We performed a comparison between Check Point CloudGuard WAF and SonarQube based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution offers continuous security monitoring and alerting, which can help organizations detect and respond to security incidents in real time."
"We have not had any incidents. We could realize its benefits immediately. We watched and monitored the traffic, and it was amazing to see the results."
"After integrating AppSec with other applications, team members can easily work without fear of confidential information exposure."
"The solution's strongest point is that you can connect everything to it, giving you a full view of what's connected."
"The solution offers sophisticated security techniques with unique characteristics that can be particularly valuable for the financial sector, which is where we develop apps."
"On the endpoint side, the most valuable feature is undoubtedly the cloud-based management capability, along with the ransomware protection, despite not encountering any instances so far."
"The features I have found most valuable are the comprehensive threat prevention capabilities, automated policy management, and seamless integration with cloud environments."
"It offers good functionality of the application that is currently running."
"The overall quality of the indicator is good."
"The most valuable feature is the security hotspot feature that identifies where your code is prone to have security issues."
"The solution can verify vulnerabilities, code smells, and hotspots. It makes the software more secure and it helps make a junior or novice developer sharper."
"The most valuable features are the dashboard, the ability to drill down to the code, user-friendly, and the technical debt estimation."
"If you want to have your code scanned and timed then this is a good tool."
"If code coverage is a low number then that's of great value to me."
"SonarQube is a fantastic tool which saves us precious time."
"We have worked with the support from SonarQube and we have had good experiences."
"They need improved latency in the main window."
"I would like to be able to integrate the theme of Artificial Intelligence to help review issues and to monitor and view the security issue while also suggesting and interpreting and additionally configuring solutions - basically, acting as an interpreter."
"CloudGuard for Application Security, like the other Check Point applications, has been presenting major latency problems when entering their administrative portal."
"They should improve in the delivery of more detailed reports with more information."
"The trial version should be extended further so that QA test engineers can actually test the utilities in a real sense and can provide the maximum amount of feedback for enhancements."
"You need to know exactly the system. You cannot have someone running the system if they don't have the knowledge to do so."
"I feel like I need more clarity in understanding pricing for DDoS protection."
"I have faced issues with the tool's blocking aspects. It is hard to open or block web services due to the multitude of cloud centers. I have to do the process manually at times. We have a bug which is hard to solve."
"The solution could improve the management reports by making them easier to understand for the technical team that needs to review them."
"We're in the process of figuring out how to automate the workflow for QA audit controls on it. I think that's perhaps an area that we could use some buffing. We're a Kubernetes shop, so there are some things that aren't direct fits, which we're struggling with on the component Docker side. But nothing major."
"There isn't a very good enterprise report."
"I find it is light on the security side."
"We had some issues where the Quality Gate check sometimes gets stuck and it is unclear."
"A little bit more emphasis on security and a bit more security scanning features would be nice."
"For improvement, this solution could be offered on Docker and the cloud and the support for this solution could be improved. Customizing rules could also be made simpler."
"I would also like SonarQube to be able to write custom scanning rules. More documentation would be helpful as well because some of our guys were struggling with the customization script."
Check Point CloudGuard WAF is ranked 12th in Application Security Tools with 28 reviews while SonarQube is ranked 1st in Application Security Tools with 108 reviews. Check Point CloudGuard WAF is rated 8.8, while SonarQube is rated 8.0. The top reviewer of Check Point CloudGuard WAF writes "Automation capabilities also help streamline security processes and smooths down API integration processes and detects API availability". On the other hand, the top reviewer of SonarQube writes "Easy to integrate and has a plug-in that supports both C and C++ languages". Check Point CloudGuard WAF is most compared with Checkmarx One, whereas SonarQube is most compared with Checkmarx One, SonarCloud, Coverity, Veracode and Snyk. See our Check Point CloudGuard WAF vs. SonarQube report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.