Checkmarx Review

It makes it easier to identify code vulnerabilities by presenting the flow of malicious input and fixing it.

How has it helped my organization?

We have been using this product extensively for a lot of applications to identify as well as employ proper remediation which makes the application secure including information issues which might get neglected with a manual code review process.

What is most valuable?

Checkmarx pinpoints the vulnerability in the code and also presents the flow of malicious input across the application. It therefore makes it easier to identify these as well as fix them.

What needs improvement?

Checkmarx has the detailed description of all the vulnerabilities which it identifies after the source code scan. These descriptions are just a click away. Some of the descriptions were found to be missing or were not as elaborate as compared to other descriptions. Although, they could be found across various standard sources but it would save a lot of time for developers, if this was fixed.

What do I think about the stability of the solution?

We have not yet encountered any stability issues.

What do I think about the scalability of the solution?

The solution provides high scalability. I am not sure about the limit of scans but it is sufficiently high. However, the issues which we faced were related to database backup. Unfortunately, Checkmarx doesn't do any automated backups which is quite inconvenient.

How are customer service and technical support?

I would rate the technical support as average. We never had to communicate much with the technical team but based on my knowledge the response from their end was delayed.

Which solution did I use previously and why did I switch?

I am not aware of any previous solutions.

How was the initial setup?

The setup was straightforward.

What's my experience with pricing, setup cost, and licensing?

It is a good product but a little overpriced.

Which other solutions did I evaluate?

I don't have much idea about other options since the organization had already purchased the product before I joined.

What other advice do I have?

Better to look out for other products available in the market as well.

**Disclosure: I am a real user, and this review is based on my own experience and opinions.
More Checkmarx reviews from users
...who work at a Financial Services Firm
...who compared it with HCL AppScan
Add a Comment