Try our new research platform with insights from 80,000+ expert users

Coverity vs Qualys Web Application Scanning comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jul 6, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Coverity
Ranking in Static Application Security Testing (SAST)
5th
Average Rating
7.8
Reviews Sentiment
6.5
Number of Reviews
43
Ranking in other categories
No ranking in other categories
Qualys Web Application Scan...
Ranking in Static Application Security Testing (SAST)
9th
Average Rating
7.8
Reviews Sentiment
6.9
Number of Reviews
38
Ranking in other categories
Application Security Tools (13th)
 

Mindshare comparison

As of July 2025, in the Static Application Security Testing (SAST) category, the mindshare of Coverity is 7.2%, up from 6.7% compared to the previous year. The mindshare of Qualys Web Application Scanning is 2.1%, down from 2.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST)
 

Featured Reviews

Jaile Sebes - PeerSpot reviewer
Resolving critical software issues demands faster implementation and better integration
We use Coverity primarily to find issues such as software bugs and memory leaks, especially in C++ and C# projects. It helps us identify deadlocks, synchronization issues, and product crashes Coverity has been instrumental in resolving product crashes by detecting various issues like deadlocks.…
Kelvin Oladipo - PeerSpot reviewer
User-friendly scanning provides valuable vulnerability insights, but pricing improvements are needed
Qualys Web Application Scanning ( /products/qualys-web-application-scanning-reviews ) is user-friendly, easy to understand, easy to use, and easy to deploy. Credential scanning is very effective because it goes in-depth into the system, crawling the pages, and reporting on vulnerabilities. The product helps by providing options for remediating vulnerabilities it finds, making it really useful.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Provides software security, and helps to find potential security bugs or defects."
"The most valuable feature is the integration with Jenkins."
"The tool as it is can be used for code quality improvement."
"Coverity integrates with issue-tracking systems like Jira and provides email notifications, alerts, and other features."
"I encountered a bug with Coverity, and I opened a ticket. Support provided me with a workaround. So it's working at the moment, or at least it seems to be."
"Coverity is quite stable and we haven’t had any issues or any downtime."
"The ability to scan code gives us details of existing and potential vulnerabilities. What really matters for us is to ensure that we are able to catch vulnerabilities ahead of time."
"In my opinion, the most effective Coverity feature for identifying critical vulnerabilities is the extra checks, which offers deep analysis."
"With our vulnerabilities under control, it's putting our services in compliance and minimizing our risk for exposure."
"​We have experienced quick customer support. They have a complete list of our previous issues along with our history, which makes it faster for them to solve issues.​"
"Qualys WAS' most valuable features are the navigation flow of the UI and the option for a different layer of security (identification and operation through email and mobile)."
"It works with many different products."
"Its most valuable features are patch management, vulnerability management, and PCI compliance."
"It scans web applications to identify vulnerabilities during deployment."
"Qualys Web Application Scanning is user-friendly, easy to understand, easy to use, and easy to deploy."
"It is a good product for website penetration testing to detect vulnerabilities."
 

Cons

"Coverity is not stable."
"The solution's user interface and quality gate could be improved."
"The product lacks sufficient customization options."
"The reporting tool integration process is sometimes slow."
"Its price can be improved. Price is always an issue with Synopsys."
"Coverity could improve the ease of use. Sometimes things become difficult and you need to follow the guides from the website but the guides could be better."
"The tool needs to improve its reporting."
"SCM integration is very poor in Coverity."
"I have dealt with Qualys's technical support, and any enhancements are challenging. I would rate them a five out of ten."
"We procured around 110 licenses for Web Application Scanning, but we have issues running concurrent scans. I don't currently have the option to trigger scans for all 100-plus websites. The default limit is around 10 conference scans. It's not very scalable, to be honest, because of the limitation that they put on concurrent scans."
"The software’s pricing could be improved."
"Deployment can be complicated."
"The scanner reports a lot of false positives, which is something that needs to be improved."
"We receive false positives sometimes when using a solution that could be improved. However, the technical team provides us with the exact explanation why it was giving us that kind of error."
"I would like it to be cheaper because it is a bit expensive compared to competitors like Tenable Nessus."
"The virus code updates are not frequent enough."
 

Pricing and Cost Advice

"Coverity’s price is on the higher side. It should be lower."
"The pricing is on the expensive side, and we are paying for a couple of items."
"The solution's pricing is comparable to other products."
"The tool was fairly priced."
"Coverity is quite expensive."
"The price is competitive with other solutions."
"I would rate the pricing a six out of ten, where one is low, and ten is high price."
"The pricing is very reasonable compared to other platforms. It is based on a three year license."
"I rate the software’s pricing a six out of ten."
"There are different options available with respect to licensing."
"​It is best to be an institutional buyer and directly contact the sales team, as they can provide over-the-top discounts for bulk orders​."
"The product has a very good licensing model."
"From my perspective, it is a budget-friendly option."
"We are on an annual license for the solution and the pricing could be more affordable."
"The cost is $30,000 USD for one year to cover WAS (Web Application Security) and the VM (Virtual Machine) security in a company with 200 employees."
"Pricing was reasonable and competitive. It was not too far above the other products."
report
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
861,390 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
32%
Computer Software Company
14%
Financial Services Firm
7%
Government
4%
Computer Software Company
15%
Financial Services Firm
14%
Manufacturing Company
10%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How would you decide between Coverity and Sonarqube?
We researched Coverity, but in the end, we chose SonarQube. SonarQube is a tool for reviewing code quality and security. It helps to guide our development teams during code reviews by providing rem...
What do you like most about Coverity?
The solution has improved our code quality and security very well.
What do you like most about Qualys Web Application Scanning?
The vulnerability management feature is a strong one. And also the patch management feature.
What needs improvement with Qualys Web Application Scanning?
I would like it to be cheaper because it is a bit expensive compared to competitors like Tenable Nessus ( /products/tenable-nessus-reviews ). After using the product for a year, I might have more s...
 

Also Known As

Synopsys Static Analysis
Qualys WAS
 

Overview

 

Sample Customers

SAP, Mega International, Thales Alenia Space
BskyB, Cartagena, ClearPoint Learning Systems, Connect Group, du, Fortrex Technologies, HBOR, HDI, Highlights for Children, The Lithuanian State Enterprise Centre of Registers, City of Miami Beach, Microsoft, MidlandHR, MSCI Inc., Northern Arizona University, Ofgem, Olympus Europa, PhoneFactor, RTL Nederland, ThousandEyes, VGZ Organisatie B.V.
Find out what your peers are saying about Coverity vs. Qualys Web Application Scanning and other solutions. Updated: July 2025.
861,390 professionals have used our research since 2012.