Checkmarx Valuable Features
CEO at a tech services company with 11-50 employees
The most valuable features are the easy to understand interface, and it 's very user-friendly. We spend some time tuning to start scanning a new project, which is only a few clicks. A few simple tunes for custom rules and we can start our scan.
We can do the work quickly and we don't need to compile the source code because Checkmarx does the work without compiling the project.
The scanning is very quick. It's about 20,000 lines per hour, which is a good speed for scanning.
Vice President at Arisglobal Software Pvt Ltd
The support the solution offers is very good. When we were evaluating tools, they were extremely helpful. They're always available and they always respond back to any queries.
The solution is always updating to continuously add items that create a level of safety from vulnerabilities. It's one of the key features they provide that's an excellent selling point. They're always ahead of the game when it comes to finding any vulnerabilities within the database. I am able to be assured that when I am scanning my product those vulnerabilities are identified at very initial stages. It gives my development team more time to react.View full review »
Aside from my occupation, I am an academic. Because of our status, we test products as well as their competition, for example, we45, AppScan, SonarQube, etc. I have to point out, from an academic and business point of view, there is a very serious competitive advantage to using Checkmarx. Even if there are multiple vulnerabilities in the source coding, Checkmarx is able to identify which lines need to be corrected and then proceeds to automatically remediate the situation. This is an outstanding advantage that none of the competition offers.
The flexibility in regards to finding false-positives and false-negatives is amazing. Checkmarx can easily manage false-positives and negatives. You don't need to generate an additional platform if you would like to scan a mobile application from iOS or Android. With a single license, you are able to scan and test every platform. This is not possible with other competitive products. For instance, say you are using we45 — if you would like to scan an iOS application, you would have to generate an iOS platform first. With Checkmarx you don't need to do anything — take the source code, scan it and you're good to go. Last but not least, the incremental scanning capabilities are a mission-critical feature for developers.
Also, the API and integrations are both very flexible.
Technical Lead at a tech services company with 1,001-5,000 employees
The reporting on the solution is very good. The reports we get are very self-explanatory. They aren't complex or confusing. They will tell us if we are facing vulnerabilities and where. From the reporting, it's quite easy to find the problems and fix them.
The solution overall is very good at detecting and pinpointing vulnerabilities in the code.
The user interface is excellent. It's very user friendly.
The solution offers good training documentation so we know how to handle problems as they arise.View full review »
Senior Manager at a manufacturing company with 10,001+ employees
The identification of verification-related security vulnerabilities is really important and one of the key things. It also identifies vulnerabilities for any kind of third-party tool coming into the system or any third-party tools that you are using, which is very useful for avoiding random hacking.
General Manager at a tech company with 1,001-5,000 employees
The UI is very intuitive and simple to use. You don't need to know anything about the product before you being working with it.
The interface used to audit issues is also simple to use.
Compared to similar products, the code scanning time is fast.View full review »
Sr. Application Security Manager at a tech services company with 201-500 employees
The user interface is modern and nice to use.
This product has very good reports.
Checkmarx integrates with a lot of different tools such as BitBucket and Jira.
There is good coverage for different languages.View full review »
Director at a tech services company with 11-50 employees
The features and technologies are very good. The flexibility and the roadmap have also been very good. They're at the forefront of delivering the additional capabilities that are required with cloud delivery, etc. Their ability to deliver what customers require and when they require is very important.View full review »
Vice President Of Technology at a computer software company with 5,001-10,000 employees
The most valuable feature is the application tracking reporting.
From the user's perspective, the interface is pretty good. It will point out the exact line of code when an issue is found.
It is good in terms of coverage for different languages.
It is updated automatically so there is less maintenance.View full review »
Solution Manager at a computer software company with 201-500 employees
I am aware of Checkmarx's portfolio, however, we've been playing exclusively with the SAST and with the AppSec Awareness platform, they're Codebashing platform. It's been a very positive experience overall.
The value you can get out of the speedy production may be worth the price tag.View full review »
The visibility the solution gives you is great. It really gives you the ability to see what the root issues in the code actually are.
The setup is fairly easy. We didn't struggle with the process at all.View full review »
The most valued feature comes within the platform called Codebashing, it allows scanning code for security flaws. Our clients are able to learn from these scans and develop more secure code. The solution is easy to configure and user friendly as well. They also have support for a large variety of languages compared to other solutions and the product updates continuously.View full review »
Information Security Architect at a tech services company with 1,001-5,000 employees
The feature that I have found most valuable is that its number of false positives is less than the other security application platforms. Its ease of use is another good feature. It also supports most of the languages.View full review »
The most valuable feature is the scanning.
The reports are very good because they include details on the code level, and make suggestions about how to fix the problems.View full review »
Procurement Analyst at a pharma/biotech company with 10,001+ employees
One of the most valuable features is it is flexible.View full review »
Senior Software Engineer at a computer software company with 10,001+ employees
The most valuable feature is the simple user interface.View full review »