Compare Black Duck vs. Checkmarx Software Composition Analysis

Cancel
You must select at least 2 products to compare!
Most Helpful Review
Use Accurics? Share your opinion.
Use Checkmarx Software Composition Analysis? Share your opinion.
Find out what your peers are saying about Sonatype, Snyk, WhiteSource and others in Software Composition Analysis (SCA). Updated: January 2021.
455,164 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pricing and Cost Advice
Information Not Available
"Depending on the use case, the cost could range from $10,000 USD to $70,000 USD.""The price is quite high because the behavior of the software during the scan is similar to competing products.""The price is low. It's not an expensive solution.""Black Duck is more suitable if you require a lot of licensing compliance. For smaller organizations, WhiteSource is better because its pricing policies are not really suitable for huge organizations."

More Black Duck Pricing and Cost Advice »

Information Not Available
report
Use our free recommendation engine to learn which Software Composition Analysis (SCA) solutions are best for your needs.
455,164 professionals have used our research since 2012.
Popular Comparisons
Compared 30% of the time.
Compared 17% of the time.
Compared 14% of the time.
Also Known As
Blackduck Hub, Black Duck Protex, Black Duck Security CheckerCxSCA
Learn
Accurics
Synopsys
Checkmarx
Overview

At Accurics™, we envision a world where organizations can innovate in the cloud with confidence. Our mission is to enable cyber resilience through self-healing as organizations embrace cloud native infrastructure. The Accurics platform self-heals cloud native infrastructure by codifying security throughout the development lifecycle. It programmatically detects and resolves risks across Infrastructure as Code before infrastructure is provisioned, and maintains the secure posture in runtime by programmatically mitigating risks from changes. Accurics enables organizations of all sizes to achieve cloud cyber resilience through free cloud-based and open source tools such as Terrascan™.

Black Duck is a comprehensive solution for managing security, license compliance, and code quality risks that come from the use of open source in applications and containers. Named a leader in software composition analysis (SCA) by Forrester, Black Duck gives you unmatched visibility into third-party code, enabling you to control it across your software supply chain and throughout the application life cycle.

Today's software is constructed using open source components and third-party libraries, tied together with custom code. Hackers target vulnerable open source components to access sensitive and valuable data, while data protection regulations become more stringent in an effort to encourage better software security practices. While all this is happening, DevOps is taking the world by storm and the burden of securing software is rapidly expanding under the purview of the developers who create it.

Trust us, we get it. You're caught between a strong desire to innovate and a sincere dislike of having your company’s name on the news as “the most recent data breach.”

That's why we made CxSCA, the most effective next-gen software composition analysis solution designed to help development teams ship secure software quickly while giving AppSec teams the insight and control they need to improve your software security risk posture.

Offer
Learn more about Accurics
Learn more about Black Duck
Learn more about Checkmarx Software Composition Analysis
Sample Customers
Automation Anywhere, NBA, GroundTruth, ServiceMax, Navis, EdcastSamsung, Siemens, ScienceLogic, Noser Engineering AG, ClickFox, Dynatrace, CopperLeafAXA, Liveperson, Aaron's, Playtech, Morningstar
Top Industries
VISITORS READING REVIEWS
Computer Software Company24%
Financial Services Firm16%
Comms Service Provider13%
Insurance Company7%
VISITORS READING REVIEWS
Computer Software Company40%
Comms Service Provider14%
Manufacturing Company9%
Financial Services Firm9%
No Data Available
Find out what your peers are saying about Sonatype, Snyk, WhiteSource and others in Software Composition Analysis (SCA). Updated: January 2021.
455,164 professionals have used our research since 2012.

Black Duck is ranked 4th in Software Composition Analysis (SCA) with 6 reviews while Checkmarx Software Composition Analysis is ranked 8th in Software Composition Analysis (SCA) with 1 review. Black Duck is rated 7.4, while Checkmarx Software Composition Analysis is rated 9.0. The top reviewer of Black Duck writes "Useful for determining the health of applications that contain open source components". On the other hand, the top reviewer of Checkmarx Software Composition Analysis writes "Very easy, user friendly, and stable". Black Duck is most compared with WhiteSource, Snyk, Sonatype Nexus Lifecycle and JFrog Xray, whereas Checkmarx Software Composition Analysis is most compared with JFrog Xray.

See our list of best Software Composition Analysis (SCA) vendors.

We monitor all Software Composition Analysis (SCA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.