Checkmarx vs. FortiDDoS

Checkmarx is ranked 2nd in Web Application Security with 12 reviews vs FortiDDoS which is ranked 10th in Web Application Security with 2 reviews. The top reviewer of Checkmarx writes "Acts as the first check point during our consulting for apps that are looking for a security assessment or Penetration Testing". The top reviewer of FortiDDoS writes "Purpose-built ASIC mitigates DDoS attack at line-rate without affecting performance. It can be also deployed off-ramp if the user has the know how". Checkmarx is most compared with SonarQube, Fortify on Demand and Veracode. FortiDDoS is most compared with Arbor DDoS, Radware DefensePro and Check Point DDoS Protector. See our Checkmarx vs. FortiDDoS report.
Cancel
You must select at least 2 products to compare!
Most Helpful Review
Use Null Product? Share your opinion.
Find out what your peers are saying about Checkmarx vs. FortiDDoS and others in Web Application Security.
304,717 professionals have used our research since 2012.

Quotes From Members Comparing Checkmarx vs. FortiDDoS

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Pros
It is a stable product.Most valuable features include: ease of use, dashboard. interface and the ability to report.It shows in-depth code of where actual vulnerabilities are.It gives the proper code flow of vulnerabilities and the number of occurrences.The most valuable feature for me is the Jenkins Plugin.Vulnerability details part.Both automatic and manual code review (CxQL).The solution communicates where to fix the issue for the purpose of less iterations.

Read more »

Among its key features: Detects and mitigates DDoS attacks at L3 to L7; negligible to zero false-positives; Generates and sends reports without the need for an expensive third-party solution.

Read more »

Read more »

Cons
It is an expensive solution.It provides us with quite a handful of false positive issues. If Checkmarx could reduce this number, it would be a great tool to use.I think the CxAudit tool has room for improvement. At the beginning you can choose a scan of a project, but in any event the project must be scanned again (wasting time).Updating and debugging of queries is not very convenient.Implementing a blackout time for any user or teams: Needs improvement.Integration into the SDLC (i.e. support for last version of SonarQube) could be added.The resolutions should also be provided. For example, if the user faces any problem regarding an installation due to the internal security policies of their company, there should be a resolution offered.I really would like to integrate it as a service along with the SAP HANA Cloud Platform. It will then be easy to use it directly as a service.

Read more »

All the thresholds that need to be configured should be included in the default so that user will not forget or misconfigure.

Read more »

Read more »

Pricing and Cost Advice
It is an expensive solution.Be cautious of the one-year subscription date. Once it expires, your price will go up.We got a special offer for a 30% reduction for three years, after our first year. I think for a real source-code scanning tool, you have to add a lot of money for Open Source Analysis, and AppSec Coach (160 Euro per user per year).Before implementing the product I would evaluate if it is really necessary to scan so many different languages and frameworks. If not, I think there must be a cheaper solution for scanning Java-only applications (which are 90% of our applications).​Checkmarx is not a cheap scanning tool, but none of the security tools are cheap. Checkmarx is a powerful scanning tool, and it’s essential to have one of these products.It is a good product but a little overpriced.The license has a vague language around P1 issues and the associated support. Make sure to review these in order to align them with your organizational policies.The pricing is competitive and provides a lower TCO (total cost of ownership) for achieving application security.

Read more »

Information Not Available
Information Not Available
report
Use our free recommendation engine to learn which Web Application Security solutions are best for your needs.
304,717 professionals have used our research since 2012.
Ranking
Views
38,412
Comparisons
15,931
Reviews
12
Followers
1,730
Avg. Rating
7.3
Views
1,461
Comparisons
857
Reviews
2
Followers
68
Avg. Rating
10.0
Unranked
In Web Application Security
Top Comparisons
Compared 35% of the time.
Compared 28% of the time.
Compared 13% of the time.
See more Checkmarx competitors »
Compared 51% of the time.
Compared 14% of the time.
See more FortiDDoS competitors »
Compared 29% of the time.
Also Known As
Fortinet DDoS
Learn how it works
Checkmarx
Fortinet
Null Vendor
Video Not Available
Overview

Checkmarx CxSAST is a highly accurate and flexible Static Code Analysis product that allows organizations to automatically scan un-compiled / un-built code and identify hundreds of security vulnerabilities in all major coding languages. CxSAST is available as a standalone product and can be effectively integrated into the Software Development Lifecycle (SDLC) to streamline detection and remediation. CxSAST can be deployed on-premise in a private data center or hosted via a public cloud.

Whitepaper: I, II

Distributed Denial of Service (DDoS) attacks are ever-evolving and use a variety of technologies. To successfully combat these attacks, you need a dynamic, multi-layered security solution. FortiDDoS protects from both known and zero day attacks with very low latency. It’s easy to deploy and manage, and includes comprehensive reporting and analysis tools.

Information Not Available
OFFER
Free Demo

Learn more about Checkmarx.

Learn more about FortiDDoS
Learn more about Null Product
Sample Customers
YIT, Salesforce, Coca-Cola, SAP, U.S. Army, Liveperson, Playtech Case Study: Liveperson Implements Innovative Secure SDLCBlack Gold Regional Schools, Amadeus Hospitality, Jefferson County, Chunghwa Telecom, City of Boroondara, Dimension Data
Information Not Available
Top Industries
VISITORS READING REVIEWS
Financial Services Firm
25%
Manufacturing Company
22%
Comms Service Provider
7%
Government
6%
No Data Available
No Data Available
Company Size
REVIEWERS
Small Business
33%
Midsize Enterprise
17%
Large Enterprise
50%
VISITORS READING REVIEWS
Small Business
17%
Midsize Enterprise
10%
Large Enterprise
73%
No Data Available
No Data Available
Find out what your peers are saying about Checkmarx vs. FortiDDoS and others in Web Application Security.
Download now
304,717 professionals have used our research since 2012.
We monitor all Web Application Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.

Sign Up with Email