We performed a comparison between Fortify WebInspect and Parasoft SOAtest based on real PeerSpot user reviews.
Find out what your peers are saying about HCLTech, OpenText, Rapid7 and others in Dynamic Application Security Testing (DAST)."It's a well-known platform for doing dynamic application scanning."
"I've found the centralized dashboard the most valuable. For the management, it helps a lot to have abilities at the central level."
"There are lots of small settings and tools, like an HTTP editor, that are very useful."
"Technical support has been good."
"The most valuable feature is the static analysis."
"The solution is able to detect a wide range of vulnerabilities. It's better at it than other products."
"Fortify WebInspect is a scalable solution, it is good for a lot of applications."
"Reporting, centralized dashboard, and bird's eye view of all vulnerabilities are the most valuable features."
"Generating new messages, based on the existing .EDN and .XML messages, is a crucial part or the testing project that I’m currently in."
"Technical support is helpful."
"Good write and read files which save execution inputs and outputs and can be stored locally."
"If you want something that’s not provided out of the box, then you can write it yourself and integrate it with SOAtest."
"The testing time is shortened because we generate test data automatically with SOAtest."
"The solution is scalable."
"Parasoft SOAtest has improved the quality of our automated web services, which can be easily implemented through service chaining and service virtualization."
"We can automate our scenarios in a data driven format, which shows there is no rework on scripts. We only need to update the test data and run for a number of scenarios."
"We have had a problem with authentification."
"Not sufficiently compatible with some of our systems."
"A localized version, for example, in Korean would be a big improvement to this solution."
"Lately, we've seen more false negatives."
"I'm not sure licensing, but on the pricing, it's a bit costly. It's a bit overpriced. Though it is an enterprise tool, there are other tools also with similar functionalities."
"Fortify WebInspect's shortcoming stems from the fact that it is a very expensive product in Korea, which makes it difficult for its potential customers to introduce the product in their IT environment."
"It requires improvement in terms of scanning. The application scan heavily utilizes the resources of an on-premise server. 32 GB RAM is very high for an enterprise web application."
"Fortify WebInspect could improve user-friendliness. Additionally, it is very bulky to use."
"The summary reports could be improved."
"Reporting facilities can be better."
"Reports could be customized and more descriptive according to the user's or company's requirements."
"Tuning the tool takes time because it gives quite a long list of warnings."
"Enabling/disabling an optional element of an XML request is only possible if a data source (e.g., Excel sheet) is connected to the test. Otherwise, the option is not available at all in the drop-down menu."
"During the process of working with SOAtest and building test cases, the .TST files will grow. A negative side effect is that saving your changes takes more time."
"The feedback that we received from the DevOps of our organization was that the tool was a little heavy from the transformation perspective."
"From an automation point of view, it should have better clarity and be more user friendly."
Fortify WebInspect is ranked 2nd in Dynamic Application Security Testing (DAST) with 17 reviews while Parasoft SOAtest is ranked 23rd in Functional Testing Tools with 30 reviews. Fortify WebInspect is rated 7.0, while Parasoft SOAtest is rated 8.2. The top reviewer of Fortify WebInspect writes "A powerful tool catering to multiple use cases that provides reasonably good technical support". On the other hand, the top reviewer of Parasoft SOAtest writes "Reliable with a good interface but uses too much memory". Fortify WebInspect is most compared with PortSwigger Burp Suite Professional, Fortify on Demand, Acunetix, OWASP Zap and HCL AppScan, whereas Parasoft SOAtest is most compared with Postman, SonarQube, Coverity, Polyspace Code Prover and Klocwork.
We monitor all Dynamic Application Security Testing (DAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.