We performed a comparison between HCL AppScan and Parasoft SOAtest based on real PeerSpot user reviews.
Find out in this report how the two Application Security Testing (AST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."This solution saves us time due to the low number of false positives detected."
"There's extensive functionality with custom rules and a custom knowledge base."
"It has certainly helped us find vulnerabilities in our software, so this is priceless in the end."
"The static scans are good, and the SaaS as well."
"The solution offers services in a few specific development languages."
"This is a stable solution."
"It highlights, with several grades of severity, the types of vulnerabilities, so we can focus on the most severe security vulnerabilities in the code."
"It comes with all of the templates that we need. For example, we are a company that is regulated by PCI. In order to be PCI compliant, we have a lot of checks and procedures to which we have to comply."
"If you want something that’s not provided out of the box, then you can write it yourself and integrate it with SOAtest."
"Automatic testing is the most valuable feature."
"We do a lot of web services testing and REST services testing. That is the focus of this product."
"Generating new messages, based on the existing .EDN and .XML messages, is a crucial part or the testing project that I’m currently in."
"The testing time is shortened because we generate test data automatically with SOAtest."
"We can automate our scenarios in a data driven format, which shows there is no rework on scripts. We only need to update the test data and run for a number of scenarios."
"Technical support is helpful."
"They have a feature where they can record traffic and create tests on the report traffic."
"There is room for improvement in the pricing model."
"It has crashed at times."
"One thing which I think can be improved is the CI/CD Integration"
"I would like to see the roadmap for this product. We are still waiting to see it as we have only so many resources."
"It's a little bit basic when you talk about the Web Services. If AppScan improved its maturity on Web Services testing, that would be good."
"HCL AppScan needs to improve security."
"Sometimes it doesn't work so well."
"We would like to integrate with some of the other reporting tools that we're planning to use in the future."
"From an automation point of view, it should have better clarity and be more user friendly."
"UI testing should be more in-depth."
"Parasoft SOAtest has an internal refresh function where you can refresh the software to show the changes you’ve made in your projects. Unfortunately this function does not work properly, because it often does not show the changes after you’ve hit te refresh button a few times."
"Reports could be customized and more descriptive according to the user's or company's requirements."
"During the process of working with SOAtest and building test cases, the .TST files will grow. A negative side effect is that saving your changes takes more time."
"Compatibility with HTTP 1.1 and TLS 1.2 needs to be improved."
"The summary reports could be improved."
"The product is very slow to start up, and that is a bit of a problem, actually."
HCL AppScan is ranked 12th in Application Security Testing (AST) with 39 reviews while Parasoft SOAtest is ranked 28th in Application Security Testing (AST) with 30 reviews. HCL AppScan is rated 7.6, while Parasoft SOAtest is rated 8.2. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of Parasoft SOAtest writes "Reliable with a good interface but uses too much memory". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, Checkmarx One and PortSwigger Burp Suite Professional, whereas Parasoft SOAtest is most compared with Postman, SonarQube, Coverity, Klocwork and Polyspace Code Prover. See our HCL AppScan vs. Parasoft SOAtest report.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.