• Home
  • Checkmarx One vs. Kiuwan

Checkmarx One vs Kiuwan comparison

Cancel
You must select at least 2 products to compare!
Checkmarx Logo
Checkmarx One
Read 67 Checkmarx One reviews
33,068 views|21,374 comparisons
86% willing to recommend
Kiuwan Logo
Kiuwan
Read 23 Kiuwan reviews
1,895 views|1,531 comparisons
93% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Checkmarx One vs. Kiuwan
May 2024
Executive Summary

We performed a comparison between Checkmarx One and Kiuwan based on real PeerSpot user reviews.

Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Checkmarx One vs. Kiuwan Report (Updated: May 2024).
Download the complete report
772,649 professionals have used our research since 2012.
Featured Review
Naveen Hariharan Vijaya
A highly scalable solution that reduces workloads, saves time, and fixes loopholes and vulnerabilities swiftly
Static code reviews are small projects. Previously, with a team of four analysts, we did two project reviews every month. Since we started using... Read more →
Anonymous User
Researched Checkmarx One but chose Kiuwan: Provides the ability to create specific action plans that determine the effort required by our teams to correct defects and ensure better code.
Code reviews have significantly improved, and it allows our teams to work together in a collaborative cloud environment.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature is that it actually identifies the different criteria you can set to meet whatever standards you're trying to get your system accredited for.""The ability to track the vulnerabilities inside the code (origin and destination of weak variables or functions).""It is very useful because it fits our requirements. It is also easy to use. It is not complex, and we are satisfied with the results.""The solution has good performance, it is able to compute in 10 to 15 minutes.""Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%.""The user interface is modern and nice to use.""The feature that I have found most valuable is that its number of false positives is less than the other security application platforms. Its ease of use is another good feature. It also supports most of the languages.""We use the solution to validate the source code and do SAST and security analysis."

More Checkmarx One Pros →

"I like that it provides a detailed report that lets you know the risk index and the vulnerability.""The most valuable feature is the time to resolution, where it tells you how long it is going to take to get to a zero-base or a five-star security rating.""I like that I can scan the code without sending it to the Kiuwan cloud. I can do it locally on my device. When the local analyzer finishes, the results display on the dashboard in the cloud. It's essential for security purposes to be able to scan my code locally.""The feature that I have found the most valuable in Kiuwan is the speed of scanning. Compared to other SaaS tools I have used, Kiuwan is much quicker in performing scans. I have not yet used it on a large code base, but from what I have experienced, it is efficient and accurate. Additionally, I have used it both manually and in an automated pipeline, and both methods have been effective. The speed of scanning is what makes it valuable to me.""I find it immensely helpful because it's not just about generating code; it's about ensuring efficiency in the execution.""The solution offers very good technical support.""Software analytics for a lot of different languages including ABAP.""​We use Kiuwan to locate the source of application vulnerabilities."

More Kiuwan Pros →

Cons
"The integration could improve by including, for example, DevSecOps.""Checkmarx reports many false positives that we need to manually segregate and mark “Not exploitable”.""Checkmarx has a slightly difficult compilation with the CI/CD pipeline.""I would like the product to include more debugging and developed tools. It needs to also add enhancements on the coding side.""Checkmarx could improve by reducing the price.""It provides us with quite a handful of false positive issues. If Checkmarx could reduce this number, it would be a great tool to use.""I think the CxAudit tool has room for improvement. At the beginning you can choose a scan of a project, but in any event the project must be scanned again (wasting time).""They can support the remaining languages that are currently not supported. They can also create a different model that can identify zero-day attacks. They can work on different patterns to identify and detect zero-day vulnerability attacks."

More Checkmarx One Cons →

"Integration of the programming tools could be improved.""DIfferent languages, such Spanish, Portuguese, and so on.""It could improve its scalability abilities.""Kiuwan's support has room for improvement. You can only open a ticket is through email, and the support team is outside of our country. They should have a support number or chat.""Perhaps more languages supported.""The QA developer and security could be improved.""I would like to see better integration with the Visual Studio and Eclipse IDEs.""The configuration hasn't been that good."

More Kiuwan Cons →

Pricing and Cost Advice
  • "It is the right price for quality delivery."
  • "I believe pricing is better compared to other commercial tools."
  • "The pricing was not very good. This is just a framework which shouldn’t cost so much."
  • "The pricing is competitive and provides a lower TCO (total cost of ownership) for achieving application security."
  • "It is a good product but a little overpriced."
  • "The license has a vague language around P1 issues and the associated support. Make sure to review these in order to align them with your organizational policies."
  • "​Checkmarx is not a cheap scanning tool, but none of the security tools are cheap. Checkmarx is a powerful scanning tool, and it’s essential to have one of these products."
  • "We got a special offer for a 30% reduction for three years, after our first year. I think for a real source-code scanning tool, you have to add a lot of money for Open Source Analysis, and AppSec Coach (160 Euro per user per year)."

    • More Checkmarx One Pricing and Cost Advice →

  • "Check with your account manager."
  • "Nothing special. It's a very fair model."
  • "I recommend contacting a sales person who will create the best plan payment plan for you, as we did."
  • "This solution is cheaper than other tools."
  • "It follows a subscription model. I think the price is somewhere in the middle."
  • "Kiuwan is an open-source solution and free to use."
  • "The price of Kiuwan is lower than that of other tools on the market."

    • More Kiuwan Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
    See Recommendations
    772,649 professionals have used our research since 2012.
    Questions from the Community
    What alternatives are there for Fortify WebInspect and Fortify SCA?
    Top Answer:I would like to recommend Checkmarx. With Checkmarx, you are able to have an all in one solution for SAST and SCA as well. Veracode is only a cloud solution. Hope this helps.
    Read all 4 answers   →
    What do you like most about Checkmarx?
    Top Answer:Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%.
    Read all 38 answers   →
    What is your experience regarding pricing and costs for Checkmarx?
    Top Answer:The solution's price is high and you pay based on the number of users.
    Read all 25 answers   →
    What do you like most about Kiuwan?
    Top Answer:The most valuable feature of the solution stems from the fact that it is quick when processing and giving an output or generating a report.
    Read all 11 answers   →
    What is your experience regarding pricing and costs for Kiuwan?
    Top Answer:I'm not entirely sure about the price and business aspects, but I assume Checkmarx might be less expensive. I think Checkmarx might offer more affordable options, especially in its smaller business… more »
    Read all 8 answers   →
    What needs improvement with Kiuwan?
    Top Answer:Kiuwan can improve its UI a little more. The user experience can be made better. Kiuwan offers a user interface that is similar to the one offered by Windows 7 or Windows 98, which I saw when I ran… more »
    Read all 11 answers   →
    Ranking
    3rd
    out of 75 in Application Security Tools
    Views
    33,068
    Comparisons
    21,374
    Reviews
    19
    Average Words per Review
    508
    Rating
    7.8
    22nd
    out of 75 in Application Security Tools
    Views
    1,895
    Comparisons
    1,531
    Reviews
    5
    Average Words per Review
    607
    Rating
    7.8
    Comparisons
    SonarQube logo
    SonarQube vs. Checkmarx One
    Compared 52% of the time.
    Veracode logo
    Veracode vs. Checkmarx One
    Compared 13% of the time.
    Fortify on Demand logo
    Fortify on Demand vs. Checkmarx One
    Compared 6% of the time.
    Snyk logo
    Snyk vs. Checkmarx One
    Compared 4% of the time.
    More Checkmarx One Competitors   →
    SonarQube logo
    SonarQube vs. Kiuwan
    Compared 50% of the time.
    Snyk logo
    Snyk vs. Kiuwan
    Compared 9% of the time.
    Veracode logo
    Veracode vs. Kiuwan
    Compared 9% of the time.
    Fortify on Demand logo
    Fortify on Demand vs. Kiuwan
    Compared 8% of the time.
    OWASP Zap logo
    OWASP Zap vs. Kiuwan
    Compared 3% of the time.
    More Kiuwan Competitors   →
    Learn More
    Checkmarx
    Kiuwan
    Overview

    Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.

    Checkmarx One offers comprehensive application scanning across the SDLC:

    • Static Application Security Testing (SAST)
    • Software Composition Analysis (SCA)
    • API security
    • Dynamic Application Security Testing (DAST)
    • Container security
    • IaC security
    • Correlation, prioritization, and risk management
    • Codebashing secure code training
    • AI security
    • Tech partnerships extending AppSec into runtime analysis
    • Developer tool integrations including: CI/CD tools, development frameworks, feedback tools, IDEs, programming languages and SCMs

    Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.

    Software analytics technology with a breadth of third party integrations that takes into account the wealth of applications your teams are currently using.

    We facilitate and encourage work between unlocalized teams. We understand the complexity of working on multi technology environments, constantly striving to increase the number of programming languages and technologies we support.

    Sample Customers
    YIT, Salesforce, Coca-Cola, SAP, U.S. Army, Liveperson, Playtech Case Study: Liveperson Implements Innovative Secure SDLC
    DHL, BNP Paribas, Zurich, AXA, Ernst & Young, KFC, Santander, Latam, Ferrovial
    Top Industries
    REVIEWERS
    Computer Software Company31%
    Financial Services Firm19%
    Comms Service Provider9%
    Manufacturing Company9%
    VISITORS READING REVIEWS
    Financial Services Firm21%
    Computer Software Company15%
    Manufacturing Company9%
    Insurance Company5%
    REVIEWERS
    Legal Firm33%
    Computer Software Company22%
    Non Tech Company11%
    Wireless Company11%
    VISITORS READING REVIEWS
    Financial Services Firm16%
    Computer Software Company12%
    Comms Service Provider12%
    Insurance Company6%
    Company Size
    REVIEWERS
    Small Business38%
    Midsize Enterprise13%
    Large Enterprise50%
    VISITORS READING REVIEWS
    Small Business17%
    Midsize Enterprise12%
    Large Enterprise71%
    REVIEWERS
    Small Business60%
    Midsize Enterprise16%
    Large Enterprise24%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise17%
    Large Enterprise63%
    Buyer's Guide
    Checkmarx One vs. Kiuwan
    May 2024
    Free Report: Checkmarx One vs. Kiuwan
    Find out what your peers are saying about Checkmarx One vs. Kiuwan and other solutions. Updated: May 2024.
    DOWNLOAD NOW
    772,649 professionals have used our research since 2012.

    Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while Kiuwan is ranked 22nd in Application Security Tools with 23 reviews. Checkmarx One is rated 7.6, while Kiuwan is rated 8.6. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Kiuwan writes "Though a stable tool, the UI needs improvement". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand and Snyk, whereas Kiuwan is most compared with SonarQube, Snyk, Veracode, Fortify on Demand and OWASP Zap. See our Checkmarx One vs. Kiuwan report.

    See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.

    We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.