HCL AppScan vs Parasoft SOAtest comparison

Cancel
You must select at least 2 products to compare!
HCLTech Logo
5,763 views|4,455 comparisons
Parasoft Logo
1,170 views|807 comparisons
Comparison Buyer's Guide
Executive Summary

We performed a comparison between HCL AppScan and Parasoft SOAtest based on real PeerSpot user reviews.

Find out in this report how the two Application Security Testing (AST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed HCL AppScan vs. Parasoft SOAtest Report (Updated: March 2024).
765,234 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"We are now deploying less defects to production.""The solution is easy to use.""The HCL AppScan turnaround time for Burp Suite or any new feature request is pretty good, and that is why we are sticking with the HCL.""This is a stable solution.""The static scans are good, and the SaaS as well.""I like the recording feature.""This solution saves us time due to the low number of false positives detected.""We use it as a security testing application."

More HCL AppScan Pros →

"We have seen a return on investment.""If you want something that’s not provided out of the box, then you can write it yourself and integrate it with SOAtest.""We do a lot of web services testing and REST services testing. That is the focus of this product.""Every imaginable source in the entire world of information technology can be accessed and used.""They have a feature where they can record traffic and create tests on the report traffic.""Generating new messages, based on the existing .EDN and .XML messages, is a crucial part or the testing project that I’m currently in.""The testing time is shortened because we generate test data automatically with SOAtest.""Technical support is helpful."

More Parasoft SOAtest Pros →

Cons
"The dashboard, for AppScan or the Fortified fast tool, which we use needs to be improved.""One thing which I think can be improved is the CI/CD Integration""They could add a software component analysis tool.""We have experienced challenges when trying to integrate this solution with other products. When you compare it with the other SecOps products, the quality of the output is too low. It is not a new-age product. It is very outdated.""The penetration testing feature should be included.""We would like to see a check in the specific vulnerabilities in mobile applications or rooted devices, such as jailbreaking devices.""They have to improve support.""IBM Security AppScan needs to add performance optimization for quickly scanning the target web applications."

More HCL AppScan Cons →

"Reports could be customized and more descriptive according to the user's or company's requirements.""UI testing should be more in-depth.""During the process of working with SOAtest and building test cases, the .TST files will grow. A negative side effect is that saving your changes takes more time.""The feedback that we received from the DevOps of our organization was that the tool was a little heavy from the transformation perspective.""The product is very slow to start up, and that is a bit of a problem, actually.""Compatibility with HTTP 1.1 and TLS 1.2 needs to be improved.""Parasoft SOAtest has an internal refresh function where you can refresh the software to show the changes you’ve made in your projects. Unfortunately this function does not work properly, because it often does not show the changes after you’ve hit te refresh button a few times.""Enabling/disabling an optional element of an XML request is only possible if a data source (e.g., Excel sheet) is connected to the test. Otherwise, the option is not available at all in the drop-down menu."

More Parasoft SOAtest Cons →

Pricing and Cost Advice
  • "AppScan is a little bit expensive. IBM needs to work a little bit on the pricing model, decreasing the license cost."
  • "With the features, that they offer, and the support, they offer, AppScan pricing is on a higher level."
  • "Pricing was the main reason that we went ahead with this solution as they were the lowest in the market."
  • "HCL AppScan is expensive."
  • "I would rate the product's pricing a nine out of ten. The product's pricing is expensive compared to the features that they offer."
  • "The price is very expensive."
  • "The solution is moderately priced."
  • "The price of HCL AppScan is okay, in my opinion. You just buy HCL AppScan and don't pay anything anymore, meaning it is just a one-time purchase."
  • More HCL AppScan Pricing and Cost Advice →

  • "From what I understand, Parasoft SOAtest isn't the cheapest option. But it has a lot to offer."
  • "The cost of Parasoft seems to have gotten higher with a projection that wasn't really stipulated for our company. They've done a tremendous job at negotiating those deals."
  • "I think it would be a great step to decrease the price of the licenses."
  • "It is an expensive product, so think carefully about whether it fits your purposes and is the right tool for you."
  • "We are completed satisfied with Parasoft SOAtest. The ROI is more than 95%."
  • "The license price is a little expensive, but it provides a better outcome in terms of the end-to-end automation process."
  • "They do have a confusing licensing structure."
  • "The price is around $5,000 USD."
  • More Parasoft SOAtest Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Application Security Testing (AST) solutions are best for your needs.
    765,234 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:The product has valuable features for static and dynamic testing.
    Top Answer:HCL AppScan generates false results. Sometimes, it incorrectly identifies requests as vulnerable when they are not vulnerable. In the ADSL feature managed, the primary objective is to identify… more »
    Top Answer:HCL AppScan efficiently scans through the website and identifies vulnerabilities for AWS. It is reducing tools day by day, making it more efficient.
    Top Answer:Since the solution has both command line and automation options, it generates good reports.
    Top Answer:Tuning the tool takes time because it gives quite a long list of warnings. Going through that is a challenge. It only happens in the initial stage when we are setting up the tool, but it can be… more »
    Ranking
    Views
    5,763
    Comparisons
    4,455
    Reviews
    17
    Average Words per Review
    339
    Rating
    7.2
    Views
    1,170
    Comparisons
    807
    Reviews
    4
    Average Words per Review
    440
    Rating
    7.0
    Comparisons
    Also Known As
    IBM Security AppScan, Rational AppScan, AppScan
    SOAtest
    Learn More
    Parasoft
    Video Not Available
    Interactive Demo
    HCLTech
    Demo Not Available
    Overview

    IBM Security AppScan enhances web application security and mobile application security, improves application security program management and strengthens regulatory compliance. By scanning your web and mobile applications prior to deployment, AppScan enables you to identify security vulnerabilities and generate reports and fix recommendations.

    Parasoft SOAtest delivers fully integrated API and web service testing capabilities that automate end-to-end functional API testing. Streamline automated testing with advanced codeless test creation for applications with multiple interfaces (REST & SOAP APIs, microservices, databases, and more).

    SOAtest reduces the risk of security breaches and performance outages by transforming functional testing artifacts into security and load equivalents. Such reuse, along with continuous monitoring of APIs for change, allows faster and more efficient testing.

    Sample Customers
    Essex Technology Group Inc., Cisco, West Virginia University, APIS IT
    Charter Communications, Sabre, Caesars Entertainment, Charles Schwab, ING, Intel, Northbridge Financial, Capital Services, WoodmenLife
    Top Industries
    REVIEWERS
    Government16%
    Transportation Company16%
    Comms Service Provider11%
    Financial Services Firm11%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Financial Services Firm14%
    Government10%
    Manufacturing Company8%
    REVIEWERS
    Financial Services Firm43%
    Government14%
    Manufacturing Company7%
    Energy/Utilities Company7%
    VISITORS READING REVIEWS
    Financial Services Firm32%
    Manufacturing Company14%
    Computer Software Company13%
    Government4%
    Company Size
    REVIEWERS
    Small Business25%
    Midsize Enterprise11%
    Large Enterprise64%
    VISITORS READING REVIEWS
    Small Business17%
    Midsize Enterprise13%
    Large Enterprise70%
    REVIEWERS
    Small Business22%
    Midsize Enterprise9%
    Large Enterprise69%
    VISITORS READING REVIEWS
    Small Business15%
    Midsize Enterprise9%
    Large Enterprise75%
    Buyer's Guide
    HCL AppScan vs. Parasoft SOAtest
    March 2024
    Find out what your peers are saying about HCL AppScan vs. Parasoft SOAtest and other solutions. Updated: March 2024.
    765,234 professionals have used our research since 2012.

    HCL AppScan is ranked 12th in Application Security Testing (AST) with 39 reviews while Parasoft SOAtest is ranked 28th in Application Security Testing (AST) with 30 reviews. HCL AppScan is rated 7.6, while Parasoft SOAtest is rated 8.2. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of Parasoft SOAtest writes "Reliable with a good interface but uses too much memory". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, OWASP Zap and PortSwigger Burp Suite Professional, whereas Parasoft SOAtest is most compared with Postman, SonarQube, Coverity, Polyspace Code Prover and Tricentis Tosca. See our HCL AppScan vs. Parasoft SOAtest report.

    See our list of best Application Security Testing (AST) vendors.

    We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.