# Edgescan, Invicti (formerly Netsparker) vs HCL AppScan Comparison | | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Star Rating** | 4.7 out of 5 | 4.6 out of 5 | 4.1 out of 5 | | **Total Reviews** | 53 | 69 | 76 | | **Largest Market Segment** | Mid-Market (38.1% of reviews) | Enterprise (47.7% of reviews) | Enterprise (53.4% of reviews) | | **Entry Level Price** | Contact Us | No pricing available | Free | --- ## Top Pros & Cons ### Edgescan Pros: - Ease of Use (25 reviews) - Vulnerability Detection (24 reviews) Cons: - Complex UI (5 reviews) - Limited Customization (5 reviews) ### Invicti (formerly Netsparker) Pros: - Ease of Use (9 reviews) - Scanning Technology (7 reviews) Cons: - Poor Customer Support (3 reviews) - Slow Performance (3 reviews) ### HCL AppScan **Not enough data** --- ## Ratings Comparison | Rating | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Meets Requirements** | 8.9 (36 reviews) | 9.1 (59 reviews) | 8.7 (60 reviews) | | **Ease of Use** | 9.1 (37 reviews) | 9.1 (59 reviews) | 8.6 (63 reviews) | | **Ease of Setup** | 9.1 (33 reviews) | 9.0 (49 reviews) | 8.5 (32 reviews) | | **Ease of Admin** | 8.9 (25 reviews) | 9.2 (46 reviews) | 8.6 (32 reviews) | | **Quality of Support** | 9.6 (36 reviews) | 8.9 (59 reviews) | 8.5 (61 reviews) | | **Has the product been a good partner in doing business?** | 9.3 (25 reviews) | 9.6 (44 reviews) | 8.8 (31 reviews) | | **Product Direction (% positive)** | 9.7 (34 reviews) | 10.0 (55 reviews) | 8.4 (59 reviews) | --- ## Pricing ### Edgescan #### Entry-Level Pricing Plan: Edgescan Essentials: Automated Application Security Testing Price: Contact Us Description: Edgescan Essentials provides Automated, unauthenticated testing of your web applications and underlying infrastructure, combining proprietary automation with expert validation to deliver accurate, false-positive-free insights. Designed for scalable security coverage, Essentials gives you a clear picture of your external risk posture—without the noise. External, unauthenticated attack simulation Automated web app & infrastructure vulnerability discovery Expert‑validated results that remove noise Continuous scanning and AI‑supported remediation Key Features: - 100% validated vulnerability results—no false positives - Includes Network Vulnerability Management (NVM) for host-layer vulnerability discovery. - Unlimited automated penetration testing assessments [Browse all 7 editions](https://www.g2.com/products/edgescan/pricing) #### Free Trial Yes ### Invicti (formerly Netsparker) #### Entry-Level Pricing No pricing available #### Free Trial No information available ### HCL AppScan #### Entry-Level Pricing Plan: HCL AppScan CodeSweep Price: Free Description: Free-to-use security tool for developers alike who need to "spell check" and fix their code, as they write it, in multiple IDEs. Key Features: - Ideal for Developers [Browse all 3 editions](https://www.g2.com/products/hcl-appscan/pricing) #### Free Trial Yes --- ## Features Comparison By Category ### Website Security | Product | Score | Reviews | |---|---|---| | **Edgescan** | 10.0/10 | 7 | | **Invicti (formerly Netsparker)** | 8.9/10 | 26 | | **HCL AppScan** | N/A | N/A | #### Administration | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Content Delivery** | Not enough data | 8.7 (18 reviews) | Not enough data | | **Dashboard & Reporting** | 10.0 (7 reviews) | 9.5 (22 reviews) | Not enough data | | **Alerting** | Not enough data | 9.0 (22 reviews) | Not enough data | #### Risk Analysis | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Blacklist and Whitelist** | Not enough data | Feature Not Available | Not enough data | | **Vulnerability Assessment** | 10.0 (7 reviews) | 9.3 (23 reviews) | Not enough data | | **Security Auditing** | Not enough data | 9.2 (23 reviews) | Not enough data | #### Threat Protection | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Firewall** | Not enough data | 7.9 (13 reviews) | Not enough data | | **DDoS Protection** | Not enough data | Feature Not Available | Not enough data | | **Malware Detection** | Not enough data | 8.2 (14 reviews) | Not enough data | | **Malware Removal** | Not enough data | Feature Not Available | Not enough data | #### Generative AI | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **AI Text Summarization** | Not enough data | Feature Not Available | Not enough data | ### Penetration Testing | Product | Score | Reviews | |---|---|---| | **Edgescan** | 8.8/10 | 21 | | **Invicti (formerly Netsparker)** | 8.7/10 | 21 | | **HCL AppScan** | N/A | N/A | #### Administration | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **API / Integrations** | 8.1 (12 reviews) | 8.2 (14 reviews) | Not enough data | | **Extensibility** | 8.9 (9 reviews) | 8.3 (13 reviews) | Not enough data | | **Reporting and Analytics** | 9.1 (15 reviews) | 9.1 (18 reviews) | Not enough data | #### Analysis | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Issue Tracking** | 8.8 (14 reviews) | 8.4 (15 reviews) | Not enough data | | **Reconnaissance** | 8.9 (9 reviews) | 9.0 (17 reviews) | Not enough data | | **Vulnerability Scan** | 9.6 (18 reviews) | 9.7 (18 reviews) | Not enough data | #### Testing | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Command-Line Tools** | 7.9 (8 reviews) | 7.6 (12 reviews) | Not enough data | | **Manual Testing** | 9.1 (11 reviews) | 8.6 (15 reviews) | Not enough data | | **Test Automation** | 8.6 (13 reviews) | 9.0 (18 reviews) | Not enough data | | **Performance and Reliability** | 8.5 (12 reviews) | 9.1 (18 reviews) | Not enough data | ### Static Application Security Testing (SAST) | Product | Score | Reviews | |---|---|---| | **Edgescan** | N/A | N/A | | **Invicti (formerly Netsparker)** | N/A | N/A | | **HCL AppScan** | 8.1/10 | 24 | #### Administration | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **API / Integrations** | Not enough data | Not enough data | 8.3 (22 reviews) | | **Extensibility** | Not enough data | Not enough data | 8.5 (21 reviews) | #### Analysis | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Reporting and Analytics** | Not enough data | Not enough data | 8.7 (23 reviews) | | **Issue Tracking** | Not enough data | Not enough data | 7.8 (22 reviews) | | **Static Code Analysis** | Not enough data | Not enough data | 8.4 (23 reviews) | | **Code Analysis** | Not enough data | Not enough data | 8.0 (23 reviews) | #### Testing | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Command-Line Tools** | Not enough data | Not enough data | 7.6 (21 reviews) | | **Manual Testing** | Not enough data | Not enough data | 7.8 (21 reviews) | | **Test Automation** | Not enough data | Not enough data | 8.4 (20 reviews) | | **Compliance Testing** | Not enough data | Not enough data | 7.9 (21 reviews) | | **Black-Box Scanning** | Not enough data | Not enough data | 8.3 (20 reviews) | | **Detection Rate** | Not enough data | Not enough data | 8.3 (22 reviews) | | **False Positives** | Not enough data | Not enough data | 7.3 (22 reviews) | #### Agentic AI - Static Application Security Testing (SAST) | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | ### Dynamic Application Security Testing (DAST) | Product | Score | Reviews | |---|---|---| | **Edgescan** | 9.0/10 | 6 | | **Invicti (formerly Netsparker)** | 8.4/10 | 30 | | **HCL AppScan** | 8.1/10 | 30 | #### Administration | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **API / Integrations** | 8.0 (5 reviews) | 8.2 (21 reviews) | 8.1 (26 reviews) | | **Extensibility** | Not enough data | 8.3 (20 reviews) | 8.2 (28 reviews) | #### Analysis | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Reporting and Analytics** | 9.3 (5 reviews) | 9.0 (29 reviews) | 8.5 (29 reviews) | | **Issue Tracking** | Not enough data | 9.2 (26 reviews) | 8.0 (27 reviews) | | **Static Code Analysis** | Feature Not Available | Feature Not Available | 8.2 (28 reviews) | | **Vulnerability Scan** | 9.3 (5 reviews) | 9.4 (29 reviews) | 8.5 (27 reviews) | | **Code Analysis** | Feature Not Available | 7.6 (18 reviews) | 8.3 (27 reviews) | #### Testing | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Manual Testing** | Not enough data | 7.1 (19 reviews) | 7.7 (28 reviews) | | **Test Automation** | 9.3 (5 reviews) | 8.5 (24 reviews) | 7.9 (24 reviews) | | **Compliance Testing** | Not enough data | 8.4 (23 reviews) | 8.4 (26 reviews) | | **Black-Box Scanning** | Not enough data | 9.1 (21 reviews) | 8.2 (29 reviews) | | **Detection Rate** | Not enough data | 8.6 (21 reviews) | 8.2 (29 reviews) | | **False Positives** | Not enough data | 7.4 (21 reviews) | 7.1 (29 reviews) | ### Vulnerability Scanner | Product | Score | Reviews | |---|---|---| | **Edgescan** | 8.5/10 | 24 | | **Invicti (formerly Netsparker)** | 8.6/10 | 20 | | **HCL AppScan** | N/A | N/A | #### Performance | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Issue Tracking** | 9.5 (16 reviews) | 8.6 (18 reviews) ✓ Verified | Not enough data | | **Detection Rate** | 9.3 (17 reviews) | 9.0 (18 reviews) ✓ Verified | Not enough data | | **False Positives** | 9.0 (18 reviews) | 7.9 (20 reviews) ✓ Verified | Not enough data | | **Automated Scans** | 9.6 (21 reviews) | 9.1 (19 reviews) ✓ Verified | Not enough data | #### Network | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Compliance Testing** | 8.9 (17 reviews) | 8.7 (14 reviews) ✓ Verified | Not enough data | | **Perimeter Scanning** | 9.2 (15 reviews) | 8.6 (11 reviews) ✓ Verified | Not enough data | | **Configuration Monitoring** | 8.3 (14 reviews) | 8.3 (11 reviews) ✓ Verified | Not enough data | #### Application | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Manual Application Testing** | 8.9 (15 reviews) | 8.2 (15 reviews) | Not enough data | | **Static Code Analysis** | 8.3 (14 reviews) | 8.2 (15 reviews) ✓ Verified | Not enough data | | **Black Box Testing** | 8.8 (15 reviews) | 9.2 (18 reviews) ✓ Verified | Not enough data | #### Agentic AI - Vulnerability Scanner | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Autonomous Task Execution** | 6.1 (9 reviews) | Not enough data | Not enough data | | **Proactive Assistance** | 6.5 (9 reviews) | Not enough data | Not enough data | ### Software Composition Analysis | Product | Score | Reviews | |---|---|---| | **Edgescan** | N/A | N/A | | **Invicti (formerly Netsparker)** | N/A | N/A | | **HCL AppScan** | N/A | N/A | #### Functionality - Software Composition Analysis | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Language Support** | Not enough data | Not enough data | Not enough data | | **Integration** | Not enough data | Not enough data | Not enough data | | **Transparency** | Not enough data | Not enough data | Not enough data | #### Effectiveness - Software Composition Analysis | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Remediation Suggestions** | Not enough data | Not enough data | Not enough data | | **Continuous Monitoring** | Not enough data | Not enough data | Not enough data | | **Thorough Detection** | Not enough data | Not enough data | Not enough data | ### Risk-Based Vulnerability Management | Product | Score | Reviews | |---|---|---| | **Edgescan** | 8.7/10 | 12 | | **Invicti (formerly Netsparker)** | N/A | N/A | | **HCL AppScan** | N/A | N/A | #### Risk Analysis | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Risk Scoring** | 9.2 (8 reviews) | Not enough data | Not enough data | | **Reporting** | 8.7 (10 reviews) | Not enough data | Not enough data | | **Risk-Prioritization** | 9.4 (9 reviews) | Not enough data | Not enough data | #### Vulnerability Assesment | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Vulnerability Scanning** | 9.3 (12 reviews) | Not enough data | Not enough data | | **Vulnerability Intelligence** | 9.2 (10 reviews) | Not enough data | Not enough data | | **Contextual Data** | 8.1 (6 reviews) | Not enough data | Not enough data | | **Dashboards** | 8.3 (8 reviews) | Not enough data | Not enough data | #### Automation | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Automated Remediation** | 8.3 (6 reviews) | Not enough data | Not enough data | | **Workflow Automation** | 8.3 (6 reviews) | Not enough data | Not enough data | | **Security Testing** | 8.7 (5 reviews) | Not enough data | Not enough data | | **Test Automation** | 7.9 (7 reviews) | Not enough data | Not enough data | ### API Security | Product | Score | Reviews | |---|---|---| | **Edgescan** | N/A | N/A | | **Invicti (formerly Netsparker)** | N/A | N/A | | **HCL AppScan** | N/A | N/A | #### API Management | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **API Discovery** | Not enough data | Feature Not Available | Not enough data | | **API Monitoring** | Not enough data | Feature Not Available | Not enough data | | **Reporting** | Not enough data | Feature Not Available | Not enough data | | **Change Management** | Not enough data | Feature Not Available | Not enough data | #### Security Testing | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Compliance Monitoring** | Not enough data | Feature Not Available | Not enough data | | **API Verification** | Not enough data | Feature Not Available | Not enough data | | **API Testing** | Not enough data | Not enough data | Not enough data | #### Security Management | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Security and Policy Enforcement** | Not enough data | Not enough data | Not enough data | | **Anomoly Detection** | Not enough data | Feature Not Available | Not enough data | | **Bot Detection** | Not enough data | Feature Not Available | Not enough data | ### Attack Surface Management | Product | Score | Reviews | |---|---|---| | **Edgescan** | 7.7/10 | 5 | | **Invicti (formerly Netsparker)** | N/A | N/A | | **HCL AppScan** | N/A | N/A | #### Asset Management | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Asset Discovery** | Not enough data | Not enough data | Not enough data | | **Shadow IT Detection** | Not enough data | Not enough data | Not enough data | | **Change Management** | Not enough data | Not enough data | Not enough data | #### Monitoring | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Gap Analysis** | Not enough data | Not enough data | Not enough data | | **Vulnerability Intelligence** | Not enough data | Not enough data | Not enough data | | **Compliance Monitoring** | Not enough data | Not enough data | Not enough data | | **Continuous Monitoring** | 7.7 (5 reviews) | Not enough data | Not enough data | #### Risk Management | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Risk-Prioritization** | Not enough data | Not enough data | Not enough data | | **Reconnaissance** | Not enough data | Not enough data | Not enough data | | **At-Risk Analysis** | Not enough data | Not enough data | Not enough data | | **Threat Intelligence** | Not enough data | Not enough data | Not enough data | #### Generative AI | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **AI Text Summarization** | Not enough data | Not enough data | Not enough data | ### Application Security Posture Management (ASPM) | Product | Score | Reviews | |---|---|---| | **Edgescan** | N/A | N/A | | **Invicti (formerly Netsparker)** | N/A | N/A | | **HCL AppScan** | N/A | N/A | #### Risk management - Application Security Posture Management (ASPM) | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Vulnerability Management** | Not enough data | Not enough data | Not enough data | | **Risk Assessment and Prioritization** | Not enough data | Not enough data | Not enough data | | **Compliance Management** | Not enough data | Not enough data | Not enough data | | **Policy Enforcement** | Not enough data | Not enough data | Not enough data | #### Integration and efficiency - Application Security Posture Management (ASPM) | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Integration with Development Tools** | Not enough data | Not enough data | Not enough data | | **Automation and Efficiency** | Not enough data | Not enough data | Not enough data | #### Reporting and Analytics - Application Security Posture Management (ASPM) | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Trend Analysis** | Not enough data | Not enough data | Not enough data | | **Risk Scoring** | Not enough data | Not enough data | Not enough data | | **Customizable Dashboards** | Not enough data | Not enough data | Not enough data | #### Agentic AI - Application Security Posture Management (ASPM) | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | | **Multi-step Planning** | Not enough data | Not enough data | Not enough data | ### Exposure Management Platforms | Product | Score | Reviews | |---|---|---| | **Edgescan** | N/A | N/A | | **Invicti (formerly Netsparker)** | N/A | N/A | | **HCL AppScan** | N/A | N/A | #### Generative AI - Exposure Management Platforms | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Predictive Analytics** | Not enough data | Not enough data | Not enough data | | **Automated Threat Detection** | Not enough data | Not enough data | Not enough data | #### Risk Identification and Assessment - Exposure Management Platforms | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Comprehensive Risk Assessment** | Not enough data | Not enough data | Not enough data | | **Advanced Analytics and Reporting** | Not enough data | Not enough data | Not enough data | #### Monitoring and Integration - Exposure Management Platforms | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Integration and Data Consolidation** | Not enough data | Not enough data | Not enough data | | **Real-time Monitoring and Alerts** | Not enough data | Not enough data | Not enough data | ### Static Code Analysis | Product | Score | Reviews | |---|---|---| | **Edgescan** | N/A | N/A | | **Invicti (formerly Netsparker)** | N/A | N/A | | **HCL AppScan** | N/A | N/A | #### Agentic AI - Static Code Analysis | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Adaptive Learning** | Not enough data | Not enough data | Not enough data | | **Natural Language Interaction** | Not enough data | Not enough data | Not enough data | | **Proactive Assistance** | Not enough data | Not enough data | Not enough data | ### Cloud Security | Product | Score | Reviews | |---|---|---| | **Edgescan** | N/A | N/A | | **Invicti (formerly Netsparker)** | N/A | N/A | | **HCL AppScan** | N/A | N/A | #### Cloud Visibility | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Data Discovery** | Not enough data | Not enough data | Not enough data | | **Cloud Registry** | Not enough data | Not enough data | Not enough data | | **Cloud Gap Analytics** | Not enough data | Not enough data | Not enough data | #### Security | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Data Security** | Not enough data | Not enough data | Not enough data | | **Data loss Prevention** | Not enough data | Not enough data | Not enough data | | **Security Auditing** | Not enough data | Not enough data | Not enough data | #### Identity | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **SSO** | Not enough data | Not enough data | Not enough data | | **Governance** | Not enough data | Not enough data | Not enough data | | **User Analytics** | Not enough data | Not enough data | Not enough data | ### Interactive Application Security Testing (IAST) | Product | Score | Reviews | |---|---|---| | **Edgescan** | N/A | N/A | | **Invicti (formerly Netsparker)** | N/A | N/A | | **HCL AppScan** | N/A | N/A | #### Agentic AI - Interactive Application Security Testing (IAST) | Feature | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | --- ## Categories **Shared Categories (1):** [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast) **Unique to Edgescan (8):** [ Attack Surface Management Software](https://www.g2.com/categories/attack-surface-management), [Penetration Testing Tools](https://www.g2.com/categories/penetration-testing-tools), [Risk-Based Vulnerability Management Software](https://www.g2.com/categories/risk-based-vulnerability-management), [Website Security Software](https://www.g2.com/categories/website-security), [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner), [API Security Tools](https://www.g2.com/categories/api-security), [Exposure Management Platforms](https://www.g2.com/categories/exposure-management-platforms), [Application Security Posture Management (ASPM) Software](https://www.g2.com/categories/application-security-posture-management-aspm) **Unique to Invicti (formerly Netsparker) (9):** [Penetration Testing Tools](https://www.g2.com/categories/penetration-testing-tools), [Website Security Software](https://www.g2.com/categories/website-security), [API Security Tools](https://www.g2.com/categories/api-security), [Static Application Security Testing (SAST) Software](https://www.g2.com/categories/static-application-security-testing-sast), [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner), [Software Composition Analysis Tools](https://www.g2.com/categories/software-composition-analysis), [Static Code Analysis Tools](https://www.g2.com/categories/static-code-analysis), [Interactive Application Security Testing (IAST) Software](https://www.g2.com/categories/interactive-application-security-testing-iast), [Application Security Posture Management (ASPM) Software](https://www.g2.com/categories/application-security-posture-management-aspm) **Unique to HCL AppScan (3):** [Interactive Application Security Testing (IAST) Software](https://www.g2.com/categories/interactive-application-security-testing-iast), [Static Application Security Testing (SAST) Software](https://www.g2.com/categories/static-application-security-testing-sast), [Software Composition Analysis Tools](https://www.g2.com/categories/software-composition-analysis) --- ## Reviewer Demographics ### By Company Size | Segment | Edgescan | Invicti (formerly Netsparker) | HCL AppScan | |---|---|---|---| | **Small-Business** | 23.8% | 23.1% | 27.4% | | **Mid-Market** | 38.1% | 29.2% | 19.2% | | **Enterprise** | 38.1% | 47.7% | 53.4% | ### By Industry #### Edgescan - **Information Technology and Services:** 19.0% - **Computer Software:** 16.7% - **Entertainment:** 7.1% - **Logistics and Supply Chain:** 7.1% - **Insurance:** 7.1% - **Financial Services:** 7.1% - **Health, Wellness and Fitness:** 7.1% - **Computer & Network Security:** 4.8% - **Banking:** 2.4% - **Events Services:** 2.4% - **Other:** 19.0% #### Invicti (formerly Netsparker) - **Computer Software:** 12.3% - **Telecommunications:** 10.8% - **Financial Services:** 9.2% - **Information Technology and Services:** 9.2% - **Computer & Network Security:** 6.2% - **Internet:** 6.2% - **Insurance:** 4.6% - **Automotive:** 3.1% - **Consumer Goods:** 3.1% - **Education Management:** 3.1% - **Other:** 32.3% #### HCL AppScan - **Information Technology and Services:** 24.3% - **Computer & Network Security:** 13.5% - **Computer Software:** 9.5% - **Automotive:** 8.1% - **Telecommunications:** 5.4% - **Banking:** 5.4% - **Accounting:** 2.7% - **Financial Services:** 2.7% - **Government Administration:** 2.7% - **Insurance:** 2.7% - **Other:** 23.0% --- ## Alternatives ### Alternatives to Edgescan - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (794 reviews) - [Scrut Automation](https://www.g2.com/products/scrut-automation/reviews) — 4.9/5 stars (1307 reviews) - [Cloudflare Application Security and Performance](https://www.g2.com/products/cloudflare-application-security-and-performance/reviews) — 4.5/5 stars (601 reviews) - [Postman](https://www.g2.com/products/postman/reviews) — 4.6/5 stars (1776 reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (892 reviews) - [CloudBees](https://www.g2.com/products/cloudbees/reviews) — 4.4/5 stars (621 reviews) - [Red Hat Ansible Automation Platform](https://www.g2.com/products/red-hat-ansible-automation-platform/reviews) — 4.6/5 stars (377 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (301 reviews) - [Gearset DevOps](https://www.g2.com/products/gearset-devops/reviews) — 4.7/5 stars (292 reviews) - [Intruder](https://www.g2.com/products/intruder/reviews) — 4.8/5 stars (206 reviews) ### Alternatives to Invicti (formerly Netsparker) - [Intruder](https://www.g2.com/products/intruder/reviews) — 4.8/5 stars (206 reviews) - [Veracode Application Security Platform](https://www.g2.com/products/veracode-application-security-platform/reviews) — 3.8/5 stars (25 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (301 reviews) - [Burp Suite](https://www.g2.com/products/burp-suite/reviews) — 4.8/5 stars (129 reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (892 reviews) - [Detectify](https://www.g2.com/products/detectify/reviews) — 4.5/5 stars (51 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (794 reviews) - [Pentest-Tools.com](https://www.g2.com/products/pentest-tools-com/reviews) — 4.8/5 stars (100 reviews) - [Postman](https://www.g2.com/products/postman/reviews) — 4.6/5 stars (1776 reviews) - [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2354 reviews) ### Alternatives to HCL AppScan - [Veracode Application Security Platform](https://www.g2.com/products/veracode-application-security-platform/reviews) — 3.8/5 stars (25 reviews) - [Checkmarx](https://www.g2.com/products/checkmarx/reviews) — 4.2/5 stars (38 reviews) - [SonarQube](https://www.g2.com/products/sonarqube/reviews) — 4.4/5 stars (141 reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (892 reviews) - [OpenText Core Application Security](https://www.g2.com/products/opentext-core-application-security/reviews) — 4.1/5 stars (34 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (301 reviews) - [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2354 reviews) - [Burp Suite](https://www.g2.com/products/burp-suite/reviews) — 4.8/5 stars (129 reviews) - [Acunetix by Invicti](https://www.g2.com/products/acunetix-by-invicti/reviews) — 4.1/5 stars (105 reviews) - [Mend.io](https://www.g2.com/products/mend-io/reviews) — 4.3/5 stars (112 reviews) --- ## Top Discussions ### Edgescan - Title: [What is edgescan used for?](https://www.g2.com/discussions/what-is-edgescan-used-for) — 1 comment *(includes official response)* > **Top comment:** "Edgescan is used to continuously discover, assess, and manage vulnerabilities across your entire attack surface — from web applications and APIs to internal..." ### Invicti (formerly Netsparker) - Title: [What is Invicti (formerly Netsparker) used for?](https://www.g2.com/discussions/what-is-invicti-formerly-netsparker-used-for) — 1 comment > **Top comment:** "Dynamic application Security Scanning - DAST Scan" - Title: [What are URL rewrites and URL rewrite rules?](https://www.g2.com/discussions/netsparker-web-application-security-scanner-96cf6c3d-02fc-4405-a800-e28a0f893517) — 1 comment, 1 upvote *(includes official response)* > **Top comment:** "Web application developers use URL Rewrite Rules to hide parameters in the URL directory structure and is typically used to make it easier for search engines..." - Title: [What is the Knowledge base node and what is reported in it?](https://www.g2.com/discussions/netsparker-web-application-security-scanner) — 1 comment, 1 upvote *(includes official response)* > **Top comment:** "Netsparker Desktop and Netsparker Cloud are not just web vulnerability scanners that automatically identify vulnerabilities in web applications. They are all..." - Title: [How Does Netsparker Integrate with Your Existing SDLC?](https://www.g2.com/discussions/netsparker-scanners-faqs-e4a57e60-032c-4486-a798-94cc2b423ed8) — 1 comment, 1 upvote *(includes official response)* > **Top comment:** "We developed the TeamCity, Jenkins and Bamboo plugins to help you complete the Netsparker Cloud-assisted SDLC. Using our plugins, users with Administration..." - Title: [What are the Plans & Editions of Netsparker?](https://www.g2.com/discussions/netsparker-scanners-faqs-7c0a080f-a51b-479a-9fd4-47828171f241) — 1 comment, 1 upvote *(includes official response)* > **Top comment:** "The New Netsparker Plans: Netsparker Standard – this plan includes Netsparker Desktop, which allows you to scan up to 20 websites Netsparker Team – this..." ### HCL AppScan - Title: [Who owns AppScan?](https://www.g2.com/discussions/who-owns-appscan) — 1 comment *(includes official response)* > **Top comment:** "HCL AppScan is owned by HCL Software." - Title: [Is AppScan free?](https://www.g2.com/discussions/is-appscan-free) — 1 comment > **Top comment:** "APPSCAN CodeSweep is free as a plugin in Visual Studio." --- **Source:** [G2.com](https://www.g2.com) | [Comparison Page](https://www.g2.com/compare/edgescan-vs-invicti-formerly-netsparker-vs-hcl-appscan)