Try our new research platform with insights from 80,000+ expert users

Parasoft SOAtest vs SonarQube Server (formerly SonarQube) comparison

Parasoft and Sonar are both solutions in the Static Application Security Testing (SAST) category. Parasoft is ranked #29 with an average rating of 7.0, while Sonar is ranked #1 with an average rating of 8.2. Parasoft holds a 0.5% mindshare in SAST, compared to Sonar’s 28.7% mindshare. Additionally, 92% of Parasoft users are willing to recommend the solution, compared to 81% of Sonar users who would recommend it.
Parasoft SOAtest
Read 30 Parasoft SOAtest reviews
  • 1,015 Views
  • 661 Comparison Views
92% willing to recommend
SonarQube Server (formerly ...
Read 113 SonarQube Server (formerly SonarQube) reviews
  • 46,116 Views
  • 37,416 Comparison Views
81% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 30, 2024

Parasoft SOAtest and SonarQube Server compete in API testing and code quality analysis, respectively. Based on user reviews, Parasoft's API testing capabilities, combined with SonarQube's strong code analysis features like quality gates, make them leaders in their categories.

Features: Parasoft SOAtest stands out for its automated web services testing, custom scripting options, and extensive protocol support. It is ideal for robust API testing and validation processes. SonarQube Server, known for its comprehensive code quality analysis, supports multiple programming languages, quality gates, and integrates seamlessly into development environments.

Room for Improvement: Parasoft SOAtest can benefit from enhancing its reporting features and making them less technical, improving UI testing capabilities, and optimizing test management integration. SonarQube needs to refine its security vulnerability detection, dynamic analysis capabilities, simplify configuration, and expand documentation and language support.

Ease of Deployment and Customer Service: Parasoft SOAtest is typically deployed on-premises and provides good customer support, albeit with occasional delays. SonarQube offers flexible deployment across cloud and on-premises models, with strong community support, though professional support could be enhanced for complex setups.

Pricing and ROI: Parasoft SOAtest is considered expensive, yet users perceive it as a worthy investment due to automation and testing capabilities that justify its ROI. SonarQube provides competitive pricing, with a free community edition offering many features, and commercial upgrades adding more value for cost-effective code quality and security focus without extensive budget constraints.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Parasoft SOAtest vs. SonarQube Server (formerly SonarQube) Report (Updated: October 2024).
Buyer's Guide
Parasoft SOAtest vs. SonarQube Server (formerly SonarQube)
October 2024
Download the complete report
Helped 814,528 peers since 2012
 

Categories and Ranking

Parasoft SOAtest
Ranking in Static Application Security Testing (SAST)
29th
Average Rating
8.2
Number of Reviews
30
Ranking in other categories
Functional Testing Tools (24th), API Testing Tools (9th), Test Automation Tools (23rd)
SonarQube Server (formerly ...
Ranking in Static Application Security Testing (SAST)
1st
Average Rating
8.0
Number of Reviews
113
Ranking in other categories
Application Security Tools (1st), Software Development Analytics (1st)
 

Mindshare comparison

As of November 2024, in the Static Application Security Testing (SAST) category, the mindshare of Parasoft SOAtest is 0.5%, up from 0.5% compared to the previous year. The mindshare of SonarQube Server (formerly SonarQube) is 28.7%, up from 28.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST)
 

Featured Reviews

Ajit Kumar Rout - PeerSpot reviewer
Aug 6, 2021
Good API testing and RIT feature; clarity could be improved
In general, this is a hassle free, user friendly tool and it doesn't require much knowledge if you're using the manual testing. Automated testing is also good but requires some knowledge in that field. It has some great features. It's a good tool compared to some of the other paid tools; input and output can be stored before extension and there is also a verification assessment that can be implemented by using some different methodologies inside the tool. If the licensing cost is suitable then I recommend this solution. If you have automation people with in-depth knowledge in coding that will be helpful. I rate this solution a seven out of 10.
Read full review
Wang Dayong - PeerSpot reviewer
May 10, 2023
Easy to integrate and has a plug-in that supports both C and C++ languages
We use the product to review our software codes. We have integrated the product to review our new delivery code When we deliver a code, the solution scans the code and reports whether the code has bugs or any other vulnerability issues. Thus the solution helps us identify issues and improve the…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Parasoft SOAtest has improved the quality of our automated web services, which can be easily implemented through service chaining and service virtualization."
"We do a lot of web services testing and REST services testing. That is the focus of this product."
"They have a feature where they can record traffic and create tests on the report traffic."
"If you want something that’s not provided out of the box, then you can write it yourself and integrate it with SOAtest."
"The testing time is shortened because we generate test data automatically with SOAtest."
"We have seen a return on investment."
"Every imaginable source in the entire world of information technology can be accessed and used."
"Technical support is helpful."
More Parasoft SOAtest pros
"The solution's user interface is very user-friendly."
"We have the software metrics that SonarQube gives us, which is something we did not have before. This helps us work towards aiming coding standards to empower us to move in the direction of better code quality. SonarQube provides targets and metrics for that."
"My focus is mainly on the DevOps pipeline side of things, and from my perspective, the ease of use and configuration is valuable. It is pretty straightforward to take a deployment pipeline or CI/CD pipeline and integrate SonarQube into it."
"The overall quality of the indicator is good."
"Improve the code coverage and evaluates the technical steps and percentage of code being resolved."
"I like the by-default policies that are they, as they seem to cover most of what I need."
"This solution is simple to use and can be quickly deployed."
"All the features of the solution are quite good."
More SonarQube Server (formerly SonarQube) pros
 

Cons

"From an automation point of view, it should have better clarity and be more user friendly."
"UI testing should be more in-depth."
"The product is very slow to start up, and that is a bit of a problem, actually."
"Reports could be customized and more descriptive according to the user's or company's requirements."
"Compatibility with HTTP 1.1 and TLS 1.2 needs to be improved."
"Enabling/disabling an optional element of an XML request is only possible if a data source (e.g., Excel sheet) is connected to the test. Otherwise, the option is not available at all in the drop-down menu."
"Tuning the tool takes time because it gives quite a long list of warnings."
"During the process of working with SOAtest and building test cases, the .TST files will grow. A negative side effect is that saving your changes takes more time."
More Parasoft SOAtest cons
"I don't believe you can have metrics of code quality based upon code analysis. I don't think it's possible for a computer to do it."
"Ease of use/interface."
"Technical support and the price could be better."
"An improvement is with false positives. Sometimes the tool can say there is an issue in your code but, really, you have to do things in a certain way due to external dependencies, and I think it's very hard to indicate this is the case."
"It would be a great add-on if SonarQube could update its database for vulnerabilities or plugging parts."
"Expression of common vulnerabilities and exposures is not always current."
"Code security could be better. They are already focusing on it, but I see a lot of improvement opportunities over there. I can see a lot of false positives in terms of security. They need to make the tests more accurate so that the false positives are not detected so frequently. It would also help if they provided us with an installer."
"We previously experienced issues with security but a segregated security violation has been implemented and the issues we experienced are being fixed."
More SonarQube Server (formerly SonarQube) cons
 

Pricing and Cost Advice

"From what I understand, Parasoft SOAtest isn't the cheapest option. But it has a lot to offer."
"The license price is a little expensive, but it provides a better outcome in terms of the end-to-end automation process."
"They do have a confusing licensing structure."
"We are completed satisfied with Parasoft SOAtest. The ROI is more than 95%."
"The price is around $5,000 USD."
"The cost of Parasoft seems to have gotten higher with a projection that wasn't really stipulated for our company. They've done a tremendous job at negotiating those deals."
"It is an expensive product, so think carefully about whether it fits your purposes and is the right tool for you."
"I think it would be a great step to decrease the price of the licenses."
"The beauty of this solution is the free open-source version is capable enough in doing pretty much what an enterprise-level version can do."
"We have a license with 125,000 lines of code. We did not purchase a lot of lines but it is specific to our code environment."
"As a user and a consumer of this solution, it can be pricey for my company to support and use, even though there are many benefits. For this reason, we use the free version. In the future, as our product cycles develop and evolve at a more steady pace, we hope to invest in the licensing for this tool."
"The free version of SonarQube does everything that we need it to."
"On the pricing side, it's 3,000 Euros for 1 million lines of code."
"The price of the solution could be reduced."
"SonarQube is an open-source product that can be used free of charge."
"We use the free version; there are no hidden costs or licensing required."
More SonarQube Server (formerly SonarQube) pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
See recommendations
814,528 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
27%
Manufacturing Company
17%
Computer Software Company
13%
Government
5%
Financial Services Firm
17%
Computer Software Company
15%
Manufacturing Company
13%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Parasoft SOAtest?
Since the solution has both command line and automation options, it generates good reports.
See all answers
What is your experience regarding pricing and costs for Parasoft SOAtest?
The price is average. It isn't overly expensive.
See all answers
What needs improvement with Parasoft SOAtest?
Tuning the tool takes time because it gives quite a long list of warnings. Going through that is a challenge. It only happens in the initial stage when we are setting up the tool, but it can be imp...
See all answers
Is SonarQube the best tool for static analysis?
I am not very familiar with SonarQube and their solutions, so I can not answer. But if you are asking me about which tools that are the best for for Static Code Analysis, I suggest you have a look...
See all answers
Which gives you more for your money - SonarQube or Veracode?
SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use...
See all answers
How would you decide between Coverity and Sonarqube?
We researched Coverity, but in the end, we chose SonarQube. SonarQube is a tool for reviewing code quality and security. It helps to guide our development teams during code reviews by providing rem...
See all answers
 

Comparisons

Postman vs Parasoft SOAtest Logo
Postman vs Parasoft SOAtest
Compared 23% of the time
Coverity vs Parasoft SOAtest Logo
Coverity vs Parasoft SOAtest
Compared 13% of the time
Polyspace Code Prover vs Parasoft SOAtest Logo
Polyspace Code Prover vs Parasoft SOAtest
Compared 8% of the time
ReadyAPI vs Parasoft SOAtest Logo
ReadyAPI vs Parasoft SOAtest
Compared 8% of the time
Klocwork vs Parasoft SOAtest Logo
Klocwork vs Parasoft SOAtest
Compared 6% of the time
More Parasoft SOAtest Competitors
Checkmarx One vs SonarQube Server (formerly SonarQube) Logo
Checkmarx One vs SonarQube Server (formerly SonarQube)
Compared 17% of the time
Coverity vs SonarQube Server (formerly SonarQube) Logo
Coverity vs SonarQube Server (formerly SonarQube)
Compared 12% of the time
SonarQube Cloud (formerly SonarCloud) vs SonarQube Server (formerly SonarQube) Logo
SonarQube Cloud (formerly SonarCloud) vs SonarQube Server (formerly SonarQube)
Compared 12% of the time
GitHub Advanced Security vs SonarQube Server (formerly SonarQube) Logo
GitHub Advanced Security vs SonarQube Server (formerly SonarQube)
Compared 9% of the time
Veracode vs SonarQube Server (formerly SonarQube) Logo
Veracode vs SonarQube Server (formerly SonarQube)
Compared 9% of the time
More SonarQube Server (formerly SonarQube) Competitors
 

Product Reports

Buyer's Guide
Parasoft SOAtest
October 2024
Parasoft SOAtest reportDownload Parasoft SOAtest product report
Buyer's Guide
SonarQube Server (formerly SonarQube)
October 2024
SonarQube Server (formerly SonarQube) reportDownload SonarQube Server (formerly SonarQube) product report
 

Also Known As

SOAtest
Sonar
 

Learn More

Parasoft
Sonar
 

Interactive Demo

Demo not available
Parasoft
Sonar
 

Overview

Parasoft SOAtest delivers fully integrated API and web service testing capabilities that automate end-to-end functional API testing. Streamline automated testing with advanced codeless test creation for applications with multiple interfaces (REST & SOAP APIs, microservices, databases, and more).

SOAtest reduces the risk of security breaches and performance outages by transforming functional testing artifacts into security and load equivalents. Such reuse, along with continuous monitoring of APIs for change, allows faster and more efficient testing.

SonarQube Server enhances code quality and security via static code analysis. It detects vulnerabilities, improves standards, and reduces technical debt, integrating into CI/CD pipelines.

SonarQube Server is a comprehensive tool for enhancing code quality and security. It offers static code analysis to identify vulnerabilities, improve coding standards, and reduce technical debt. By integrating into CI/CD pipelines, it provides automated checks for adherence to best practices. Organizations use it for code inspection, security testing, and compliance, ensuring development environments with better maintainability and fewer issues.

What are the key features of SonarQube Server?
  • Support for 20+ languages: Extensive programming language support suitable for diverse coding environments.
  • Custom coding rules: Allows for tailored rule sets to match specific coding standards.
  • Flexible quality gates: Define criteria for code acceptance at various intervals.
  • CI/CD integration: Seamless integration with Continuous Integration/Continuous Deployment tools.
  • Rich interface: User-friendly dashboard with detailed visual insights.
What benefits should users expect from SonarQube Server?
  • Improved code quality: Enhanced analysis contributes to fewer bugs and improved coding practices.
  • Security enhancements: Identifies and mitigates security vulnerabilities pre-emptively.
  • Maintainability: Reduces technical debt, yielding long-term development efficiency.
  • Customizable: Flexibility in configuration aligns with specific project needs.

Many industries implement SonarQube Server to uphold coding standards, maintain security protocols, and streamline their software development lifecycle. In sectors like finance and healthcare, adhering to regulations and ensuring reliable software is critical, making SonarQube Server invaluable. It is often integrated into CI/CD pipelines, ensuring that code changes meet set standards before deployment. This approach enhances productivity and maintains compliance with industry-specific requirements.

 

Sample Customers

Charter Communications, Sabre, Caesars Entertainment, Charles Schwab, ING, Intel, Northbridge Financial, Capital Services, WoodmenLife
Information Not Available
Buyer's Guide
Parasoft SOAtest vs. SonarQube Server (formerly SonarQube)
October 2024
Free Report: Parasoft SOAtest vs. SonarQube Server (formerly SonarQube)
Find out what your peers are saying about Parasoft SOAtest vs. SonarQube Server (formerly SonarQube) and other solutions. Updated: October 2024.
DOWNLOAD NOW
814,528 professionals have used our research since 2012.
See our Parasoft SOAtest vs. SonarQube Server (formerly SonarQube) report.
See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.