We performed a comparison between Checkmarx One and Microsoft Azure Application Gateway based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools."The most valuable features of Checkmarx are the SCA module and the code-checking module. Additionally, the solutions are explanatory and helpful."
"The product's most valuable feature is static code and supply chain effect analysis. It provides a lot of visibility."
"Overall, the ability to find vulnerabilities in the code is better than the tool that we were using before."
"The setup is fairly easy. We didn't struggle with the process at all."
"The most valuable features of Checkmarx are difficult to pinpoint because of the way the functionalities and the features are intertwined, it's difficult to say which part of them I prefer most. You initiate the scan, you have a scan, you have the review set, and reporting, they all work together as one whole process. It's not like accounting software, where you have the different features, et cetera."
"It allows for SAST scanning of uncompiled code. Further, it natively integrates with all key repos formats (Git, TFS, SVN, Perforce, etc)."
"The reports are very good because they include details on the code level, and make suggestions about how to fix the problems."
"The report function is the solution's greatest asset."
"The tool helps manage microservices by providing developers with a platform to conduct tests and assessments on the web application. The custom domain option is one of the most valuable features I've found. This feature is incredibly helpful for the end-users of the web application. With the custom domain feature, you can change the lengthy link to a shorter, more memorable one. For example, instead of using a lengthy default link, you can customize it to something like imail.com, which is much easier to remember and share."
"It has a filter available, although we are not currently using it because it is not part of our requirements. But it is a good option and when it becomes part of our requirements we will definitely use it."
"I like the tool's stability and performance."
"Microsoft Azure Application Gateway gives us a lot of benefits, including domain mapping."
"The health probe is pretty good for your backend health. It tells you whether it's communicating and talking to the endpoint correctly. It is quite useful."
"The most valuable feature of Microsoft Azure Application Gateway is its ease of use."
"We chose this solution in the first place because it has access to Layer 7. I can control the requests and the content, which I can access on my network if I want to even if it's forbidden access to other external resources. If I want to monitor, for example, traffic, and apply this rule on Layer 7, I can do so. This was our main goal when implementing this application. We wanted to take advantage of the Gateway capabilities."
"I rate Microsoft Azure Application Gateway's scalability a ten out of ten. My company has more than 1000 users who use it daily."
"I think the CxAudit tool has room for improvement. At the beginning you can choose a scan of a project, but in any event the project must be scanned again (wasting time)."
"Its user interface could be improved and made more friendly."
"As the solution becomes more complex and feature rich, it takes more time to debug and resolve problems. Feature-wise, we have no complaints, but Checkmarx becomes harder to maintain as the product becomes more complex. When I talk to support, it takes them longer to fix the problem than it used to."
"If it is a very large code base then we have a problem where we cannot scan it."
"The solution sometimes reports a false auditable code or false positive."
"Micro-services need to be included in the next release."
"Integration into the SDLC (i.e. support for last version of SonarQube) could be added."
"We would like to be able to run scans from our local system, rather than having to always connect to the product server, which is a longer process."
"The solution could improve by increasing the performance when doing updates. For example, if I change the certificate it can take 30 minutes. Other vendors do not have this type of problem."
"We have encountered some issues with automatic redirection and cancellation, leading to 502 and 504 gateway errors. So, I experienced some trouble with containers."
"Scalability can be an issue."
"The monitoring on the solution could be better."
"It could be easier to change servicing."
"The product could be easier to use and implement."
"I want the solution's support to improve. The tool is also expensive."
"The solution should provide more security for certificate-based services so that we can implement more security on that."
More Microsoft Azure Application Gateway Pricing and Cost Advice →
Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while Microsoft Azure Application Gateway is ranked 4th in Application Delivery Controllers (ADC) with 40 reviews. Checkmarx One is rated 7.6, while Microsoft Azure Application Gateway is rated 7.2. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Microsoft Azure Application Gateway writes "High stability with built-in rules that reduce alerts and are easy to configure". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas Microsoft Azure Application Gateway is most compared with AWS WAF, Citrix NetScaler, F5 Advanced WAF, Azure Front Door and Cloudflare Web Application Firewall.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
