Checkmarx One vs WAPPLES comparison

Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.

Checkmarx One offers comprehensive application scanning across the SDLC:

• Static Application Security Testing (SAST)
• Software Composition Analysis (SCA)
• API security
• Dynamic Application Security Testing (DAST)
• Container security
• IaC security
• Correlation, prioritization, and risk management
• Codebashing secure code training
• AI security
• Tech partnerships extending AppSec into runtime analysis
• Developer tool integrations including: CI/CD tools, development frameworks, feedback tools, IDEs, programming languages and SCMs

Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.

WAPPLES is a virtual web application firewall designed for the cloud consumer. WAPPLES runs on an intelligent logic analysis engine called Contents Classification and Evaluation Processing, or COCEP. This logic analysis engine utilizes a system of 26 'rules' to execute a logical analysis of all types of web traffic to determine whether or not certain traffic constitutes a threat to the web application. If traffic can successfully pass through all 26 rules, WAPPLES determines that the traffic is not an attack, and transports legitimate traffic to the web application. The split-second performance of the COCEP enables WAPPLES to determine if traffic is safe in just 1/1000 of a second.