Loading product reviews...
3.8 out of 5.0 (5 ratings)

Reviews Distribution

5 Stars
4 Stars
3 Stars
2 Stars
1 Star
We don't have any qualitative reviews for this vendor yet


View other vendors in this market
We have aggregated ratings data on Rapid7 but all of our reviewers have opted out of sharing their qualitative review feedback. In certain cases we allow reviewers to withhold their qualitative review feedback from public view, in order to protect their confidentiality.
  • 3 out of 5.0, Reviewed

    Product(s): AppSpider

    Looking forward to new features that light up our roadmap

    Overall Comment

    A little bumpy after NTO acquisition by Rapid7. Looking forward to new features that meet our current and future enterprise scanning (ie distributed scanning to support continuous scanning) needs and continuing enhancements to the vulnerability coverage. Also would be great to see that features at the enterprise level are given some additional importance.

    What do you like most about the product or service?

    Ability to use API to automate over the top of AppSpider. Also, check coverage.

    What do you dislike most about the product?

    No documentation on what each check does. We have to open a support ticket to inquire into these things. Also no documentation on configurations or how to enable features. We have to pick around in order to find it, or open a support ticket. Size limitations on results are very small and don't support many of our services.

    What one thing do you wish the vendor did differently?

    More transparent with feature roadmap, and focusing on new features that our enterprise needs. Also please improve your support ticketing system.

    If you could start over, what would your organization do differently?

    I don't think I can answer that, since pre-acquisition

    Service & support - overall comment

    If I average out the inital satisfied, and the recent extremely dissatisfied, with the current somewhat satisfied, I have to give this a neutral. Lots of room for improvement here.


  • 4 out of 5.0, Reviewed

    Product(s): AppSpider

    Implementation and rolling out first scan was easy.

    Overall Comment

    The core functionality is working well. We are still working vendor on importing reports into Nexpose. The reports being in separate products has not slowed us down, but are curious to the end result.

    What one piece of advice would you give other prospective customers?

    Be very careful with the type of scans and scan test servers first as you may crash some systems even with safe and passive checks.

    What do you like most about the product or service?

    it uses the OWASP standards and very easy to use.

    What do you dislike most about the product?

    Tracking fixactions has to be done outside the product such as with Excel.

    What one thing do you wish the vendor did differently?

    Exporting reports with fix actions where the admin could use the built-in functionality that is within the application.

    If you could start over, what would your organization do differently?

    Start earlier. We could have made use of this product a year ago.

    Service & support - overall comment

    Any issue we have run into we have had speedy response and resolutions.


  • 4 out of 5.0, Reviewed

    Product(s): AppSpider

    Give you great flexibility for scanning, but lacks mature reporting features

    Overall Comment

    Overall this product works as advertised. Though, the information and reporting can be greatly improved. What drew my organization to this product was the ability to get both on-premise services and a cloud managed service.


  • 5 out of 5.0, Reviewed

    Product(s): AppSpider

    Great service team.

    Overall Comment

    Service support was outstanding.

    What do you like most about the product or service?

    Easy to digest test results. Great service team. Good response time to requests.


  • 3 out of 5.0, Reviewed

    Product(s): AppSpider

    Implementation was a bit complicated & Support has gotten poorer, but the product is great

    Overall Comment

    Support is much poorer once NTO was acquired by Rapid7.

    What one piece of advice would you give other prospective customers?

    Automate as much as possible.

    What do you like most about the product or service?

    The fact that the scan engine uses Universal Translator technology so it can accommodate the scanning of technologies which do not yet exist.

    What do you dislike most about the product?

    The support become much less supportive once aquired by Rapid7.

    What one thing do you wish the vendor did differently?

    Address the bugs discovered in their product on a faster timeline.

    If you could start over, what would your organization do differently?

    Change the onboarding process so the burden of onboarding in on Application Teams.

    Product capabilities - overall comment

    I am satisified with the capabilities of AppSpider.


Ratings Overview

1 2 3 4 5
Section
1

Evaluation & Contracting

Overall rating of product evaluation and contract negotiation

(5)
4.0

Ability to understand your organization's needs

(5)
3.8

Timely and complete response to product questions

(5)
3.8

Pricing and contract flexibility (pricing and terms)

(4)
4.0
1 2 3 4 5
Section
1

Integration & Deployment

Overall rating of integration and deployment

(5)
4.4

How long did your deployment take?

0 - 3 months (<3)

12 months or more

3 - 6 months (<6)

I don't know


Availability of quality 3rd-party resources (integrators, service providers, etc.)

(2)
4.5

Ease of integration using standard APIs and tools

(3)
4.3

Quality and availability of end-user training

(3)
4.0

Ease of deployment

(3)
4.3
1 2 3 4 5
Section
1

Service & Support

Overall rating of service and support

(5)
4.2

Did you purchase a support package from vendor?

Yes

No


Timeliness of vendor's response

(4)
4.3

Quality of technical support

(4)
4.5

Quality of peer user community

(2)
4.0
1 2 3 4 5
Section
1

Product Capabilities

Overall rating of product capabilities

(5)
4.2

Dynamic AST as a Tool

(3)
3.7

Dynamic AST as a Service

(4)
3.8

Static AST as a Tool

(3)
3.3

Static AST as a Service

(4)
3.5

Interactive AST

(2)
4.0

Mobile AST

(2)
4.0

Enterprise-Class AST

(3)
4.3

Stand-Alone AST

(3)
3.0

WAF/EMM Integration or RASP

(3)
3.0
1 2 3 4 5
Section
1

Additional Context

What was the nature of your involvement?

Development/Integration

Executive Sponsor

Rollout and Install

Technical Assessment

Vendor/Product Selection

Application Lead

User Training


What other vendors were considered? Multiple responses allowed.

Qualys

Rapid7

IBM

Veracode

WhiteHat Security

Acunetix

Arxan

Checkmarx

Cigital

Denim Group

Hewlett Packard Enterprise

NowSecure

PortSwigger

The Open Web Application Security Project (OWASP)

Other...


Why did you purchase this product?

Improve compliance & risk management

Improve business process agility

Cost management

Create internal/operational efficiencies

Improve business process outcomes

Other...


What were the key factors that drove your decision?

Functional breadth

Product functionality and performance

Overall cost

Pre-existing relationships

Strong customer focus

Product roadmap and future vision

Strong services expertise

Strong user community


In which region(s) did your deployment take place? Multiple responses allowed.

North America