AppScan Source Analysis will not be work without AppScan Enterprise (at least Basic or Premium), at the minimum.
If you really want just the source analysis component, you may consider AppScan Source Development : Developer plug-ins integrate many AppScan Source for Analysis features into Microsoft Visual Studio, the Eclipse workbench, and Rational® Application Developer for WebSphere® Software (RAD). This allows software developers to find and take action on vulnerabilities during the development process. The Eclipse plug-in allows you to scan source code for security vulnerabilities – and you can scan IBM Worklight® projects with the Eclipse plug-in. You can use it and run in local mode but features such as custom rules, shared scan configurations, and shared filters will be unavailable.
The main reason for even just interest for AppScan Source Analysis and you need AppScan Enterprise (if your do not buy it yet):
- Most AppScan Source products and components must communicate with an AppScan Enterprise Server. Without one, you can use AppScan Source for Development in local mode – but features such as custom rules, shared scan configurations, and shared filters will be unavailable.