We performed a comparison between HCL AppScan and Parasoft SOAtest based on real PeerSpot user reviews.
Find out in this report how the two Application Security Testing (AST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."IBM AppScan has made our work easy, as we can do four to five scans of websites at a time, which saves time when it comes to vulnerability."
"The solution is easy to use."
"The most valuable feature of HCL AppScan is scanning QR codes."
"It highlights, with several grades of severity, the types of vulnerabilities, so we can focus on the most severe security vulnerabilities in the code."
"We leverage it as a quality check against code."
"It was easy to set up."
"It is easy it is to use. It is quick to find things, because of the code scanning tools. It's quite simple to use and it is very good the way it reports the findings."
"It comes with all of the templates that we need. For example, we are a company that is regulated by PCI. In order to be PCI compliant, we have a lot of checks and procedures to which we have to comply."
"We can automate our scenarios in a data driven format, which shows there is no rework on scripts. We only need to update the test data and run for a number of scenarios."
"The solution is scalable."
"Generating new messages, based on the existing .EDN and .XML messages, is a crucial part or the testing project that I’m currently in."
"Since the solution has both command line and automation options, it generates good reports."
"Technical support is helpful."
"Good write and read files which save execution inputs and outputs and can be stored locally."
"The testing time is shortened because we generate test data automatically with SOAtest."
"Every imaginable source in the entire world of information technology can be accessed and used."
"Scans become slow on large websites."
"They could add a software component analysis tool."
"The solution needs to improve in some areas. The tool needs to add more languages. It also needs to improve its speed."
"In future releases, I would like to see more aggressive reports. I would also like to see less false positives."
"The product has some technical limitations."
"I think being able to search across more containers, especially some of the docker elements. We need a little tighter integration there. That's the only thing I can see at this point."
"The tool should improve its output. Scanning is not a challenge anymore since there are many such tools available in the market. The product needs to focus on how its output is being used by end users. It should be also more user-friendly. One of the major challenges is in the tool's integration with applications that need to be scanned. Sometimes, the scanning is not proper."
"They should have a better UI for dashboards."
"Reports could be customized and more descriptive according to the user's or company's requirements."
"Compatibility with HTTP 1.1 and TLS 1.2 needs to be improved."
"Enabling/disabling an optional element of an XML request is only possible if a data source (e.g., Excel sheet) is connected to the test. Otherwise, the option is not available at all in the drop-down menu."
"During the process of working with SOAtest and building test cases, the .TST files will grow. A negative side effect is that saving your changes takes more time."
"Reporting facilities can be better."
"UI testing should be more in-depth."
"Tuning the tool takes time because it gives quite a long list of warnings."
"The product is very slow to start up, and that is a bit of a problem, actually."
HCL AppScan is ranked 12th in Application Security Testing (AST) with 39 reviews while Parasoft SOAtest is ranked 28th in Application Security Testing (AST) with 30 reviews. HCL AppScan is rated 7.6, while Parasoft SOAtest is rated 8.2. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of Parasoft SOAtest writes "Reliable with a good interface but uses too much memory". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, Checkmarx One and PortSwigger Burp Suite Professional, whereas Parasoft SOAtest is most compared with Postman, SonarQube, Coverity, Klocwork and Polyspace Code Prover. See our HCL AppScan vs. Parasoft SOAtest report.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.