We performed a comparison between OWASP Zap and Synopsys API Security Testing based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Testing (AST)."The ZAP scan and code crawler are valuable features."
"The interface is easy to use."
"The scalability of this product is very good."
"Automatic updates and pull request analysis."
"Fuzzer and Java APIs help a lot with our custom needs."
"The OWASP's tool is free of cost, which gives it a great advantage, especially for smaller companies to make use of the tool."
"We use the solution for security testing."
"The vulnerabilities that it finds, because the primary goal is to secure applications and websites."
"The most valuable features of Synopsys API Security Testing are the metrics, results, and threat vectors that it shares."
"The technical support team must be proactive."
"OWASP Zap needs to extend to mobile application testing."
"The port scanner is a little too slow."
"Too many false positives; test reports could be improved."
"It would be beneficial to enhance the algorithm to provide better summaries of automatic scanning results."
"I'd like to see a kind of feature where we can just track what our last vulnerability was and how it has improved or not. More reports that can have some kind of base-lining, I think that would be a good feature too. I'm not sure whether it can be achieved and implement but I think that would really help."
"Reporting format has no output, is cluttered and very long."
"I prefer Burp Suite to SWASP Zap because of the extensive coverage it offers."
"The solution required us to use our team and we spoke to Synopsys API Security Testing's support to do the implementation. We use two people from our team for the implementation. and one person for maintenance."
OWASP Zap is ranked 8th in Application Security Testing (AST) with 37 reviews while Synopsys API Security Testing is ranked 29th in Application Security Testing (AST) with 1 review. OWASP Zap is rated 7.6, while Synopsys API Security Testing is rated 7.0. The top reviewer of OWASP Zap writes "Great for automating and testing and has tightened our security ". On the other hand, the top reviewer of Synopsys API Security Testing writes "Useful threat vectors, beneficial results, but implementation needed support". OWASP Zap is most compared with SonarQube, Acunetix, PortSwigger Burp Suite Professional, Qualys Web Application Scanning and Veracode, whereas Synopsys API Security Testing is most compared with Seeker, Fortify WebInspect and Acunetix.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.