We performed a comparison between NowSecure and OWASP Zap based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST)."The most valuable feature is the ability to download an application without actually putting in the APK. It gives us an option to put the APK in if we want to but we can download it from the App Store and Play Store."
"The product helps users to scan and fix vulnerabilities in the pipeline."
"ZAP is easy to use. The automated scan is a powerful feature. You can simulate attacks with various parameters. ZAP integrates well with SonarQube."
"The solution is scalable."
"The vulnerabilities that it finds, because the primary goal is to secure applications and websites."
"Automatic updates and pull request analysis."
"It updates repositories and libraries quickly."
"The most valuable feature is scanning the URL to drill down all the different sites."
"The solution is good at reporting the vulnerabilities of the application."
"In this solution, there are two kinds of testing, static analysis, and dynamic analysis. There needs some improvement in testing with dynamic analysis because I have found it is not accurate"
"The solution is unable to customize reports."
"The technical support team must be proactive."
"As security evolves, we would like DevOps built into it. As of now, Zap does not provide this."
"It would be nice to have a solid SQL injection engine built into Zap."
"It would be a great improvement if they could include a marketplace to add extra features to the tool."
"It would be ideal if I could try some pre-built deployment scenarios so that I don't have to worry about whether the configuration sector team is doing it right or wrong. That would be very helpful."
"Reporting format has no output, is cluttered and very long."
"It needs more robust reporting tools."
Earn 20 points
NowSecure is ranked 33rd in Static Application Security Testing (SAST) while OWASP Zap is ranked 7th in Static Application Security Testing (SAST) with 37 reviews. NowSecure is rated 7.0, while OWASP Zap is rated 7.6. The top reviewer of NowSecure writes "Scalable and reliable, but dynamic analysis needs improvement". On the other hand, the top reviewer of OWASP Zap writes "Great for automating and testing and has tightened our security ". NowSecure is most compared with Veracode, GitLab, Data Theorem API Secure , Acunetix and Checkmarx One, whereas OWASP Zap is most compared with SonarQube, Acunetix, Qualys Web Application Scanning, PortSwigger Burp Suite Professional and Veracode.
See our list of best Static Application Security Testing (SAST) vendors.
We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.