CodeSonar vs Onapsis comparison

CodeSecure and Onapsis are both solutions in the Application Security Tools category. CodeSecure is ranked #20 with an average rating of 7.8, while Onapsis is ranked #39. CodeSecure holds a 1.2% mindshare in AS, compared to Onapsis’s 0.1% mindshare. Additionally, 87% of CodeSecure users are willing to recommend the solution, compared to 100% of Onapsis users who would recommend it.

CodeSonar

Read 7 CodeSonar reviews

2,002 Views
1,280 Comparison Views

87% willing to recommend

Onapsis

Read 1 Onapsis review

332 Views
215 Comparison Views

100% willing to recommend

CodeSonar

Onapsis

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between CodeSonar and Onapsis based on real PeerSpot user reviews.

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools.

To learn more, read our detailed Application Security Tools Report (Updated: October 2024).

Buyer's Guide

Application Security Tools

October 2024

Download the complete report

Helped 814,649 peers since 2012

Categories and Ranking

CodeSonar

Ranking in Application Security Tools

20th

Average Rating

8.2

Number of Reviews

Ranking in other categories

Static Code Analysis (5th)

Onapsis

Ranking in Application Security Tools

39th

Average Rating

8.0

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of November 2024, in the Application Security Tools category, the mindshare of CodeSonar is 1.2%, up from 0.8% compared to the previous year. The mindshare of Onapsis is 0.1%, down from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Application Security Tools

Featured Reviews

Mathieu ALBRESPY

Intigration Developer at ez-Wheel

Oct 31, 2022

Nice interface, quick to deploy, and easy to expand

This is the first time I've used this kind of software. It was the only one we could apply to analyze with MISRA rules. At my new company, I tried to use Klocwork. I tried to use it, just once so I cannot compare it exactly with CodeSonar. I also have a plugin for my Visual Studio and I try to make it work. It's not easy, however, I don't think that we have this kind of functionality with CodeSonar. It can do some incremental analysis. However, since this feature is also available on CodeSonar, it would be a good idea to have a plugin on Visual Studio just to have a quick analysis.

Read full review

it_user19113

SAP Security Consulting Engineer at a computer software company with 10,001+ employees

Sep 29, 2016

It checks for and reports vulnerabilities on all SAP systems at the OS, DB and SAP levels.

I really love how Onapsis X1 is able to check SAP for threats; the reporting was something I felt could be improved. It could be a little easier to use and to publish for consumption with a larger audience. Currently, it takes some background jobs and additional work to get them published. It was difficult to get interactive reports to the different levels of the business. I would have to download them and send them out, or save them on my SharePoint site and send out a weekly link. In the version of the product I was usingת I had to log into the X1 system directly to get to the reports. Reporting would be used by several different areas of the organizationת many of whom would be at the director and executive levels. It would not make sense to have them log directly into the tool to look at these reports. Add to this that there was only one ID that could be used to log in and view the reports. To solve this problemת I had to run all of the different reports; executive summary down to detailed analysis and then export them out to my security team SharePoint site. To automate this processת a batch script was created to run after the X1 analyzed the systems. The script would pull the reports and place them in the SharePoint site automatically, but it was a bit of a hassle to get set up.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pricing and Cost Advice

"Our organization purchased a license to use the solution."

"Pricing is a bit costly."

"The solution's price depends on the number of licenses needed and the source code for the project."

"The application’s pricing is high compared to other tools."

Information not available

See which vendors are best for you

Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.

See recommendations

814,649 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Manufacturing Company

25%

Computer Software Company

14%

University

Financial Services Firm

Manufacturing Company

16%

Energy/Utilities Company

10%

Computer Software Company

10%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about CodeSonar?

CodeSonar’s most valuable feature is finding security threats.

See all answers

What is your experience regarding pricing and costs for CodeSonar?

The application’s pricing is high compared to other tools. I rate its pricing a four out of ten.

See all answers

What needs improvement with CodeSonar?

Our license model allows one user per license. Currently, we have limitations for VPN profiles. We can’t share the key with other users. There could be a shared licensing model for the users. It wi...

See all answers

Ask a question

Earn 20 points

Comparisons

SonarQube Server (formerly SonarQube) vs CodeSonar

Compared 60% of the time

Coverity vs CodeSonar

Compared 18% of the time

Polyspace Code Prover vs CodeSonar

Compared 8% of the time

Klocwork vs CodeSonar

Compared 4% of the time

Fortify Static Code Analyzer vs CodeSonar

Compared 3% of the time

More CodeSonar Competitors

No data available

Product Reports

Buyer's Guide

Application Security Tools

October 2024

Download CodeSonar product report

Buyer's Guide

Application Security Tools

October 2024

Download Onapsis product report

Learn More

CodeSecure

Onapsis

Overview

GrammaTech enables organizations to develop software applications more efficiently, on-budget, and on-schedule by helping to eliminate harmful defects that can cause system failures, enable data breaches, and ultimately increase corporate liabilities in today’s connected world. GrammaTech is the developer of CodeSonar, the most powerful source and binary code analysis solution available today. Extraordinarily precise, CodeSonar finds, on average, 2 times more serious defects in software than other static analysis solutions. Designed for organizations with zero tolerance for defects and vulnerabilities in their applications, CodeSonar provides static analysis for applications where reliability and security are paramount - widely used by software developers in avionics, medical, automotive, industrial control, and other mission-critical applications. Some of GrammaTech's customers include Toyota, GE, Hyundai, Kawasaki, LG, Lockheed Martin, NASA, Northrop Grumman, Panasonic, and Samsung.

Through continuous monitoring, the Onapsis Security Platform (OSP) delivers a near real-time preventative, detective and corrective approach for securing SAP systems and applications whether deployed on-premise, or in a private, public or hybrid cloud environment.

Sample Customers

Viveris, Micrel Medical Devices, Olympus, SOFTEQ, SONY

Sony, US Army, Westinghouse, AXA. Galicia, Daimler, Roche, Levi's, Siemens, ABB, KPMG, Mercardo Libre, Verizon, Bacardi, Adgas, Sicpa, Whirlpool, Leaseplan

Buyer's Guide

Application Security Tools

October 2024

Download Free Report

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools. Updated: October 2024.

DOWNLOAD NOW

814,649 professionals have used our research since 2012.

See our list of best Application Security Tools vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.