About IBM Security AppScan Source

IBM Security AppScan Source can identify and fix vulnerabilities in web and mobile applications prior to deployment, reducing the time and effort required by organisations in development. IBM Security AppScan Source integrates cognitive capabilities such as Intelligent Finding Analytics (IFA) into the software development lifecycle, decreasing time and effort required to identify and repair vulnerabilities. It's know for the intuitiveness and intelligence in detection and repairing.




  • Web


Operating system

  • W


Best suitable for

Size :








Organization type :


Mid Market






Industries :

  • ITES

About IBM

International Business Machines Corporation (commonly referred to as IBM) is an American multinational technology and consulting corporation founded in 1911, with corporate headquarters in Armonk, New York.IBM manufactures and markets computer hardware, middleware and software, and offers infrastructure, hosting and consulting services in areas ranging from mainframe computers to nanotechnology.
view more products by IBM


AppScan Source identifies security vulnerabilities in source code during the early stages of the application lifecycle. It builds automated security into development by integrating security source code analysis with automated scanning during the build process. The software scans, triages and manages security policies; and prioritizes assignment of results for remediation. It scans more than one million lines of code per hour; and extends analysis to Android and Apple iOS mobile applications.
AppScan Source defines and enforces consistent policies that can be used throughout the enterprise. It can help enable enterprise-wide metrics and reporting with a centralized policy and assessment database. AppScan Source also provides audit and compliance reports that make it easier to understand application-related threat exposures at the executive level.
AppScan Source integrates with defect tracking systems (DTS), software configuration management and build management tools, providing increased security intelligence through correlation of static analysis results with dynamic analysis results. It accommodates a broad portfolio of large and complex applications across a wide range of languages. AppScan Source is built on open architecture to protect your existing investments.
AppScan Source provides visibility into security and compliance risks presented by identified security issues. It delivers more than 40 security compliance reports, including PCI Data Security Standard, Payment Application Data Security Standard, ISO 27001 and ISO 27002, HIPAA, Gramm–Leach–Bliley Act and Basel II. It offers enhanced mobile application scanning capabilities and testing for mobile, web, native, hybrid and Worklight applications by integrating with IBM MobileFirst Studio.
With its cognitive IFA capabilities, AppScan Source helps reduce false positives by up to 98%, alleviating the need for security experts to review findings for false positives before sending them to developers. It helps Identify Fix Groups in your code, enabling developers to save time by addressing multiple issues with a single code change. IFA also helps you to perform Delta Analysis Reporting; display scan-to-scan changes and identify new issues that may have been added.

Plans and Pricing


Ibm Appscan source


  • Central Management
  • Compliance Management
  • Automatic Detection
  • Advanced Threat Protection
  • Endpoint protection


How West Virginia University Protects Sensitive Student Data


Add Review

Chandramouli Dorai

Evolution in the tooling

6th February, 2019

Ease of Feature

Ease of Use

Value for money

Customer Service

  • Pros -
  • The technical services to drive tooling adoption are great and would like to see more evolution in the tooling including less false positives, integration with CI/CD and faster adoption of new architecture/labguaged.
  • Cons -
  • No Cons

Deepak bhandawat

Offered help

9th May, 2018

Ease of Feature

Ease of Use

Value for money

Customer Service

  • Pros -
  • Using Techjockey saved me a lot of time. I worked with Brittany Walther. She called me back after what seemed like only a few minutes. From asking a few key questions, she sent me a list of 5 vendors that were appropriate for the size of my organization and were familiar with higher education. Within a day or two I had calls scheduled with all the vendors. It really cut down on the work I had to do. We are still evaluating products but I would not have progress this fast without the help of Techjockey.
  • Cons -
  • No Cons

Is this product information sufficient?