We performed a comparison between Checkmarx One and F5 BIG-IP Local Traffic Manager (LTM) based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution is scalable, but other solutions are better."
"The setup is fairly easy. We didn't struggle with the process at all."
"The administration in Checkmarx is very good."
"It shows in-depth code of where actual vulnerabilities are."
"The main advantage of this solution is its centralized reporting functionality, which lets us track issues, then see and report on the priorities via a web portal."
"The most valuable features of Checkmarx are the Best Fix Location and the Payments option because you can save a lot of time trying to mitigate the configuration. Using these tools can save you a lot of time."
"The solution is always updating to continuously add items that create a level of safety from vulnerabilities. It's one of the key features they provide that's an excellent selling point. They're always ahead of the game when it comes to finding any vulnerabilities within the database."
"It allows for SAST scanning of uncompiled code. Further, it natively integrates with all key repos formats (Git, TFS, SVN, Perforce, etc)."
"The load balancing function, the monitors that you can create, and iRules programmability are most valuable."
"Initial setup was straightforward. We were up and running in three hours."
"NetFlow balancing and traffic balancing are good features."
"The feature I find the most valuable is the support infrastructure."
"Where we are finding the AWS version helpful is when we are trying to scale up new environments. AWS Marketplace helps here a lot."
"We like the capability to combine the content switching with the intrusion prevention and adding the security roles, so we can expose certain sub-pieces outside without exposing everything."
"It helps us recognize sessions from certain IPs that are authorized to manage the application. This is a function we haven't found anywhere else."
"F5 BIG-IP Local Traffic Manager (LTM) is very easy to use, from SSL Management to enabling, disabling loads, applications, systems, and monitoring. Overall the solution keeps our application functional from a client's perspective 24 hours a day, seven days a week."
"We are trying to find out if there is a way to identify the run-time null values. I am analyzing different tools to check if there is any tool that supports run-time null value identification, but I don't think any of the tools in the market currently supports this feature. It would be helpful if Checkmarx can identify and throw an exception for a null value at the run time. It would make things a lot easier if there is a way for Checkmarx to identify nullable fields or hard-coded values in the code. The accessibility for customized Checkmarx rules is currently limited and should be improved. In addition, it would be great if Checkmarx can do static code and dynamic code validation. It does a lot of security-related scanning, and it should also do static code and dynamic code validation. Currently, for security-related validation, we are using Checkmarx, and for static code and dynamic code validation, we are using some other tools. We are spending money on different tools. We can pay a little extra money and use Checkmarx for everything."
"Updating and debugging of queries is not very convenient."
"Checkmarx could improve the speed of the scans."
"Checkmarx could improve the solution reports and false positives. The false positives could be reduced. For example, we have alerts that are tagged as vulnerabilities but when you drill down they are not."
"Checkmarx has a slightly difficult compilation with the CI/CD pipeline."
"Integration into the SDLC (i.e. support for last version of SonarQube) could be added."
"If it is a very large code base then we have a problem where we cannot scan it."
"The product can be improved by continuing to expand the application languages and frameworks that can be scanned for vulnerabilities. This includes expanded coverage for mobile applications as well as open-source development tools."
"Its price can be better. It is a bit expensive."
"Implementing whitepapers with a lot more applications could easily be added."
"I'm not very sure about the security with F5 BIG-IP Local Traffic Manager (LTM). We have our own private data center, but we are going to migrate our private data center into the Azure cloud environment. Security will then be a major concern when we migrate our own whole infrastructure to the public cloud."
"The management interface is unclear, complex, and not concise. I would like a better user interface."
"Technical support could be improved."
"The solution's hardware quality needs improvement."
"Based on my experience using F5 and by only taking into consideration the last seven years, I have found that the reporting mechanism is bad."
"The SharePoint SSO part has some room for improvement."
More F5 BIG-IP Local Traffic Manager (LTM) Pricing and Cost Advice →
Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while F5 BIG-IP Local Traffic Manager (LTM) is ranked 1st in Application Delivery Controllers (ADC) with 116 reviews. Checkmarx One is rated 7.6, while F5 BIG-IP Local Traffic Manager (LTM) is rated 8.2. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of F5 BIG-IP Local Traffic Manager (LTM) writes "Helps deliver applications to users in a reliable, secure, and optimized way". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas F5 BIG-IP Local Traffic Manager (LTM) is most compared with Citrix NetScaler, Fortinet FortiADC, Microsoft Azure Application Gateway, NGINX Plus and A10 Networks Thunder ADC. See our Checkmarx One vs. F5 BIG-IP Local Traffic Manager (LTM) report.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.