We performed a comparison between Checkmarx One and NSFOCUS Web Application Firewall based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools."It allows for SAST scanning of uncompiled code. Further, it natively integrates with all key repos formats (Git, TFS, SVN, Perforce, etc)."
"The only thing I like is that Checkmarx does not need to compile."
"The most valuable feature is the simple user interface."
"One of the most valuable features is it is flexible."
"Checkmarx has helped us deliver more secure products. We are able to do static code analysis with the tool before shipping our code to production. When the integration is in the pipeline, this tool gives us early notifications on code fixes."
"The solution is scalable, but other solutions are better."
"The most valuable feature is the application tracking reporting."
"The main thing we find valuable about Checkmarx is the ease of use. It's easy to initiate scans and triage defects."
"Since we are using this tool for protection purposes we really appreciate the hybrid security abilities; the main idea here is that we powerful protection our application needs."
"The pricing can get a bit expensive, depending on the company's size."
"There is nothing particular that I don't like in this solution. It can have more integrations, but the integrations that we would like are in the roadmap anyway, and they just need to deliver the roadmap. What I like about the roadmap is that it is going where it needs to go. If I were to look at the roadmap, there is nothing that is jumping out there that says to me, "Yeah. I'd like something else on the roadmap." What they're looking to deliver is what I would expect and forecast them to deliver."
"I would like to see the tool’s pricing improved."
"The tool is currently quite static in terms of finding security vulnerabilities. It would be great if it was more dynamic and we had even more tools at our disposal to keep us safe. It would help if there was more scanning or if the process was more automated."
"The resolutions should also be provided. For example, if the user faces any problem regarding an installation due to the internal security policies of their company, there should be a resolution offered."
"Updating and debugging of queries is not very convenient."
"We have received some feedback from our customers who are receiving a large number of false positives."
"It provides us with quite a handful of false positive issues. If Checkmarx could reduce this number, it would be a great tool to use."
"There is a need for expanded licensing terms and options. There's also a need for improved and more agile customization features. The user needs to be able to manage each policy as required; the functionality needs to empower the user. There should be a complete suite of desktop provider policies available to users. Overall, it needs to be more user-friendly."
Earn 20 points
Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while NSFOCUS Web Application Firewall is ranked 41st in Web Application Firewall (WAF). Checkmarx One is rated 7.6, while NSFOCUS Web Application Firewall is rated 7.0. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of NSFOCUS Web Application Firewall writes "Offers Application Protection Against Web Attacks". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas NSFOCUS Web Application Firewall is most compared with .
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.