We performed a comparison between Check Point CloudGuard WAF and SonarQube based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."They offer free trials, which is quite appreciative and grabs more attention from new users and businesses."
"After integrating AppSec with other applications, team members can easily work without fear of confidential information exposure."
"The tool's most valuable feature is AI, which makes operations easier. Moreover, it is easy to deploy."
"Its main value and what we liked the most is its powerful AI."
"Its ability to adapt to our applications and ensure our security policies are followed is a big plus."
"It helps us streamline our revenue streams, and we're spending less money on application security."
"The most valuable feature we have found in Check Point CloudGuard WAF is its rich logging capabilities."
"The app control is very sensitive, and the threat detection and prevention is better than other Check Point solutions. There is a centralized management console for threat protection and self-inspection."
"The fact that the solution does security scanning is valuable."
"I like that it helps us maintain our work quality and code security."
"The code coverage feature is very good."
"We can create a Quality Gate in order to fail Jenkins jobs where the code coverage is lower than the set percentage."
"The features of SonarQube that I find most valuable for identifying code smells are its comprehensive code analysis capabilities, which cover various aspects of code sustainability."
"There's plenty of documentation available to users."
"I like that it covers most programming languages for source code review."
"This solution is simple to use and can be quickly deployed."
"The trial version should be extended further so that QA test engineers can actually test the utilities in a real sense and can provide the maximum amount of feedback for enhancements."
"There are occasions when it interfaces with other systems, leading to a loss of visibility."
"One of the big problems we found in Check Point, in general, is the support."
"It was costlier than other solutions."
"You need to know exactly the system. You cannot have someone running the system if they don't have the knowledge to do so."
"I do not know if it is already there, but I would like to have complete visibility between the posture management and firewall as a service."
"They should improve in the delivery of more detailed reports with more information."
"They need improved latency in the main window."
"The scanning part could be improved in SonarQube. We have used Coverity for scanning, and we have the critical issues reported by Coverity. When we used SonarQube for scanning and looked at the results, it seems that some of them have incorrect input. This part can be improved for C and C++ languages."
"The solution could improve the management reports by making them easier to understand for the technical team that needs to review them."
"This solution finds issues that are similar to what is found by Checkmarx, and it would be nice if the overlap could be eliminated."
"Having performance regression would be a helpful add on or ability to be able to do during the scan."
"We called support and complained but have not received any information as we use the free version. We had to fix it on our own and could not escalate it to the tool's developer."
"I would also like SonarQube to be able to write custom scanning rules. More documentation would be helpful as well because some of our guys were struggling with the customization script."
"The product's pricing could be lower."
"I would like to see dynamic code analysis in the next version of the software."
Check Point CloudGuard WAF is ranked 11th in Application Security Tools with 30 reviews while SonarQube is ranked 1st in Application Security Tools with 111 reviews. Check Point CloudGuard WAF is rated 9.0, while SonarQube is rated 8.0. The top reviewer of Check Point CloudGuard WAF writes "Automation capabilities also help streamline security processes and smooths down API integration processes and detects API availability". On the other hand, the top reviewer of SonarQube writes "Easy to integrate and has a plug-in that supports both C and C++ languages". Check Point CloudGuard WAF is most compared with Checkmarx One, whereas SonarQube is most compared with Checkmarx One, SonarCloud, Coverity, Veracode and Snyk. See our Check Point CloudGuard WAF vs. SonarQube report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.