Logo of SOOS

SOOS

Website LinkedIn Twitter

Last updated on

Company health

Web traffic
40% decrease in the last quarter
Financing
January 2023 - $6M

Ratings

G2
4.6/5
(40)

SOOS description

SOOS is an all-in-one platform designed to help you manage your application security. It offers tools to find vulnerabilities in your software and open-source code, track licenses, and generate reports called SBOMs. SOOS can be integrated into your existing development processes and helps ensure your applications are secure throughout their lifecycle.

Who is SOOS best for

SOOS is an affordable, all-in-one application security platform that helps manage vulnerabilities, licenses, and SBOMs. Users love its easy setup, user-friendly interface, and excellent customer support. However, some find the over-inclusion of packages and configuration for accurate results challenging. SOOS offers various integrations and a free Community Edition, making it a good option for budget-conscious development teams.

  • Best for small to medium-sized businesses.

  • Ideal for software development companies.

SOOS features

Type in the name of the feature or in your own words tell us what you need
Supported

SOOS supports web application scanning with its DAST tool.
Supported

SOOS supports API scanning for vulnerabilities using OpenAPI, SOAP, or GraphQL definitions.
Supported

SOOS supports license compliance analysis for open-source components.
Supported

SOOS can generate SBOMs, including open-source components and dependencies.
Qualities

We evaluate the sentiment that users express about non-functional aspects of the software

Customer Service

Rather positive
+0.5

Ease of Use

Rather positive
+0.64

Reliability and Performance

Strongly positive
+1

Ease of Implementation

Strongly positive
+0.75

SOOS reviews

We've summarised 39 SOOS reviews (SOOS G2 reviews) and summarised the main points below.

Pros of SOOS
  • Easy setup and integration with various platforms (Jira, GitHub, Azure DevOps).
  • User-friendly interface and dashboard.
  • Affordable pricing, especially compared to competitors.
  • Excellent and responsive customer support.
  • Helpful vulnerability and license insights, including remediation tips.
Cons of SOOS
  • Over-inclusion of packages, leading to false positives for items not in the BOM.
  • Difficult to configure for accurate results.
  • Lacks CSV export of vulnerability data for reporting.
  • Unintuitive features, such as handling unrecognized packages.
  • Limited Bitbucket support, especially for automated PR requests.
  • DAST features not as robust as some competitors.
  • Azure DevOps integration not directly in the pipeline.

SOOS pricing

The commentary is based on 5 reviews from SOOS G2 reviews.

SOOS is praised for its affordability and value. Users frequently highlight its "cheap" price and excellent features, making it a cost-effective solution for vulnerability management, SCA, and even DAST needs. The accessible pricing makes it a strong competitor in the market.

See the SOOS pricing page.

  • SOOS has a free plan.

  • SOOS has a free trial.

Community Edition

0 USD

All key features of SOOS SCA. Manage your project’s SBOM. Integrates with GitHub.

SOOS Core

90 USD

Unlimited scans. Patented SCA engine. Add-on DAST, SBOM, SAST, and Containers. 18+ languages supported. Unified dashboard with RBAC. CI/CD integration (vendor agnostic). Full transitive dependency analysis. Global inventory search. Suggested fixes. Issue manager support. Auto-create & auto-close issues. Governance for OSS licenses. “In the News” notifications. Standard SSO. Award winning support.

SOOS Plus

null USD

Includes SOOS Core and custom add-ons: SBOM management and monitoring. Monitor 3rd party SBOMs at scale. Calculate fixes for 3rd party inventory. Multiple organization support. Package & issue search across all tenants. Global configuration management. Custom SSO. API Access. Expanded support options.

SOOS alternatives

  • Logo of Microsoft Defender for Cloud
    Microsoft Defender for Cloud
    Better for cloud security posture management across multiple cloud platforms and hybrid environments. Focuses on infrastructure, workload, and storage protection, not application security. More established and has more momentum.
    Read more
  • Logo of rezilion
    rezilion
    Focuses on identifying and addressing exploitable vulnerabilities, prioritizing efficiency. Has more website traffic momentum as a SOOS competitor and alternative.
    Read more
  • Logo of Wiz
    Wiz
    Better for larger enterprises. More cloud-focused. Has more momentum.
    Read more
  • Logo of HCL AppScan
    HCL AppScan
    More comprehensive security testing capabilities. Consider HCL AppScan if you need API scanning. HCL AppScan has more momentum in terms of website traffic and employee growth. However, keep in mind that users report it as expensive.
    Read more
  • Logo of GitLab
    GitLab
    Better fit for organizations focused on DevOps and seeking an all-in-one platform for the entire software development lifecycle. A GitLab alternative for those struggling with its complexity and occasional performance issues.
    Read more
  • Logo of Strike Graph
    Strike Graph
    Better for compliance and obtaining certifications like SOC 2, ISO 27001, and HIPAA. Focuses on Healthcare, Legal, Professional Services and Software/IT.
    Read more

SOOS FAQ

  • What is SOOS and what does SOOS do?

    SOOS is an affordable, all-in-one application security platform specializing in open-source software and compliance. It helps developers find vulnerabilities, track licenses, and generate SBOMs. SOOS integrates with existing development processes to ensure application security throughout the software lifecycle.

  • How does SOOS integrate with other tools?

    SOOS integrates with various development tools, including Jira, GitHub, and Azure DevOps, to embed security directly into your workflow. It supports API scanning using OpenAPI, SOAP, or GraphQL definitions and offers integrations for web application scanning.

  • What the main competitors of SOOS?

    Alternatives to SOOS include Microsoft Defender for Cloud, Rezilion, Wiz, Jit, HCL AppScan, and GitLab. These competitors offer similar features such as vulnerability scanning, SBOM generation, and license compliance analysis, catering to various needs and budgets.

  • Is SOOS legit?

    SOOS is a legitimate and safe platform. User reviews praise its ease of use, affordability, and helpful customer support. However, some users mention issues with over-inclusive scanning and complex configuration. Consider these factors when evaluating if SOOS is right for your security needs.

  • How much does SOOS cost?

    SOOS offers a free Community Edition. SOOS Core is $90, providing unlimited scans and other features for developers. SOOS Plus pricing is not publicly available. Contact SOOS for Plus plan pricing and to determine which plan best suits your needs.

  • Is SOOS customer service good?

    SOOS's customer support receives positive feedback, with users highlighting its responsiveness and helpfulness in resolving issues and addressing feedback. Users mention the support team's quick replies and engagement during onboarding. One user even stated they've never had such a positive experience with security company support.

Reviewed by

MK
Michal Kaczor
CEO at Gralio

Michal has worked at startups for many years and writes about topics relating to software selection and IT management. As a former consultant for Bain, a business advisory company, he also knows how to understand needs of any business and find solutions to its problems.

TT
Tymon Terlikiewicz
CTO at Gralio

Tymon is a seasoned CTO who loves finding the perfect tools for any task. He recently headed up the tech department at Batmaid, a well-known Swiss company, where he managed about 60 software purchases, including CX, HR, Payroll, Marketing automation and various developer tools.