We performed a comparison between Coverity and Parasoft SOAtest based on real PeerSpot user reviews.
Find out in this report how the two Application Security Testing (AST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature of Coverity is the wrapper. We use the wrapper to build the C++ component, then we use the other code analysis to analyze the code to the build object, and then send back the result to the SonarQube server. Additionally, it is a powerful capabilities solution."
"The most valuable feature of Coverity is its software security feature called the Checker. If you share some vulnerability or weakness then the software can find any potential security bug or defect. The code integration tool enables some secure coding standards and implements some Checkers for Live Duo. So we can enable secure coding and Azure in this tool. So in our software, we can make sure our software combines some industry supervised data."
"The product has deeper scanning capabilities."
"The security analysis features are the most valuable features of this solution."
"It provides reports about a lot of potential defects."
"The features I find most valuable is that our entire company can publish the analysis results into our central space."
"The app analysis is the most valuable feature as I know other solutions don't have that."
"Provides software security, and helps to find potential security bugs or defects."
"Good write and read files which save execution inputs and outputs and can be stored locally."
"Parasoft SOAtest has improved the quality of our automated web services, which can be easily implemented through service chaining and service virtualization."
"We do a lot of web services testing and REST services testing. That is the focus of this product."
"Automatic testing is the most valuable feature."
"The testing time is shortened because we generate test data automatically with SOAtest."
"The solution is scalable."
"Generating new messages, based on the existing .EDN and .XML messages, is a crucial part or the testing project that I’m currently in."
"Technical support is helpful."
"The product could be enhanced by providing video troubleshooting guides, making issue resolution more accessible. Troubleshooting without visual guides can be time-consuming."
"Its price can be improved. Price is always an issue with Synopsys."
"The product could be enhanced by providing video troubleshooting guides, making issue resolution more accessible. Troubleshooting without visual guides can be time-consuming."
"Coverity takes a lot of time to dereference null pointers."
"The quality of the code needs improvement."
"The level of vulnerability that this solution covers could be improved compared to other open source tools."
"I would like to see integration with popular IDEs, such as Eclipse."
"We actually specified several checkers, but we found some checkers had a higher false positive rate. I think this is a problem. Because we have to waste some time is really the issue because the issue is not an issue. I mean, the tool pauses or an issue, but the same issue is the filter now.Some check checkers cannot find some issues, but sometimes they find issues that are not relevant, right, that are not really issues. Some customisation mechanism can be added in the next release so that we can define our Checker. The Modelling feature provided by Coverity helps in finding more information for potential issues but it is not mature enough, it should be mature. The fast testing feature for security testing campaign can be added as well. So if you correctly integrate it with the training team, maybe you can help us to find more potential issues."
"Tuning the tool takes time because it gives quite a long list of warnings."
"The feedback that we received from the DevOps of our organization was that the tool was a little heavy from the transformation perspective."
"Enabling/disabling an optional element of an XML request is only possible if a data source (e.g., Excel sheet) is connected to the test. Otherwise, the option is not available at all in the drop-down menu."
"The summary reports could be improved."
"The product is very slow to start up, and that is a bit of a problem, actually."
"Parasoft SOAtest has an internal refresh function where you can refresh the software to show the changes you’ve made in your projects. Unfortunately this function does not work properly, because it often does not show the changes after you’ve hit te refresh button a few times."
"From an automation point of view, it should have better clarity and be more user friendly."
"Reporting facilities can be better."
Coverity is ranked 4th in Application Security Testing (AST) with 33 reviews while Parasoft SOAtest is ranked 28th in Application Security Testing (AST) with 30 reviews. Coverity is rated 7.8, while Parasoft SOAtest is rated 8.2. The top reviewer of Coverity writes "Best SAST tool to check software quality issues". On the other hand, the top reviewer of Parasoft SOAtest writes "Reliable with a good interface but uses too much memory". Coverity is most compared with SonarQube, Klocwork, Fortify on Demand, Checkmarx One and Seeker, whereas Parasoft SOAtest is most compared with Postman, SonarQube, Polyspace Code Prover, Klocwork and ReadyAPI. See our Coverity vs. Parasoft SOAtest report.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.