Name: AppScan
Rating: 4.7 (218 reviews)

Overview

Product Information on AppScan

Updated 8th January 2026

What is AppScan?

AppScan is a software developed to help organizations identify and manage security vulnerabilities in applications. It performs dynamic, static, interactive, and open-source security testing to analyze code and detect issues throughout the software development lifecycle. The software provides automated scanning capabilities for web, mobile, and API applications, offering remediation guidance and reporting functionalities to support compliance with regulatory standards. AppScan integrates with development and DevOps workflows to enable early detection of vulnerabilities and facilitate secure code deployment. The software addresses the business problem of reducing the risk of security breaches by enhancing application security and supporting continuous vulnerability management.

Overall experience with AppScan

SECURITY ENGINEER - APPSEC

50M - 250M USD, IT Services

FAVORABLE

“HCL AppScan: A Valuable Tool for Enhanced Security Testing”

5.0

Apr 15, 2026

HCL AppScan has significantly enhanced our application security testing process and it's become an essential part of our day-to-day activities. It provides comprehensive and customizable AST reports, enabling us to scan apps throughout the development lifecycle and identify vulns early. The platform is robust and supports scans at scale.

Application Security JR Specialist

500M - 1B USD, Banking

CRITICAL

“Insufficient Documentation: A Hurdle in DAST Tool Troubleshooting”

3.0

Nov 12, 2024

Overall the product helps us to achieve the main objective of conducting DAST assessments, but unfortunately we have encountered many "bugs" or partial functionality that had caused several problems regarding performance, installation or general maintainance.

Badges

Gartner Peer Insights recognizes vendors who meet or exceed both the market average Overall Experience and the market average User Interest and Adoption score through a Customers’ Choice distinction.

For Market:
Application Security Testing

About Company

Company Description

HCLSoftware is an integral arm of HCLTech and is primarily engaged in the development, marketing, sale, and support of software solutions. The company's main sector focus includes AI and Automation, Data, Analytics and Insights, Digital Transformation, and Enterprise Security. As a provider of cloud-native solutions for enterprise software, HCLSoftware is responsible for powering an extensive number of applications at numerous organizations globally. The fundamental mission of HCLSoftware revolves around ensuring customer success through continuous product innovation.

Company Details

Company type

Public

Year Founded

1991

Head office location

Noida, India

Number of employees

10001+

Website

https://www.hcl-software.com/

Do You Manage Peer Insights at HCLTech (HCLSoftware)?

Access Vendor Portal to update and manage your profile.

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

User Sentiment About AppScan

Reviewer Insights for: AppScan

Performance of AppScan Across Market Features

AppScan Likes & Dislikes

Comprehensive coverage across DAST, SAST and SCA, allowing end-to-end AppSec testing and validation. Detailed and well-structured reports that support vuln analysis and remediation. Can be easily integrated with other IBM tools. Highly customizable configs for DAST assessments The post-sales and support team is present and greatly helps when needed.

1.- Well organized directory of application scans 2.- Detailed security and compliance reports 3.- Crawling for apps and APIs is effective, revealing hidden vulnerable directory paths or other components. 4.- Constantly evolving by increasing the vulnerability lists

The product provides multiple tests i.e. SAST, DAST, IAST, SCA. There is clear reporting and compliance (e.g. OWASP) mapping. It integrates with DevOps pipelines and provides a centralized dashboard.

The overall dashboard could really be enhanced, particularly in terms of filter functionality, totals calculation and the level of detailed information provided. Initial setup and optimization can be complex, especially for teams without prior experience. Scan performance and result processing time can be a challenge in high-volume environments. Integrations can be tricky sometimes - pipeline.

1.- Difficult installation process or maintenance due to many steps for validations and if anything crashes, you need to start over again 2.- Lots of bugs or lack of functionality leading to decreasing performance or efficiency 3.- Lack of proper documentation for a guided troubleshooting

Higher number of false positives, initial setup took time and pricing

Top AppScan Alternatives

Peer Discussions

AppScan Reviews and Ratings

Recommended Gartner Insights

50M-1B USD

IT Services

Review Source

HCL AppScan: A Valuable Tool for Enhanced Security Testing

VP, IT Security and Risk Management

10B+ USD

Banking

Application Security through HCL AppScan

Jan 27, 2026

The product enables our Bank to identify code-related vulnerabilities. It has a user-friendly interface and integrates seamlessly with the DevOps pipeline. The centralized dashboards are very useful.

ENGINEER

Powerful enterprise-grade DAST tool that strengthens application security but requires careful configuration

Nov 10, 2025

My experience with HCL AppScan Enterprise for automated and manual dynamic application security testing across multiple web, API & Application. Performed scan configuration tuning setting authentication url exclusions, login management and optimizing scan policies for accuracy and performance.

IT Security & Risk Management Associate

1B-10B USD

Insurance (except health)

Clear Reporting and Strong Support Offset Integration Challenges and Learning Curve

Dec 21, 2025

reliable scans and clear reports with great support, also has strong coverage with easy use. Finally i can say it's secure and efficient but at times integration and few bugs throw us off but can be planned out.

Security Enginner

The Comprehensive Coverage of HCL App Scan on Software Vulnerabilities

Apr 23, 2026

Overall, the experience is very good, HCL App Scan is essential in our security initiatives. Its robust features, including dynamic and static application. The comprehensive reports help us identify vulnerabilities early in the development process, enabling timely remediation. The interactive application security testing adds an extra layer of depth, ensuring a more resilient software environment. The setup is simple and contributes to an overall positive experience.