We performed a comparison between Checkmarx One and Fortinet FortiWeb based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We were using HPE Security Fortify to scan code for security vulnerabilities, but it can scan only after a successful compile. If the code has dependencies or build errors, the scan fails. With Checkmarx, pre-compile scanning is seamless. This allows us to scan more code."
"The UI is user-friendly."
"We use the solution to validate the source code and do SAST and security analysis."
"Most valuable features include: ease of use, dashboard. interface and the ability to report."
"It shows in-depth code of where actual vulnerabilities are."
"The most valuable feature for me is the Jenkins Plugin."
"Checkmarx has helped us deliver more secure products. We are able to do static code analysis with the tool before shipping our code to production. When the integration is in the pipeline, this tool gives us early notifications on code fixes."
"Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%."
"Fortinet FortiWeb has improved my organization by protecting our customer's web infrastructure environment."
"All the features that FortiGate contains are very suitable for our business. We work with other products in Fortinet, FortiWeb, FortiSandbox, FortiMail, and FortiCache. We use all UTM features like self-encryption, encryption, all UTM features."
"Fortinet is a great SD-WAN player when it comes to security capabilities."
"You have the ability to control everything from one single dashboard."
"The most important feature of this solution is protection from attack."
"The solution is stable."
"The reason I recommend this product is because it guarantees that your network will be safe if it is set up properly and you fully utilize most of the functions."
"Banks have to be compliant with PCI and other things, and FortiWeb is absolutely amazing in terms of providing these reports. Otherwise, they will have to spend a lot of time on them."
"I would like the product to include more debugging and developed tools. It needs to also add enhancements on the coding side."
"Its pricing model can be improved. Sometimes, it is a little complex to understand its pricing model."
"They could work to improve the user interface. Right now, it really is lacking."
"Micro-services need to be included in the next release."
"Checkmarx needs to be more scalable for large enterprise companies."
"Updating and debugging of queries is not very convenient."
"As the solution becomes more complex and feature rich, it takes more time to debug and resolve problems. Feature-wise, we have no complaints, but Checkmarx becomes harder to maintain as the product becomes more complex. When I talk to support, it takes them longer to fix the problem than it used to."
"We want to have a holistic view of the portfolio-level dashboard and not just an individual technical project level."
"The solution could improve by being able to handle different use cases."
"Fortinet FortiWeb is not scalable. You'll need more budget to change the hardware."
"We use Kubernetes, so I would like to have a plugin to configure FortiWeb Cloud automatically using Kubernetes Ingress. That would reduce the complexity of setting up an Ingress object in Kubernetes. Some competing solutions help you configure Ingress and Kubernetes automatically."
"F5 and some other firewalls are easier to customize. FortiWeb could be more flexible and customizable. The documentation could also be improved because many of the advanced features aren't fully documented."
"We would like the interface to be easier to use and more user-friendly. The interface needs to be enhanced."
"Their documentation is fairly complete, but it's sometimes a little bit difficult to search for exactly what you're looking for to resolve an issue. There have been times when we've gone to try to search for areas that we needed to get information on, and it has not always been extremely clear exactly how a particular thing needs to be set up."
"If the price was lower, it would be a bit more attractive, as an option, to the customers."
"The false positives are annoying."
Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while Fortinet FortiWeb is ranked 4th in Web Application Firewall (WAF) with 83 reviews. Checkmarx One is rated 7.6, while Fortinet FortiWeb is rated 8.0. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Fortinet FortiWeb writes "Cost-effective, easy to configure, and works very well as a single solution for multiple environments". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas Fortinet FortiWeb is most compared with F5 Advanced WAF, Fortinet FortiADC, AWS WAF, Azure Web Application Firewall and Imperva Web Application Firewall. See our Checkmarx One vs. Fortinet FortiWeb report.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.