We performed a comparison between Checkmarx One and Fortinet FortiWeb based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable features of Checkmarx are the automation and information that it provides in the reports."
"The best thing about Checkmarx is the amount of vulnerabilities that it can find compared to other free tools."
"The UI is very intuitive and simple to use."
"It shows in-depth code of where actual vulnerabilities are."
"It is a stable product."
"From my point of view, it is the best product on the market."
"The solution has good performance, it is able to compute in 10 to 15 minutes."
"The reports are very good because they include details on the code level, and make suggestions about how to fix the problems."
"One main feature we are very happy about is file security and upload functionality."
"The most valuable feature is ease of use."
"Both the internal firewall management and the cloud can be managed by a single console."
"Other than the additional security with exploit protection, we have simpler certificate handling, as we can keep internal servers using internal certificates continuously distributed and updated by Active Directory Group Policy, while the public certificates become updated only in a single place, FortiWeb itself."
"Auto Learn feature: Makes policy additions or deletions for my customers very simple"
"Built-in security templates, AV integrated, strong threat intelligence."
"The valuable feature of Fortinet FortiWeb vulnerability scanner"
"The most valuable feature of this solution is Fail-Open."
"The solution's user interface could be improved because it seems outdated."
"Checkmarx could improve by reducing the price."
"The statistics module has a function that allows you to show some statistics, but I think it's limited. Maybe it needs more information."
"It would be really helpful if the level of confidence was included, with respect to identified issues."
"The pricing can get a bit expensive, depending on the company's size."
"I would like the product to include more debugging and developed tools. It needs to also add enhancements on the coding side."
"In terms of dashboarding, the solution could provide a little more flexibility in terms of creating more dashboards. It has some of its own dashboards that come out of the box. However, if I have to implement my own dashboards that are aligned to my organization's requirements, that dashboarding feature has limited capability right now."
"Checkmarx is not good because it has too many false positive issues."
"F5 and some other firewalls are easier to customize. FortiWeb could be more flexible and customizable. The documentation could also be improved because many of the advanced features aren't fully documented."
"I would like to see more improvements with respect to threat intelligence."
"If the price was lower, it would be a bit more attractive, as an option, to the customers."
"For advanced users, it would be really useful to have access and the ability to manipulate packets. If we can access and manipulate the contents of packets, even encrypted packets... that would be powerful. Since we're looking at packets arriving at our network, we would have the private key to access those packets and their information."
"FortiWeb does not exist in a cloud-based form. Its only available for deployment as a virtual appliance on AWS and Azure IaaS platforms. Because of the trend to WAF environments, it would be good to have it as a SaaS. Also, FortiWeb would be more competitive if it combined WAF and DDoS protection."
"When we look at the incident reports in the dashboard, they are available for a maximum duration of 24 hours. They should provide more time for the analysis and increase the duration of the availability of these reports. Currently, it gives the options for 5 minutes, 1 hour, and 24 hours. It would be excellent if there are more options for a longer time period. It may be configurable, but I don't know how to do it."
"The Layer 7 DDoS attacks need improvement, it could be better."
"It can be better with web application firewalls."
Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while Fortinet FortiWeb is ranked 4th in Web Application Firewall (WAF) with 83 reviews. Checkmarx One is rated 7.6, while Fortinet FortiWeb is rated 8.0. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Fortinet FortiWeb writes "Cost-effective, easy to configure, and works very well as a single solution for multiple environments". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas Fortinet FortiWeb is most compared with F5 Advanced WAF, Fortinet FortiADC, AWS WAF, Azure Web Application Firewall and Imperva Web Application Firewall. See our Checkmarx One vs. Fortinet FortiWeb report.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.