We performed a comparison between Acunetix and Checkmarx One based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's very user-friendly for the testing teams. It's very easy for them to understand things and to fix vulnerabilities."
"The most valuable feature of Acunetix is the UI and the scan results are simple."
"The most important feature is that it's a web-based graphical user interface. That is a great addition. Also, the ability to schedule scans is great."
"There is a lot of documentation on their website which makes setting it up and using it quite simple."
"The tool's most valuable feature is scan configurations. We use it for external physical applications. The scanning time depends on the application's code."
"One of the features that I feel is groundbreaking, that I would like to see expanded on, is the IAS feature: The Interactive Application Security Testing module that gets loaded onto an application on a server, for more in-depth, granular findings. I think that is really neat. I haven't seen a lot of competitors doing that."
"Our developers can run the attacks directly from their environments, desktops."
"The scalability is good. The scalability is more than good because it can operate both as a standalone and it can be integrated as part of applications. So that really makes it a very, very versatile solution to have."
"Checkmarx pinpoints the vulnerability in the code and also presents the flow of malicious input across the application."
"Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%."
"The only thing I like is that Checkmarx does not need to compile."
"It's not an obstacle for developers. They can easily write their code and make it more secure with Checkmarx."
"The UI is very intuitive and simple to use."
"The setup is very easy. There is a lot of information in the documents which makes the install not difficult at all."
"The solution allows us to create custom rules for code checks."
"It is a stable product."
"Acunetix needs to be dynamic with JavaScript code, unlike Netsparker which can scan complex agents."
"There is room for improvement in website authentication because I've seen other products that can do it much better."
"The solution can be improved by adding the ability to scan subdomains automatically, and by providing reports that can be exported to external databases to share with other solutions."
"I had some issues with the JSON parameters where it found some strange vulnerabilities, but it didn't alert the person using it or me about these vulnerabilities, e.g., an error for SQL injection."
"The only problem that they have is the price. It is a bit expensive, and you cannot change the number of applications for the whole year."
"Currently only supports web scanning."
"It would be nice to have a feature to "retest" only a single vulnerability that the customer reports as patched, and delete it from the next scans since it has already been patched."
"You can't actually change your password after you've set it unless you go back into the administration account and you change it there. Thus, if you're locked out and don't remember your password, that's a thing."
"Meta data is always needed."
"It would be really helpful if the level of confidence was included, with respect to identified issues."
"Checkmarx being Windows only is a hindrance. Another problem is: why can't I choose PostgreSQL?"
"If it is a very large code base then we have a problem where we cannot scan it."
"I expect application security vendors to cover all aspects of application security, including SAST, DAST, and even mobile application security testing. And it would be much better if they provided an on-premises and cloud option for all these main application security features."
"We can run only one project at a time."
"The solution's user interface could be improved because it seems outdated."
"In terms of dashboarding, the solution could provide a little more flexibility in terms of creating more dashboards. It has some of its own dashboards that come out of the box. However, if I have to implement my own dashboards that are aligned to my organization's requirements, that dashboarding feature has limited capability right now."
Acunetix is ranked 17th in Application Security Tools with 26 reviews while Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews. Acunetix is rated 7.6, while Checkmarx One is rated 7.6. The top reviewer of Acunetix writes "Fantastic reporting features hindered by slow scanning ". On the other hand, the top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". Acunetix is most compared with OWASP Zap, Tenable.io Web Application Scanning, PortSwigger Burp Suite Professional, HCL AppScan and Rapid7 Metasploit, whereas Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and GitHub. See our Acunetix vs. Checkmarx One report.
See our list of best Application Security Tools vendors, best Static Application Security Testing (SAST) vendors, and best Vulnerability Management vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.