Checkmarx One vs Parasoft SOAtest Comparison 2024

Checkmarx One

Parasoft SOAtest

Checkmarx One

Read 67 Checkmarx One reviews

31,565 views|20,243 comparisons

Parasoft SOAtest

Read 30 Parasoft SOAtest reviews

1,106 views|742 comparisons

Comparison Buyer's Guide

Download the complete report

Buyer's Guide

Checkmarx One vs. Parasoft SOAtest

May 2024

Executive Summary

We performed a comparison between Checkmarx One and Parasoft SOAtest based on real PeerSpot user reviews.

Find out in this report how the two Static Application Security Testing (SAST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Checkmarx One vs. Parasoft SOAtest Report (Updated: May 2024).

Download the complete report

772,649 professionals have used our research since 2012.

Featured Review

Anonymous User

Penetration Tester & Information Security Expert at a comms service provider

Specifies the exact line of code where it finds the problem and gives good reports

The solution improved the efficiency of our code security reviews. It helps tremendously because it finds hundreds of potential problems sometimes.... Read more →

Milind Parab

Sr. Principal Software Engineer at Cadence Design Systems

Useful for automated SQA, certifications, but the summary reports could improve

The tool is part of Automated Code Flow. It helps in SQA and Automotive Certification.

Quotes From Members

We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:

Pros

"The main advantage of this solution is its centralized reporting functionality, which lets us track issues, then see and report on the priorities via a web portal.""The solution is always updating to continuously add items that create a level of safety from vulnerabilities. It's one of the key features they provide that's an excellent selling point. They're always ahead of the game when it comes to finding any vulnerabilities within the database.""The solution has good performance, it is able to compute in 10 to 15 minutes.""We use the solution to validate the source code and do SAST and security analysis.""Both automatic and manual code review (CxQL) are valuable.""The most valuable feature is that it actually identifies the different criteria you can set to meet whatever standards you're trying to get your system accredited for.""Vulnerability details is valuable.""The setup is fairly easy. We didn't struggle with the process at all."

More Checkmarx One Pros →

"Automatic testing is the most valuable feature.""Parasoft SOAtest has improved the quality of our automated web services, which can be easily implemented through service chaining and service virtualization.""We have seen a return on investment.""Every imaginable source in the entire world of information technology can be accessed and used.""The testing time is shortened because we generate test data automatically with SOAtest.""The solution is scalable.""They have a feature where they can record traffic and create tests on the report traffic.""Generating new messages, based on the existing .EDN and .XML messages, is a crucial part or the testing project that I’m currently in."

More Parasoft SOAtest Pros →

Cons

"The reports are good, but they still need to be improved considering what the UI offers.""Checkmarx could improve the REST APIs by including automation.""The pricing can get a bit expensive, depending on the company's size.""The cost per user is high and should be reduced.""One area for improvement in Checkmarx is pricing, as it's more expensive than other products.""I would like the product to include more debugging and developed tools. It needs to also add enhancements on the coding side.""The validation process needs to be sped up.""The integration could improve by including, for example, DevSecOps."

More Checkmarx One Cons →

"Reporting facilities can be better.""From an automation point of view, it should have better clarity and be more user friendly.""Reports could be customized and more descriptive according to the user's or company's requirements.""The product is very slow to start up, and that is a bit of a problem, actually.""The performance could be a bit better.""Enabling/disabling an optional element of an XML request is only possible if a data source (e.g., Excel sheet) is connected to the test. Otherwise, the option is not available at all in the drop-down menu.""The summary reports could be improved.""Tuning the tool takes time because it gives quite a long list of warnings."

More Parasoft SOAtest Cons →

Pricing and Cost Advice

"It is the right price for quality delivery."

"I believe pricing is better compared to other commercial tools."

"The pricing was not very good. This is just a framework which shouldn’t cost so much."

"The pricing is competitive and provides a lower TCO (total cost of ownership) for achieving application security."

"It is a good product but a little overpriced."

"The license has a vague language around P1 issues and the associated support. Make sure to review these in order to align them with your organizational policies."

"Checkmarx is not a cheap scanning tool, but none of the security tools are cheap. Checkmarx is a powerful scanning tool, and it’s essential to have one of these products."

"We got a special offer for a 30% reduction for three years, after our first year. I think for a real source-code scanning tool, you have to add a lot of money for Open Source Analysis, and AppSec Coach (160 Euro per user per year)."

More Checkmarx One Pricing and Cost Advice →

"From what I understand, Parasoft SOAtest isn't the cheapest option. But it has a lot to offer."

"The cost of Parasoft seems to have gotten higher with a projection that wasn't really stipulated for our company. They've done a tremendous job at negotiating those deals."

"I think it would be a great step to decrease the price of the licenses."

"It is an expensive product, so think carefully about whether it fits your purposes and is the right tool for you."

"We are completed satisfied with Parasoft SOAtest. The ROI is more than 95%."

"The license price is a little expensive, but it provides a better outcome in terms of the end-to-end automation process."

"They do have a confusing licensing structure."

"The price is around $5,000 USD."

More Parasoft SOAtest Pricing and Cost Advice →

See Which Vendors Are Best For You

Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.

See Recommendations

772,649 professionals have used our research since 2012.

Questions from the Community

What alternatives are there for Fortify WebInspect and Fortify SCA?

Top Answer:I would like to recommend Checkmarx. With Checkmarx, you are able to have an all in one solution for SAST and SCA as well. Veracode is only a cloud solution. Hope this helps.

Read all 4 answers →

What do you like most about Checkmarx?

Top Answer:Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%.

Read all 38 answers →

What is your experience regarding pricing and costs for Checkmarx?

Top Answer:The solution's price is high and you pay based on the number of users.

Read all 25 answers →

What do you like most about Parasoft SOAtest?

Top Answer:Since the solution has both command line and automation options, it generates good reports.

Read all 6 answers →

What is your experience regarding pricing and costs for Parasoft SOAtest?

Top Answer:The price is average. It isn't overly expensive.

Read all 4 answers →

What needs improvement with Parasoft SOAtest?

Top Answer:Tuning the tool takes time because it gives quite a long list of warnings. Going through that is a challenge. It only happens in the initial stage when we are setting up the tool, but it can be… more »

Read all 6 answers →

Ranking

3rd

out of 71 in Static Application Security Testing (SAST)

Views

31,565

Comparisons

20,243

Reviews

Average Words per Review

508

Rating

7.8

29th

out of 71 in Static Application Security Testing (SAST)

Views

1,106

Comparisons

742

Reviews

Average Words per Review

440

Rating

7.0

Comparisons

SonarQube vs. Checkmarx One

Compared 52% of the time.

Veracode vs. Checkmarx One

Compared 13% of the time.

Fortify on Demand vs. Checkmarx One

Compared 6% of the time.

Snyk vs. Checkmarx One

Compared 4% of the time.

Coverity vs. Checkmarx One

Compared 3% of the time.

More Checkmarx One Competitors →

Postman vs. Parasoft SOAtest

Compared 21% of the time.

SonarQube vs. Parasoft SOAtest

Compared 17% of the time.

Coverity vs. Parasoft SOAtest

Compared 14% of the time.

Polyspace Code Prover vs. Parasoft SOAtest

Compared 8% of the time.

ReadyAPI vs. Parasoft SOAtest

Compared 7% of the time.

More Parasoft SOAtest Competitors →

Also Known As

SOAtest

Learn More

Checkmarx

Parasoft

Overview

Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.

Checkmarx One offers comprehensive application scanning across the SDLC:

Static Application Security Testing (SAST)
Software Composition Analysis (SCA)
API security
Dynamic Application Security Testing (DAST)
Container security
IaC security
Correlation, prioritization, and risk management
Codebashing secure code training
AI security
Tech partnerships extending AppSec into runtime analysis
Developer tool integrations including: CI/CD tools, development frameworks, feedback tools, IDEs, programming languages and SCMs

Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.

Parasoft SOAtest delivers fully integrated API and web service testing capabilities that automate end-to-end functional API testing. Streamline automated testing with advanced codeless test creation for applications with multiple interfaces (REST & SOAP APIs, microservices, databases, and more).

SOAtest reduces the risk of security breaches and performance outages by transforming functional testing artifacts into security and load equivalents. Such reuse, along with continuous monitoring of APIs for change, allows faster and more efficient testing.

Sample Customers

YIT, Salesforce, Coca-Cola, SAP, U.S. Army, Liveperson, Playtech Case Study: Liveperson Implements Innovative Secure SDLC

Charter Communications, Sabre, Caesars Entertainment, Charles Schwab, ING, Intel, Northbridge Financial, Capital Services, WoodmenLife

Top Industries

REVIEWERS

Computer Software Company31%

Financial Services Firm19%

Comms Service Provider9%

Manufacturing Company9%

VISITORS READING REVIEWS

Financial Services Firm21%

Computer Software Company15%

Manufacturing Company9%

Insurance Company5%

REVIEWERS

Financial Services Firm43%

Government14%

Manufacturing Company7%

Energy/Utilities Company7%

VISITORS READING REVIEWS

Financial Services Firm30%

Manufacturing Company15%

Computer Software Company13%

Government4%

Company Size

REVIEWERS

Small Business38%

Midsize Enterprise13%

Large Enterprise50%

VISITORS READING REVIEWS

Small Business17%

Midsize Enterprise12%

Large Enterprise71%

REVIEWERS

Small Business22%

Midsize Enterprise9%

Large Enterprise69%

VISITORS READING REVIEWS

Small Business16%

Midsize Enterprise9%

Large Enterprise75%

Buyer's Guide

Checkmarx One vs. Parasoft SOAtest

May 2024

Free Report: Checkmarx One vs. Parasoft SOAtest

Find out what your peers are saying about Checkmarx One vs. Parasoft SOAtest and other solutions. Updated: May 2024.

DOWNLOAD NOW

772,649 professionals have used our research since 2012.

Checkmarx One is ranked 3rd in Static Application Security Testing (SAST) with 67 reviews while Parasoft SOAtest is ranked 29th in Static Application Security Testing (SAST) with 30 reviews. Checkmarx One is rated 7.6, while Parasoft SOAtest is rated 8.2. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Parasoft SOAtest writes "Good API testing and RIT feature; clarity could be improved". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas Parasoft SOAtest is most compared with Postman, SonarQube, Coverity, Polyspace Code Prover and ReadyAPI. See our Checkmarx One vs. Parasoft SOAtest report.

See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.

Checkmarx One vs Parasoft SOAtest comparison