# HCL AppScan

> Mediated Wiki article. Canonical URL: https://mediated.wiki/source/HCL_AppScan
> Markdown URL: https://mediated.wiki/source/HCL_AppScan.md
> Source: https://en.wikipedia.org/wiki/HCL_AppScan
> Source revision: 1301082602
> License: Creative Commons Attribution-ShareAlike 4.0 International (https://creativecommons.org/licenses/by-sa/4.0/)

Web security testing and monitoring tools

HCL AppScan Developers HCLSoftware, a division of HCLTech Stable release Version 10.0 Type Security testing License Proprietary Website www.hcl-software.com/appscan

**HCL AppScan** (previously known as **IBM AppScan)** is a family of desktop and web security testing and monitoring tools, formerly a part of the [Rational Software](/source/Rational_Software) division of [IBM](/source/IBM). In July 2019, the product was acquired by [HCLTech](/source/HCLTech)[1] and is currently marketed under HCLSoftware, a product development division of HCLTech.

## History

AppScan was originally developed by [Israeli](/source/Israel) software company [Sanctum](/source/Sanctum_(company)) Ltd. (formerly Perfecto Technologies) and was first released in 1998. A year later, [Sanctum](/source/Sanctum_(company)) expanded its web security service and launched an [Application firewall](/source/Application_firewall), called [AppShield](/source/AppShield).[2] The first version of AppShield was developed by a team led by [Gili Raanan](/source/Gili_Raanan), and was running on a dedicated [Linux](/source/Linux) server.

AppScan version 2.0 was released in February 2001, adding a policy recognition engine and knowledge database, an automatic and customizable crawler engine, and an attack simulator.[3] Version 3 was released in April 2002, adding collaborative testing capabilities, where different tasks can be assigned to different testers; and a number of user interface enhancements in both the scanning and reporting sections of the program.[4] By 2003 AppScan was used by over 500 enterprise customers and had nearly $30 Million (USD) in annual revenue.[5]

In July 2004, Sanctum was acquired by [Massachusetts](/source/Massachusetts) based company [Watchfire](/source/Watchfire), which developed a web applications management platform named WebXM. AppScan became Watchfire's flagship product and [Sanctum](/source/Sanctum_(company))'s R&D center in [Herzliya](/source/Herzliya), Israel, became Watchfire's main R&D location.[5]

In June 2007, [Watchfire](/source/Watchfire) was acquired by [IBM](/source/IBM) and incorporated into the [Rational Software](/source/Rational_Software) product line, enabling IBM to cover more of the application development lifecycle with the addition of a new tool to help developers further bolster the security of the application itself.[6] [Watchfire](/source/Watchfire) R&D center was incorporated into [IBM R&D Labs in Israel](/source/IBM_R%26D_Labs_in_Israel).[7]

In 2009 IBM acquired [Ounce Labs](/source/Ounce_Labs) and added yet another tool to AppScan to find and correct vulnerabilities in software source code. This new version was quickly re-packaged as a separate edition of AppScan: AppScan Source Edition.[8]

In June 2019, HCL acquired select IBM collaboration, commerce, digital experience, AppScan and BigFix solutions.[9][10]

## References

1. **[^](#cite_ref-1)** Kwan, Campbell. ["HCL now fully controls IBM software including Notes and Domino"](https://www.zdnet.com/article/hcl-now-fully-controls-ibm-software-including-notes-and-domino/). *ZDNet*. Retrieved 2019-09-16.

1. **[^](#cite_ref-2)** Ellen Messmer (7 September 1999). ["New tool blocks wily e-comm hacker tricks"](http://www.cnn.com/TECH/computing/9909/07/ecomm.hack.idg/index.html). CNN. Retrieved 17 November 2010.

1. **[^](#cite_ref-3)** Mimoso, Michael S. (6 February 2001). ["AppScan release secures Web applications"](http://searchsecurity.techtarget.com/news/520223/Quick-Takes-AppScan-release-secures-Web-applications). *SearchSecurity*.

1. **[^](#cite_ref-4)** Costello, Sam (30 April 2002). ["Sanctum boosts tests, reports in AppScan 3.0"](http://www.computerworld.com.au/article/23334/sanctum_boosts_tests_reports_appscan_3_0/). *Computerworld*.

1. ^ [***a***](#cite_ref-Jpost_5-0) [***b***](#cite_ref-Jpost_5-1) ["Sanctum acquired by Watchfire"](http://www.ivc-online.com/ivcWeeklyItem.asp?articleID=2015). *Israel Venture Capital Research Center*. 26 July 2004.{{[cite news](https://en.wikipedia.org/wiki/Template:Cite_news)}}: CS1 maint: deprecated archival service ([link](https://en.wikipedia.org/wiki/Category:CS1_maint:_deprecated_archival_service))

1. **[^](#cite_ref-6)** Ogren, Eric (8 June 2007). ["AppScan lives on with IBM"](https://web.archive.org/web/20110131081131/http://blogs.computerworld.com/node/5652). *Computerworld*. Archived from [the original](http://blogs.computerworld.com/node/5652) on 31 January 2011.

1. **[^](#cite_ref-7)** ["Watchfire Israel goes to IBM"](http://www.globes.co.il/serveen/globes/docview.asp?did=1000219398). *Globes*. 7 June 2007.

1. **[^](#cite_ref-8)** Rick, Whiting (8 June 2010). ["IBM: Design Security Into New Applications During Development"](https://web.archive.org/web/20140912030836/http://www.crn.com/news/security/225500021/ibm-design-security-into-new-applications-during-development.htm;jsessionid=sAdQrMEqh7kWNepNsBEm-w**.ecappj02). *CRN*. Archived from [the original](http://www.crn.com/news/security/225500021/ibm-design-security-into-new-applications-during-development.htm;jsessionid=sAdQrMEqh7kWNepNsBEm-w**.ecappj02) on 12 September 2014. Retrieved 10 November 2011.

1. **[^](#cite_ref-9)** [HCL Technologies to acquire select IBM software products](https://www.ibm.com/supply-chain/hcl-divestiture)

1. **[^](#cite_ref-10)** [HCL Technologies to Acquire Select IBM Software Products for $1.8B](https://www.hcltech.com/press-releases/products-and-platforms/hcl-technologies-acquire-select-ibm-software-products-18b)

v t e IBM History History World War II Mergers and acquisitions PC business acquisition by Lenovo Products Hardware Current Mainframe IBM Z Power microprocessors Power Systems Storage FlashSystem DS8000 Quantum Q System One Q System Two Eagle Osprey Heron Condor Former Blue Gene Cell microprocessors PowerPC Midrange computer Personal Computer Selectric Other ThinkPad ThinkCentre Carbon Design System Cloud Cloudant Cognos Analytics Connections Criminal Reduction Utilising Statistical History Fortran ILOG Information Management Software Mainframe operating systems Mashup Center Planning Analytics PureQuery Quantum Platform Qiskit OpenQASM Rational Software SPSS Tivoli Software Service Automation Manager Watson Watsonx Granite WebSphere Business entities Current Apptio Center for The Business of Government Consulting Promontory Kenexa International subsidiaries India Press Red Hat Research Former AdStar AIM alliance Kaleida Labs Taligent Ambra Computer Cognos EduQuest Kyndryl Lexmark Lotus Development Merative Microelectronics Product Center Retail Store Solutions Science Research Associates Service Bureau The Weather Company (Weather Underground) Facilities Towers 1250 René-Lévesque, Montreal, QC One Atlantic Center, Atlanta, GA Software Labs Rome Software Lab Toronto Software Lab IBM Buildings Chicago Honolulu New York Seattle Facilities Thomas J. Watson Research Center Hakozaki Facility Yamato Facility Cambridge Scientific Center IBM Hursley Canada Head Office Building IBM Rochester Initiatives Deep Thunder Develothon Fellow The Great Mind Challenge Linux Technology Center SkillsBuild Smarter Planet Virtual Universe Community World Community Grid Think conference Inventions Automated teller machine Cynefin framework DRAM Electronic keypunch Floppy disk Hard disk drive Magnetic stripe card Relational model Sabre airline reservation system Scanning tunneling microscope Financial swaps Universal Product Code Terminology Big Blue Commercial Processing Workload Customer engineer Globally integrated enterprise e-business Think slogan CEOs Thomas J. Watson (1914–1956) Thomas Watson Jr. (1956–1971) T. Vincent Learson (1971–1973) Frank T. Cary (1973–1981) John R. Opel (1981–1985) John Fellows Akers (1985–1993) Louis V. Gerstner Jr. (1993–2002) Samuel J. Palmisano (2002–2011) Ginni Rometty (2012–2020) Arvind Krishna (since 2020) Other A Boy and His Atom Big Blue sports teams American football Rugby union Common Public License/IBM Public License Wallace v. International Business Machines Corp. Deep Blue Deep Thought Dynamic infrastructure GlobalFoundries GUIDE International IBM and the Holocaust International chess tournament Lucifer cipher Mathematica IBM Plex SHARE computing ScicomP Unions Commons Category Navigational boxes FOSS Midrange computers Operating systems Personal computers System/360 System/370 Typewriters Vacuum tube computers

---
Adapted from the Wikipedia article [HCL AppScan](https://en.wikipedia.org/wiki/HCL_AppScan) by Wikipedia contributors ([contributor history](https://en.wikipedia.org/wiki/HCL_AppScan?action=history)). Available under [Creative Commons Attribution-ShareAlike 4.0 International](https://creativecommons.org/licenses/by-sa/4.0/). Changes may have been made.