We performed a comparison between Check Point CloudGuard WAF and SonarQube based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It seamlessly protects through machine learning, giving us visibility into potential attacks and where they come from."
"The most effective CloudGuard feature for threat prevention is its web app protection."
"The features I have found most valuable are the comprehensive threat prevention capabilities, automated policy management, and seamless integration with cloud environments."
"The first valuable feature is that it is not a complex process to get it up and running. It was not complex at all. We were in a close relationship with the team that developed the app, and it worked in a few hours. The second valuable feature is the information that comes out of it."
"Whenever there was a new CVE, Check Point CloudGuard WAF used to block them."
"The tool helps us to block IPs and applications."
"Its ability to adapt to our applications and ensure our security policies are followed is a big plus."
"The tool performs device health checkups and updates us. It helps us to be compliant with regulatory policies."
"SonarQube is good for checking and maintaining code quality."
"The solution's user interface is very user-friendly."
"It's enabled us to improve software quality and help us to disseminate best practices."
"The depth features I have found most valuable. You receive a quick comprehensive comparison overview regarding the current release and the last release and what type of depths dependency or duplication should be used. This is going to help you to make a more readable code and have more flexibility for the engineers to understand how things should work when they do not know."
"I follow Quality Gate's graduation model within organization, and it is extremely helpful for me to benchmark products."
"The solution can verify vulnerabilities, code smells, and hotspots. It makes the software more secure and it helps make a junior or novice developer sharper."
"Can tweak rules and feed them into our build pipelines."
"The reporting and the results are quick. It gets integrated within the pipeline well."
"One of the big problems we found in Check Point, in general, is the support."
"Deeper and more transparent integration between Cloud Application Security and analysis monitoring tools could be very valuable - although the solution currently offers integrations with third-party security tools."
"They need improved latency in the main window."
"There should be automation of threat detection, risk mitigation, and report generation."
"I advise proactive threat detection intelligence offline, which can also help monitor and ensure system checks and compliances are in place."
"It was costlier than other solutions."
"I would like to be able to integrate the theme of Artificial Intelligence to help review issues and to monitor and view the security issue while also suggesting and interpreting and additionally configuring solutions - basically, acting as an interpreter."
"The creation of security profiles for each application takes a lot of time."
"A little bit more emphasis on security and a bit more security scanning features would be nice."
"This is a well-rounded solution, however, some features could be made available on the free version. The price of the solution could be reduced."
"SonarQube is not development-centric like Snyk."
"The time it took for me to do the whole process was approximately two hours because I had to download, read the documentation, and do the configurations."
"Expression of common vulnerabilities and exposures is not always current."
"New plug-ins should be integrated into SonarCloud to give more flexibility to the product."
"In terms of what can be improved, the areas that need more attention in the solution are its architecture and development."
"For improvement, this solution could be offered on Docker and the cloud and the support for this solution could be improved. Customizing rules could also be made simpler."
Check Point CloudGuard WAF is ranked 11th in Application Security Tools with 30 reviews while SonarQube is ranked 1st in Application Security Tools with 110 reviews. Check Point CloudGuard WAF is rated 9.0, while SonarQube is rated 8.0. The top reviewer of Check Point CloudGuard WAF writes "Automation capabilities also help streamline security processes and smooths down API integration processes and detects API availability". On the other hand, the top reviewer of SonarQube writes "Easy to integrate and has a plug-in that supports both C and C++ languages". Check Point CloudGuard WAF is most compared with Checkmarx One, whereas SonarQube is most compared with Checkmarx One, SonarCloud, Coverity, Veracode and Snyk. See our Check Point CloudGuard WAF vs. SonarQube report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.