We performed a comparison between Coverity and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Testing (AST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Coverity is easy to set up and has a less lengthy process to find vulnerabilities."
"The solution has improved our code quality and security very well."
"The most valuable feature is the integration with Jenkins."
"The app analysis is the most valuable feature as I know other solutions don't have that."
"The features I find most valuable is that our entire company can publish the analysis results into our central space."
"It provides reports about a lot of potential defects."
"It is a scalable solution."
"The security analysis features are the most valuable features of this solution."
"The simplicity of exporting reports and the simplicity and clarity of the reports included with the product are good."
"The most valuable feature of Qualys Web Application Scanning is the effective scanning that can be done."
"It is a good product for website penetration testing to detect vulnerabilities."
"I have found the detection of vulnerabilities tool thorough with good results and the graphical display output to be wonderful and full of colors. It allows many types of outputs, such as bar and chart previews."
"It combines both web application vulnerability management and internal vulnerability management on one platform and dashboard. Usually, you have to purchase separate tools."
"Qualys' process of updating signatures is something we really appreciate, and it's way ahead of its industry peers."
"The most valuable feature is that we are able to scan the services and put credentials like a user ID password. We can verify the vulnerability level."
"Key features include: Cloud-based, so the installation is not so tedious. Easily deployed. Highly scalable. Comprehensive reporting."
"We use GitHub and Gitflow, and Coverity does not fit with Gitflow. I have to create a screen for our branches, and it's a pain for developers. It has been difficult to integrate Coverity with our system."
"SCM integration is very poor in Coverity."
"The product lacks sufficient customization options."
"The solution's user interface and quality gate could be improved."
"We'd like it to be faster."
"There should be additional IDE support."
"Coverity is far from perfection, and I'm not 100 percent sure it's helping me find what I need to find in my role. We need exactly what we are looking for, i.e. security errors and vulnerabilities. It doesn't seem to be reporting while we are changing our code."
"Its price can be improved. Price is always an issue with Synopsys."
"Deployment can be complicated."
"The pricing does not seem to be competitive."
"We procured around 110 licenses for Web Application Scanning, but we have issues running concurrent scans. I don't currently have the option to trigger scans for all 100-plus websites. The default limit is around 10 conference scans. It's not very scalable, to be honest, because of the limitation that they put on concurrent scans."
"There's a distinction between internal and external scanning processes that could be streamlined. Currently, for internal scanning, specific configurations and scanner appliances need to be deployed within the network, which differs from the simpler setup for external scans. This dual process complicates the setup for comprehensive scanning coverage."
"The product should allow users to upload their payloads."
"Qualys Web Application Scanning is very complex to use, and its graphical interface is not very user-friendly."
"Sometimes the response time is low because the handshake fails, and then you have to re-login and start again."
"The virus code updates are not frequent enough."
More Qualys Web Application Scanning Pricing and Cost Advice →
Coverity is ranked 4th in Application Security Testing (AST) with 33 reviews while Qualys Web Application Scanning is ranked 14th in Application Security Testing (AST) with 31 reviews. Coverity is rated 7.8, while Qualys Web Application Scanning is rated 7.8. The top reviewer of Coverity writes "Best SAST tool to check software quality issues". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". Coverity is most compared with SonarQube, Klocwork, Fortify on Demand, Checkmarx One and Veracode, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and Fortify WebInspect. See our Coverity vs. Qualys Web Application Scanning report.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.