Checkmarx

Checkmarx

Checkmarx

22 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Checkmarx	Score 8.8 out of 10	N/A	Checkmarx, an Israeli headquartered company with US offices, provides a suite of application security software delivered via the Checkmarx Software Security Platform. Individual modules and capabilities include Checkmarx Static Application Security Testing, Checkmarx Software Composition Analysis, Checkmarx Interactive Application Security Testing (CxIAST)	N/A

Pricing

Checkmarx

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
Checkmarx
Free Trial
No
Free/Freemium Version
No
Premium Consulting/Integration Services
No

Entry-level Setup Fee

No setup fee

Additional Details

—

More Pricing Information

Community Pulse
	Checkmarx
Considered Both Products	Checkmarx Verified User Engineer Chose Checkmarx Checkmarx is easier to integrate with development tools and gives quick feedback during coding, which is helpful for developers. Veracode is more focused on scanning and reporting for compliance, but it’s more complex to set up. We chose Checkmarx because it fits better into … Incentivized Helpful? Verified User Engineer Chose Checkmarx We actually use Checkmarx along with the other tools. However, the reason we chose Checkmarx is its wide support for languages and useful fix recommendations. The flowcharts help better understand the data flow and give a clear picture of what needs to be fixed and how. Also, … Incentivized Helpful?

Best Alternatives
	Checkmarx
Small Businesses	GitLab Score 8.6 out of 10
Medium-sized Companies	Veracode Score 9.2 out of 10
Enterprises	Veracode Score 9.2 out of 10
All Alternatives	View all alternatives

User Ratings
	Checkmarx
Likelihood to Recommend	8.5 (5 ratings)
Usability	7.5 (2 ratings)

User Testimonials
	Checkmarx
Likelihood to Recommend	Checkmarx If you are going with SAST process or want to improve overall security posture then go for it like integrating it with post deployment steps. If you are more concerned about proactive controls better choose other options such as pee-commit hooks and CI security. Also choose other tools for DAST and API scans. Incentivized Abhineet Sagar DevSecOps Engineer II Read full review
Pros	Checkmarx Detects security vulnerabilities in source code with accuracy and detail. Integrates seamlessly with CI/CD pipelines, IDEs, and repositories. Provides clear reports and actionable fix recommendations for developers. Incentivized Verified User Anonymous Read full review
Cons	Checkmarx Scan duration False positives Integration with other tools like Jenkins comes with some inconveniences. Incentivized Verified User Anonymous Read full review
Usability	Checkmarx Their API based customizations which I leveraged to create an ASPM package, which is developer friendly and can extend above the dashboard features, other ones are UI which is great and feels clutter free. Menu and navigation is also good so as support. Only drawback is sometimes scan takes longer which I feel so can be reduced Incentivized Abhineet Sagar DevSecOps Engineer II Read full review
Alternatives Considered	Checkmarx Checkmarx is easier to integrate with development tools and gives quick feedback during coding, which is helpful for developers. Veracode is more focused on scanning and reporting for compliance, but it’s more complex to set up. We chose Checkmarx because it fits better into our development process, offering faster scans and more useful suggestions for fixing problems Incentivized Verified User Anonymous Read full review
Return on Investment	Checkmarx Improved ability to provide high level of IA confidence Improved confidence in application-level security Incentivized Verified User Anonymous Read full review
ScreenShots