We performed a comparison between Checkmarx One and R&S Web Application Firewall (DenyAll) based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools."The user interface is modern and nice to use."
"Checkmarx pinpoints the vulnerability in the code and also presents the flow of malicious input across the application."
"The solution has good performance, it is able to compute in 10 to 15 minutes."
"The most valuable features of Checkmarx are the automation and information that it provides in the reports."
"The reports are very good because they include details on the code level, and make suggestions about how to fix the problems."
"From my point of view, it is the best product on the market."
"The most valuable feature for me is the Jenkins Plugin."
"I like that you don't have to compile the code in order to execute static code analysis. So, it's very handy."
"The three most valuable features that I noticed are the geo-localization of the user, the IP reputation, and the compartmental analysis."
"C, C++, VB and T-SQL are not supported by this product. Although, C and C++ were advertised as being supported."
"Checkmarx reports many false positives that we need to manually segregate and mark “Not exploitable”."
"When we first ran it on a big project, there wasn't enough memory on the computer. It originally ran with eight gigabytes, and now it runs with 32. The software stopped at some point, and while I don't think it said it ran out of memory, it just said "stopped" and something else. We had to go to the logs and send them to the integrator, and eventually, they found a memory issue in the logs and recommended increasing the memory. We doubled it once, and it didn't seem enough. We doubled it again, and it helped."
"Checkmarx needs to be more scalable for large enterprise companies."
"It is an expensive solution."
"One area for improvement in Checkmarx is pricing, as it's more expensive than other products."
"You can't use it in the continuous delivery pipeline because the scanning takes too much time."
"It would be really helpful if the level of confidence was included, with respect to identified issues."
"The area that should be improved is licensing."
Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while R&S Web Application Firewall (DenyAll) is ranked 31st in Web Application Firewall (WAF). Checkmarx One is rated 7.6, while R&S Web Application Firewall (DenyAll) is rated 9.0. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of R&S Web Application Firewall (DenyAll) writes "Geo-localization and IP reputation help to keep our clients secure and more available". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas R&S Web Application Firewall (DenyAll) is most compared with AWS WAF, Fortinet FortiWeb and Akamai App and API Protector.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.