Checkmarx vs. Mobile Security Framework (MobSF)

Checkmarx

20 Reviews and Ratings

Mobile Security Framework (MobSF)

Mobile Security Framework (MobSF)

1 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Checkmarx	Score 8.2 out of 10	N/A	Checkmarx, an Israeli headquartered company with US offices, provides a suite of application security software delivered via the Checkmarx Software Security Platform. Individual modules and capabilities include Checkmarx Static Application Security Testing, Checkmarx Software Composition Analysis, Checkmarx Interactive Application Security Testing (CxIAST)	N/A
Mobile Security Framework (MobSF)	Score 8.0 out of 10	N/A	Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. MobSF support mobile app binaries (APK, IPA & APPX) along with zipped source code and provides REST APIs for integration with CI/CD or DevSecOps pipeline. The Dynamic Analyzer helps you to perform runtime security assessment and interactive instrumented testing.	N/A

Pricing

Checkmarx

Mobile Security Framework (MobSF)

Editions & Modules

No answers on this topic

No answers on this topic

Offerings

Pricing Offerings
Checkmarx	Mobile Security Framework (MobSF)
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

No setup fee

Additional Details

—

—

More Pricing Information

Community Pulse
	Checkmarx	Mobile Security Framework (MobSF)
Top Pros	Pro False positive Pro Data flow Pro Number of languages	No answers on this topic
Top Cons	Minus False positives Minus Additional plugins Minus Hard to integrate	No answers on this topic

Best Alternatives
	Checkmarx	Mobile Security Framework (MobSF)
Small Businesses	GitLab Score 8.9 out of 10	No answers on this topic
Medium-sized Companies	GitLab Score 8.9 out of 10	Veracode Score 8.5 out of 10
Enterprises	GitLab Score 8.9 out of 10	Veracode Score 8.5 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Checkmarx	Mobile Security Framework (MobSF)
Likelihood to Recommend	7.0 (3 ratings)	8.0 (1 ratings)

User Testimonials
	Checkmarx	Mobile Security Framework (MobSF)
Likelihood to Recommend	Checkmarx Chechmarx is really suited for finding wide range of security risks. It although identifies false positives which can be confusing at times. It can do better in terms of scan duration. They are better alternate competitors in the market who can do equally good or even better. It all depends on the scope of the problem you want to address Incentivized Verified User Anonymous Read full review	Open Source MobSF is good for checking for vulnerabilities in your app. It will also give suggestions on how to address them. Another thing is can do is find code that may be incorrect. It is not, however, a substitute for a system that actually checks your code for proper use. It really is concentrated on security. Incentivized FD Francis de Castro Business User Engagement Manager Read full review
Pros	Checkmarx Reporting Language support Fix recommendations Incentivized Verified User Anonymous Read full review	Open Source Scan for vulnerabilities Scan for bad coding Give suggestions on fixes for security issues Incentivized FD Francis de Castro Business User Engagement Manager Read full review
Cons	Checkmarx Lots of false positives Hard to integrate with CI Incentivized Verified User Anonymous Read full review	Open Source The UI is not that user friendly The documentation could be easier to understand An easier method of deploying MobSF would be appreciated Incentivized FD Francis de Castro Business User Engagement Manager Read full review
Alternatives Considered	Checkmarx We actually use Checkmarx along with the other tools. However, the reason we chose Checkmarx is its wide support for languages and useful fix recommendations. The flowcharts help better understand the data flow and give a clear picture of what needs to be fixed and how. Also, developers can make a note of what should be avoided in the future. Overall, it's a great tool and would be a good investment to make. Incentivized Verified User Anonymous Read full review	Open Source In my opinion, MobSF is not as comprehensive as SonarQube. Both, however, do a very good job in scanning your code for vulnerabilities. Both do roughly the same things. The reports of SonarQube are more detailed though. The advantage that MobSF has over SonarQube is the price. One is free while the other is a paid solution (with several tiers). However, we use them together to get a more comprehensive scan. Incentivized FD Francis de Castro Business User Engagement Manager Read full review
Return on Investment	Checkmarx Improved ability to provide high level of IA confidence Improved confidence in application-level security Incentivized Verified User Anonymous Read full review	Open Source It has allowed our apps to pass a security vetting requirement of a third party to deploy our app We can see where we can improve on the development of our app The deployment can take a while, especially with teams not familiar with the software Incentivized FD Francis de Castro Business User Engagement Manager Read full review
ScreenShots