and Enterprise Security. As a provider of cloud-native solutions for enterprise software, HCLSoftware is responsible for powering an extensive number of applications at numerous organizations globally. The fundamental mission of HCLSoftware revolves around ensuring customer success through continuous product innovation.

Company Details

Updated 29th February 2024
Company type
Public
Year Founded
1991
Head office location
Noida, India
Number of employees
10001+
Website
https://www.hcl-software.com/

Do You Manage Peer Insights at HCLTech (HCLSoftware)?

Access Vendor Portal to update and manage your profile.

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Top AppScan Alternatives

Logo of Checkmarx SAST
1. Checkmarx SAST
4.5
(414 Ratings)
Logo of Veracode
2. Veracode
4.6
(409 Ratings)
Logo of Fluid Attacks
3. Fluid Attacks
4.8
(331 Ratings)
View All Alternatives

Peer Discussions

AppScan Reviews and Ratings

4.7

(223 Ratings)

Rating Distribution

5 Star
61%
4 Star
34%
3 Star
4%
2 Star
0%
1 Star
1%
Why ratings and reviews count differ?
  • IT Security & Risk Management Associate
    10B+ USD
    Banking
    Review Source

    SAST, DAST, and SCA features cover full team needs

    5.0
    Jul 6, 2026
    They were really good as a person. They contacted with us in an informative and helpful way. Their tool is also encapsulates sast-dast-sca. Which is enough for our whole team. It offers a comprehensive, all in one appsec suite with good ci cd pipeline integration anad good compliance reporting. However platform feels clunky and resource heavy. Which suffers steep learning curve and too much complex setup process. Their developer education interface is great enough. Any developer can learn their vulnerabilities and how to fix by themselves without asking us.
  • IT Security & Risk Management Associate
    10B+ USD
    Banking
    Review Source

    SAST, DAST, and SCA features cover full team needs

    5.0
    Jul 6, 2026
    They were really good as a person. They contacted with us in an informative and helpful way. Their tool is also encapsulates sast-dast-sca. Which is enough for our whole team. It offers a comprehensive, all in one appsec suite with good ci cd pipeline integration anad good compliance reporting. However platform feels clunky and resource heavy. Which suffers steep learning curve and too much complex setup process. Their developer education interface is great enough. Any developer can learn their vulnerabilities and how to fix by themselves without asking us.
  • Read All 228 Reviews

    Get unlimited access to verified peer reviews and insights

    Read unlimited Gartner-vetted product reviews
    View and share valuable product insights
    Download full product profiles
    Review products you use today

Recommended Gartner Insights

  • Critical Capabilities for Application Security Testing
  • Magic Quadrant for Application Security Testing
Powered by Google TranslateThis service may contain translations provided by Google. Google disclaims all warranties related to the translations, express or implied, including any warranties of accuracy, reliability, and any implied warranties of merchantability, fitness for a particular purpose and noninfringement. Gartner's use of this provider is for operational purposes and does not constitute an endorsement of its products or services.

Gartner Peer Insights content consists of the opinions of individual end users based on their own experiences, and should not be construed as statements of fact, nor do they represent the views of Gartner or its affiliates. Gartner does not endorse any vendor, product or service depicted in this content nor makes any warranties, expressed or implied, with respect to this content, about its accuracy or completeness, including any warranties of merchantability or fitness for a particular purpose.

This site is protected by hCaptcha and its Privacy Policy and Terms of Use apply.


Software reviews and ratings for EMMS, BI, CRM, MDM, analytics, security and other platforms - Peer Insights by Gartner
Community GuidelinesListing GuidelinesBrowse VendorsRules of EngagementFAQsPrivacyTerms of Use

©2026 Gartner, Inc. and/or its affiliates.

All rights reserved.

User Sentiment About AppScan
Reviewer Insights for: AppScan
Performance of AppScan Across Market Features

AppScan Likes & Dislikes

Like

The platform's ability to centralize SAST, DAST, and SCA across a multi-tiered enterprise application portfolio is its strongest asset. It also offers out-of-the-box reporting capabilities that map vulnerabilities directly to strict regulatory and financial industry standards. For instance, owasp. Its SBOM management capabilities also give clear visibility in open source dependencies and third party risks. It enables automated policy evaluation across the CI/CD pipeline. This ensures that vulnerable components are strictly blocked before production.

Like

The platform's ability to centralize SAST, DAST, and SCA across a multi-tiered enterprise application portfolio is its strongest asset. It also offers out-of-the-box reporting capabilities that map vulnerabilities directly to strict regulatory and financial industry standards. For instance, owasp. Its SBOM management capabilities also give clear visibility in open source dependencies and third party risks. It enables automated policy evaluation across the CI/CD pipeline. This ensures that vulnerable components are strictly blocked before production.

Like

The platform's ability to centralize SAST, DAST, and SCA across a multi-tiered enterprise application portfolio is its strongest asset. It also offers out-of-the-box reporting capabilities that map vulnerabilities directly to strict regulatory and financial industry standards. For instance, owasp. Its SBOM management capabilities also give clear visibility in open source dependencies and third party risks. It enables automated policy evaluation across the CI/CD pipeline. This ensures that vulnerable components are strictly blocked before production.

Dislike

1.- Difficult installation process or maintenance due to many steps for validations and if anything crashes, you need to start over again 2.- Lots of bugs or lack of functionality leading to decreasing performance or efficiency 3.- Lack of proper documentation for a guided troubleshooting

Dislike

1.- Difficult installation process or maintenance due to many steps for validations and if anything crashes, you need to start over again 2.- Lots of bugs or lack of functionality leading to decreasing performance or efficiency 3.- Lack of proper documentation for a guided troubleshooting

Dislike

1.- Difficult installation process or maintenance due to many steps for validations and if anything crashes, you need to start over again 2.- Lots of bugs or lack of functionality leading to decreasing performance or efficiency 3.- Lack of proper documentation for a guided troubleshooting