SAST tool review
February 06, 2023

SAST tool review

Anonymous | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User

Modules Used

  • Checkmarx Static Application Security Testing (CxSAST)

Overall Satisfaction with Checkmarx

Checkmarx is used in our organization to scan code base or applications and perform security analysis. The SAST tool of the Checkmarx is used for scanning the code and finding the security defects. It addresses the security concerns and eliminates manual security review. The scope includes 75% of the organization's code base.
  • Recommendations to fix the security findings
  • Reports
  • Finds wide range of security risks
  • Time taken for scan
  • False positives
  • Integrations with other systems
  • SAST scanning tool
  • Reporting
  • Recommendations to fix security defects
  • Reduced manual effort to analyse and fix the code
  • Can easily summarize findings through reports

Do you think Checkmarx delivers good value for the price?

Not sure

Are you happy with Checkmarx's feature set?

Yes

Did Checkmarx live up to sales and marketing promises?

I wasn't involved with the selection/purchase process

Did implementation of Checkmarx go as expected?

I wasn't involved with the implementation phase

Would you buy Checkmarx again?

Yes

Chechmarx is really suited for finding wide range of security risks. It although identifies false positives which can be confusing at times. It can do better in terms of scan duration. They are better alternate competitors in the market who can do equally good or even better. It all depends on the scope of the problem you want to address