Checkmarx vs FortiDDoS

Checkmarx is ranked 2nd in Web Application Security with 14 reviews vs FortiDDoS which is ranked 10th in Web Application Security with 2 reviews. The top reviewer of Checkmarx writes "Acts as the first check point during our consulting for apps that are looking for a security assessment or Penetration Testing". The top reviewer of FortiDDoS writes "Purpose-built ASIC mitigates DDoS attack at line-rate without affecting performance. It can be also deployed off-ramp if the user has the know how". Checkmarx is most compared with SonarQube, Fortify on Demand and Veracode. FortiDDoS is most compared with Arbor DDoS, Radware DefensePro and Check Point DDoS Protector. See our Checkmarx vs FortiDDoS report.
Cancel
You must select at least 2 products to compare!
+Add products to compare
Most Helpful Review
Find out what your peers are saying about Checkmarx vs FortiDDoS and others in Web Application Security.
288,321 professionals have used our research since 2012.

Quotes From Members Comparing Checkmarx vs FortiDDoS

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Pros
It shows in-depth code of where actual vulnerabilities are.It gives the proper code flow of vulnerabilities and the number of occurrences.Vulnerability details part.Both automatic and manual code review (CxQL).The solution communicates where to fix the issue for the purpose of less iterations.Helps us check vulnerabilities in our SAP Fiori application.The ability to track the vulnerabilities inside the code (origin and destination of weak variables or functions).Checkmarx pinpoints the vulnerability in the code and also presents the flow of malicious input across the application.

Read more »

Among its key features: Detects and mitigates DDoS attacks at L3 to L7; negligible to zero false-positives; Generates and sends reports without the need for an expensive third-party solution.

Read more »

Cons
It provides us with quite a handful of false positive issues. If Checkmarx could reduce this number, it would be a great tool to use.I think the CxAudit tool has room for improvement. At the beginning you can choose a scan of a project, but in any event the project must be scanned again (wasting time).Updating and debugging of queries is not very convenient.The most valuable feature for me is the Jenkins PluginImplementing a blackout time for any user or teams: Needs improvement.Integration into the SDLC (i.e. support for last version of SonarQube) could be added.The resolutions should also be provided. For example, if the user faces any problem regarding an installation due to the internal security policies of their company, there should be a resolution offered.I really would like to integrate it as a service along with the SAP HANA Cloud Platform. It will then be easy to use it directly as a service.

Read more »

All the thresholds that need to be configured should be included in the default so that user will not forget or misconfigure.

Read more »

Pricing and Cost Advice
We got a special offer for a 30% reduction for three years, after our first year. I think for a real source-code scanning tool, you have to add a lot of money for Open Source Analysis, and AppSec Coach (160 Euro per user per year).Before implementing the product I would evaluate if it is really necessary to scan so many different languages and frameworks. If not, I think there must be a cheaper solution for scanning Java-only applications (which are 90% of our applications).​Checkmarx is not a cheap scanning tool, but none of the security tools are cheap. Checkmarx is a powerful scanning tool, and it’s essential to have one of these products.It is a good product but a little overpriced.The license has a vague language around P1 issues and the associated support. Make sure to review these in order to align them with your organizational policies.The pricing is competitive and provides a lower TCO (total cost of ownership) for achieving application security.The pricing was not very good. This is just a framework which shouldn’t cost so much.I believe pricing is better compared to other commercial tools.

Read more »

Information Not Available
report
Use our free recommendation engine to learn which Web Application Security solutions are best for your needs.
288,321 professionals have used our research since 2012.
Ranking
RANKING
Views
31,947
Comparisons
14,276
Reviews
13
Followers
1,730
Avg. Rating
7.2
Views
1,150
Comparisons
652
Reviews
2
Followers
66
Avg. Rating
10.0
Top Comparisons
Top Comparisons
Compared 34% of the time.
Compared 29% of the time.
Compared 14% of the time.
See more Checkmarx competitors »
Compared 54% of the time.
Compared 15% of the time.
See more FortiDDoS competitors »
Also Known As
Also Known AsFortinet DDoS
Website/Video
Website/VideoCheckmarx
Fortinet
Overview
Overview

Checkmarx CxSAST is a highly accurate and flexible Static Code Analysis product that allows organizations to automatically scan un-compiled / un-built code and identify hundreds of security vulnerabilities in all major coding languages. CxSAST is available as a standalone product and can be effectively integrated into the Software Development Lifecycle (SDLC) to streamline detection and remediation. CxSAST can be deployed on-premise in a private data center or hosted via a public cloud.

Whitepaper: I, II

Distributed Denial of Service (DDoS) attacks are ever-evolving and use a variety of technologies. To successfully combat these attacks, you need a dynamic, multi-layered security solution. FortiDDoS protects from both known and zero day attacks with very low latency. It’s easy to deploy and manage, and includes comprehensive reporting and analysis tools.

OFFER
Free Demo

Learn more about Checkmarx.

Learn more about FortiDDoS
Sample Customers
Sample CustomersYIT, Salesforce, Coca-Cola, SAP, U.S. Army, Liveperson, Playtech Case Study: Liveperson Implements Innovative Secure SDLCBlack Gold Regional Schools, Amadeus Hospitality, Jefferson County, Chunghwa Telecom, City of Boroondara, Dimension Data
Top Industries
Top Industries
VISITORS READING REVIEWS
Financial Services Firm
26%
Manufacturing Company
21%
Comms Service Provider
7%
Government
7%
No Data Available
Company Size
Company Size
REVIEWERS
Small Business
35%
Midsize Enterprise
12%
Large Enterprise
53%
VISITORS READING REVIEWS
Small Business
17%
Midsize Enterprise
10%
Large Enterprise
73%
No Data Available
Find out what your peers are saying about Checkmarx vs FortiDDoS and others in Web Application Security.
Download now
288,321 professionals have used our research since 2012.
We monitor all Web Application Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.

Sign Up with Email