We performed a comparison between NowSecure and OWASP Zap based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Testing (AST)."The most valuable feature is the ability to download an application without actually putting in the APK. It gives us an option to put the APK in if we want to but we can download it from the App Store and Play Store."
"The ZAP scan and code crawler are valuable features."
"It can be used effectively for internal auditing."
"Simple and easy to learn and master."
"The vulnerabilities that it finds, because the primary goal is to secure applications and websites."
"It's great that we can use it with Portswigger Burp."
"The stability of the solution is very good."
"Automatic updates and pull request analysis."
"You can run it against multiple targets."
"In this solution, there are two kinds of testing, static analysis, and dynamic analysis. There needs some improvement in testing with dynamic analysis because I have found it is not accurate"
"Zap could improve by providing better reports for security and recommendations for the vulnerabilities."
"The solution is somewhat unreliable because after we get the finding, we have to manually verify each of its findings to see whether it's a false positive or a true finding, and it takes time."
"Deployment is somewhat complicated."
"If there was an easier to understand exactly what has been checked and what has not been checked, it would make this solution better. We have to trust that it has checked all known vulnerabilities but it's a bit hard to see after the scanning."
"As security evolves, we would like DevOps built into it. As of now, Zap does not provide this."
"The product should allow users to customize the report based on their needs."
"The ability to search the internet for other use cases and to use the solution to make applications more secure should be addressed."
"There are too many false positives."
Earn 20 points
NowSecure is ranked 32nd in Application Security Testing (AST) while OWASP Zap is ranked 8th in Application Security Testing (AST) with 37 reviews. NowSecure is rated 7.0, while OWASP Zap is rated 7.6. The top reviewer of NowSecure writes "Scalable and reliable, but dynamic analysis needs improvement". On the other hand, the top reviewer of OWASP Zap writes "Great for automating and testing and has tightened our security ". NowSecure is most compared with Veracode, Data Theorem API Secure , GitLab, Acunetix and Checkmarx One, whereas OWASP Zap is most compared with SonarQube, Acunetix, PortSwigger Burp Suite Professional, Qualys Web Application Scanning and Veracode.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.