Try our new research platform with insights from 80,000+ expert users

Coverity vs Rapid7 AppSpider comparison

Black Duck and Rapid7 are both solutions in the Static Application Security Testing (SAST) category. Black Duck is ranked #4 with an average rating of 8.0, while Rapid7 is ranked #27 with an average rating of 8.0. Black Duck holds a 8.0% mindshare in SAST, compared to Rapid7’s 0.5% mindshare. Additionally, 88% of Black Duck users are willing to recommend the solution, compared to 100% of Rapid7 users who would recommend it.
Coverity
Read 42 Coverity reviews
  • 11,969 Views
  • 8,281 Comparison Views
88% willing to recommend
Rapid7 AppSpider
Read 14 Rapid7 AppSpider reviews
  • 909 Views
  • 614 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024

Rapid7 AppSpider and Coverity are competitors in the application security solutions category. Coverity appears to have the upper hand with its advanced features and strong integration support, making it a preferred choice for users looking for long-term value.

Features: Rapid7 AppSpider offers robust automated scanning capabilities, user-friendly reporting, and effective scanning. Coverity provides deep code analysis, extensive language support, and seamless integration into CI/CD pipelines. Coverity’s comprehensive analysis sets it apart.

Room for Improvement: Rapid7 AppSpider could expand integration options, improve performance speeds, and offer greater flexibility. Coverity’s users recommend simplifying configuration settings, enhancing intuitive features, and streamlining the setup process.

Ease of Deployment and Customer Service: Rapid7 AppSpider is recognized for its straightforward deployment and responsive support. Coverity requires more technical expertise for deployment but offers excellent customer service and technical support. Rapid7 AppSpider is simpler, while Coverity is more complex.

Pricing and ROI: Rapid7 AppSpider provides competitive setup costs and quick ROI, appealing to cost-sensitive users. Coverity involves higher initial costs but promises substantial ROI through robust features and integration, appealing to those seeking long-term value.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Coverity vs. Rapid7 AppSpider Report (Updated: April 2025).
Buyer's Guide
Coverity vs. Rapid7 AppSpider
April 2025
Download the complete report
Helped 847,625 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Coverity
Ranking in Static Application Security Testing (SAST)
4th
Average Rating
7.8
Reviews Sentiment
6.5
Number of Reviews
42
Ranking in other categories
No ranking in other categories
Rapid7 AppSpider
Ranking in Static Application Security Testing (SAST)
27th
Average Rating
7.8
Reviews Sentiment
6.7
Number of Reviews
14
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Static Application Security Testing (SAST) category, the mindshare of Coverity is 8.0%, up from 7.0% compared to the previous year. The mindshare of Rapid7 AppSpider is 0.5%, down from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST)
 

Featured Reviews

Md. Shahriar Hussain - PeerSpot reviewer
Offers impressive reporting features with user-friendliness and high scalability
The solution can be easily setup but requires heavy integration due to the multiple types of port and programming languages involved. Comparing the resource requirements of the solution I would say it can be installed effortlessly. I would rate the initial setup an eight out of ten. A professional needs some pre-acquired knowledge to manage Coverity's deployment process, but the local solution partners provide support well enough for trouble-free deployment. The overall deployment process of Coverity took around two and a half hours in our organization. The deployment duration depends upon the operating system and resources including high-end RAM and CPU processors.
Read full review
Andrei Bigdan - PeerSpot reviewer
Useful vulnerability reporting data, flexible, and simple implementation
I have had some stability problems but it could be the Microsoft Windows operating system. I found that closing other applications helps with stability. It is helpful to have as much memory as possible, such as eight gigabytes. The more pages being processed the more resources you need. I rate the stability of Rapid7 AppSpider a nine out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It's very stable."
"It is a scalable solution."
"The interface of Coverity is quite good, and it is also easy to use."
"I like Coverity's capability to scan codes once we push it. We don't need more time to review our colleagues' codes. Its UI is pretty straightforward."
"The most valuable feature is the integration with Jenkins."
"What I find most effective about Coverity is its low rate of false positives. I've seen other platforms with many false positives, but with Coverity, most vulnerabilities it identifies are genuine. This allows me to focus on real issues."
"The product has been beneficial in logging functionality, allowing me to categorize vulnerabilities based on severity. This aids in providing updated reports on subsequent scans."
"The app analysis is the most valuable feature as I know other solutions don't have that."
More Coverity pros
"The solution is highly stable, rated at ten out of ten."
"I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us."
"Rapid7 AppSpider is good at managing different applications. It uses applets and generates reports to cover the PCA/GDPR compliance requirements."
"When it is set up properly, it can do scanning on web apps with multiple engines automatically."
"I would say that it is stable, as I am not aware of any major issues."
"The initial deployment is very straightforward and simple. The product is stable if configured properly."
"One of the most valuable features of AppSpider is its broad range of authentication identification, which is a key reason for its utilization."
"It scans all the components developed within a web application."
More Rapid7 AppSpider pros
 

Cons

"They could improve the usability. For example, how you set things up, even though it's straightforward, it could be still be easier."
"Coverity is not a user-friendly product."
"The product could be enhanced by providing video troubleshooting guides, making issue resolution more accessible. Troubleshooting without visual guides can be time-consuming."
"There should be additional IDE support."
"Sometimes, vulnerabilities remain unidentified even after setting up the rules."
"Sometimes it's a bit hard to figure out how to use the product’s UI."
"The product could be enhanced by providing video troubleshooting guides, making issue resolution more accessible. Troubleshooting without visual guides can be time-consuming."
"There is an extra step in my organization that involves uploading to servers, which adds overhead."
More Coverity cons
"This price of this solution is a little bit expensive."
"The tech support is responsive but issues remain unresolved."
"The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution."
"The product needs to be able to scale for large companies, like ours. We have millions of IP addresses that need to be scanned, and the scalability is not great."
"One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions."
"The dashboard and interface are crucial and they need some improvement."
"There are some glitches with stability, and it is an area for improvement."
"For Japanese customers, localization is needed. The product should offer a GUI in Japanese and provide Japanese reports for end-users."
More Rapid7 AppSpider cons
 

Pricing and Cost Advice

"I rate Coverity's price a ten on a scale of one to ten, where one is cheap and ten is expensive."
"It is expensive."
"The solution is affordable."
"This is a pretty expensive solution. The overall value of the solution could be improved if the price was reduced. Licensing is done on an annual basis."
"I would rate Coverity's pricing as a nine out of ten. It's already very expensive, and it's a problem for us to get more licenses due to the price. The pricing model has some good aspects - for example, a personal license gives access to all languages without code limitations, which is better than some competitors. However, it's still a lot of money for us to spend."
"The licensing fees are based on the number of lines of code."
"The tool's price is somewhere in the middle. It's neither cheap nor expensive. I would rate the pricing a five out of ten."
"Offers varying prices for different companies"
More Coverity pricing and cost advice
"The licensing cost depends on the number of users."
"It is expensive if you want to buy the Enterprise version that is able to scan multiple applications at once."
"The price of Rapid7 AppSpider cost 9,000 annually but there is limited usage. Large companies are able to negotiate a better price or a better deal for the usage with the vendor."
"The price is pretty fair."
"AppSpider is closed-source software and you need to acquire a license in order to use it."
report
See which vendors are best for you
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
See recommendations
847,625 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
33%
Computer Software Company
14%
Financial Services Firm
7%
Government
4%
Financial Services Firm
17%
Computer Software Company
14%
Healthcare Company
8%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How would you decide between Coverity and Sonarqube?
We researched Coverity, but in the end, we chose SonarQube. SonarQube is a tool for reviewing code quality and security. It helps to guide our development teams during code reviews by providing rem...
See all answers
What do you like most about Coverity?
The solution has improved our code quality and security very well.
See all answers
What is your experience regarding pricing and costs for Coverity?
I do not know about the pricing.
See all answers
What do you like most about Rapid7 AppSpider?
The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate a...
See all answers
What is your experience regarding pricing and costs for Rapid7 AppSpider?
The price is not high, but for Japanese customers, localization may incur additional costs.
See all answers
What needs improvement with Rapid7 AppSpider?
For Japanese customers, localization is needed. The product should offer a GUI in Japanese and provide Japanese reports for end-users.
See all answers
 

Comparisons

SonarQube Server (formerly SonarQube) vs Coverity Logo
SonarQube Server (formerly SonarQube) vs Coverity
Compared 50% of the time
Klocwork vs Coverity Logo
Klocwork vs Coverity
Compared 6% of the time
Fortify on Demand vs Coverity Logo
Fortify on Demand vs Coverity
Compared 6% of the time
Polyspace Code Prover vs Coverity Logo
Polyspace Code Prover vs Coverity
Compared 5% of the time
Veracode vs Coverity Logo
Veracode vs Coverity
Compared 5% of the time
More Coverity Competitors
Rapid7 InsightAppSec vs Rapid7 AppSpider Logo
Rapid7 InsightAppSec vs Rapid7 AppSpider
Compared 43% of the time
Acunetix vs Rapid7 AppSpider Logo
Acunetix vs Rapid7 AppSpider
Compared 10% of the time
Invicti vs Rapid7 AppSpider Logo
Invicti vs Rapid7 AppSpider
Compared 9% of the time
OWASP Zap vs Rapid7 AppSpider Logo
OWASP Zap vs Rapid7 AppSpider
Compared 7% of the time
SonarQube Server (formerly SonarQube) vs Rapid7 AppSpider Logo
SonarQube Server (formerly SonarQube) vs Rapid7 AppSpider
Compared 5% of the time
More Rapid7 AppSpider Competitors
 

Product Reports

Buyer's Guide
Coverity
April 2025
Coverity reportDownload Coverity product report
Buyer's Guide
Rapid7 AppSpider
March 2025
Rapid7 AppSpider reportDownload Rapid7 AppSpider product report
 

Also Known As

Synopsys Static Analysis
AppSpider
 

Overview

Coverity gives you the speed, ease of use, accuracy, industry standards compliance, and scalability that you need to develop high-quality, secure applications. Coverity identifies critical software quality defects and security vulnerabilities in code as it’s written, early in the development process, when it’s least costly and easiest to fix. With the Code Sight integrated development environment (IDE) plugin, developers get accurate analysis in seconds in their IDE as they code. Precise actionable remediation advice and context-specific eLearning help your developers understand how to fix their prioritized issues quickly, without having to become security experts. 

Coverity seamlessly integrates automated security testing into your CI/CD pipelines and supports your existing development tools and workflows. Choose where and how to do your development: on-premises or in the cloud with the Polaris Software Integrity Platform (SaaS), a highly scalable, cloud-based application security platform. Coverity supports more than 20 languages and 200 frameworks and templates.

Black Duck

SPAs, APIs, mobile—the evolution of application technology is measured in months, not years. Is your web application security testing tool designed to keep up? AppSpider lets you collect all the information needed to test all the apps so that you aren’t left with gaping application risks.

Our dynamic application security testing (DAST) solution crawls to the deepest, darkest corners of even the most modern and complex apps to effectively test for risk and get you the insight you need to remediate faster. With AppSpider on your side (or, rather, all of your sides), you’ll be able to scan all the apps today and always be ready for whatever comes next.

Rapid7
 

Sample Customers

SAP, Mega International, Thales Alenia Space
Microsoft
Buyer's Guide
Coverity vs. Rapid7 AppSpider
April 2025
Free Report: Coverity vs. Rapid7 AppSpider
Find out what your peers are saying about Coverity vs. Rapid7 AppSpider and other solutions. Updated: April 2025.
DOWNLOAD NOW
847,625 professionals have used our research since 2012.
See our Coverity vs. Rapid7 AppSpider report.
See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.