We performed a comparison between Checkmarx and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%."
"The setup is fairly easy. We didn't struggle with the process at all."
"The best thing about Checkmarx is the amount of vulnerabilities that it can find compared to other free tools."
"The UI is very intuitive and simple to use."
"From my point of view, it is the best product on the market."
"The administration in Checkmarx is very good."
"Our static operation security has been able to identify more security issues since implementing this solution."
"The most valuable features of Checkmarx are the Best Fix Location and the Payments option because you can save a lot of time trying to mitigate the configuration. Using these tools can save you a lot of time."
"This tool is more accurate than the other solutions that we use, and reports fewer false positives."
"The most valuable feature of PortSwigger Burp Suite Professional is the advanced features, user-friendly interface, and integration with other tools."
"The reporting part is the most valuable. It also has very good features. We use almost all of the features for different kinds of customers and needs."
"PortSwigger Burp Suite does not hamper the node of the server, and it does not shut down the server if it is running."
"It is a time-saver application."
"In my area of expertise, I feel like it has almost everything I could possibly require at this moment."
"The most valuable feature is the application security. It also has a reasonable price."
"The solution scans web applications and supports APIs, which are the main features I really like."
"I really would like to integrate it as a service along with the SAP HANA Cloud Platform. It will then be easy to use it directly as a service."
"Micro-services need to be included in the next release."
"The pricing can get a bit expensive, depending on the company's size."
"Checkmarx could improve by reducing the price."
"We can run only one project at a time."
"The cost per user is high and should be reduced."
"Checkmarx could improve the REST APIs by including automation."
"Checkmarx is not good because it has too many false positive issues."
"Currently, the scanning is only available in the full version of Burp, and not in the Community version."
"A lot of our interns find it difficult to get used to PortSwigger Burp's environment."
"There is a lot to this product, and it would be good if when you purchase the tool, they can provide us with a more extensive user manual."
"One area that can be improved, when compared to alternative tools, is that they could provide different reporting options and in different formats like PDF or something like that."
"We'd like to have more integration potential across all versions of the product."
"The solution’s pricing could be improved."
"If your application uses multi-factor authentication, registration management cannot be automated."
"The price could be better. The rest is fine."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
Checkmarx is ranked 3rd in Application Security Tools with 23 reviews while PortSwigger Burp Suite Professional is ranked 12th in Application Security Tools with 21 reviews. Checkmarx is rated 7.6, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of Checkmarx writes "Specifies the exact line of code where it finds the problem and gives good reports". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "Offers efficient scanning of entire websites but presence of false positive bugs, leading to time-consuming efforts in distinguishing real bugs from false alarms". Checkmarx is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Rapid7 InsightAppSec. See our Checkmarx vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.