We performed a comparison between NowSecure and OWASP Zap based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST)."The most valuable feature is the ability to download an application without actually putting in the APK. It gives us an option to put the APK in if we want to but we can download it from the App Store and Play Store."
"Automatic updates and pull request analysis."
"The scalability of this product is very good."
"The solution is scalable."
"It scans while you navigate, then you can save the requests performed and work with them later."
"The solution has tightened our security."
"We use the solution for security testing."
"The OWASP's tool is free of cost, which gives it a great advantage, especially for smaller companies to make use of the tool."
"The product helps users to scan and fix vulnerabilities in the pipeline."
"In this solution, there are two kinds of testing, static analysis, and dynamic analysis. There needs some improvement in testing with dynamic analysis because I have found it is not accurate"
"I would like to see a version of “repeater” within OWASP ZAP, a tool capable of sending from one to 1000 of the same requests, but with preselected modified fields, changing from a predetermined word list, or manually created."
"Lacks resources where users can internally access a learning module from the tool."
"The forced browse has been incorporated into the program and it is resource-intensive."
"Zap could improve by providing better reports for security and recommendations for the vulnerabilities."
"It would be ideal if I could try some pre-built deployment scenarios so that I don't have to worry about whether the configuration sector team is doing it right or wrong. That would be very helpful."
"Sometimes, we get some false positives."
"The technical support team must be proactive."
"It would be nice to have a solid SQL injection engine built into Zap."
Earn 20 points
NowSecure is ranked 33rd in Static Application Security Testing (SAST) while OWASP Zap is ranked 8th in Static Application Security Testing (SAST) with 37 reviews. NowSecure is rated 7.0, while OWASP Zap is rated 7.6. The top reviewer of NowSecure writes "Scalable and reliable, but dynamic analysis needs improvement". On the other hand, the top reviewer of OWASP Zap writes "Great for automating and testing and has tightened our security ". NowSecure is most compared with Veracode, Data Theorem API Secure , Acunetix, Checkmarx One and GitLab, whereas OWASP Zap is most compared with SonarQube, Acunetix, Qualys Web Application Scanning, Veracode and PortSwigger Burp Suite Professional.
See our list of best Static Application Security Testing (SAST) vendors.
We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.