Checkmarx One vs ERPScan SMART Cybersecurity Platform comparison

Checkmarx and ERPScan are both solutions in the Application Security Tools category. Checkmarx is ranked #3 with an average rating of 8.3, while ERPScan is ranked #48. Checkmarx holds a 10.3% mindshare in AS, compared to ERPScan’s 0.2% mindshare. Additionally, 87% of Checkmarx users are willing to recommend the solution.

Checkmarx One

Read 71 Checkmarx One reviews

20,870 Views
16,905 Comparison Views

87% willing to recommend

ERPScan SMART Cybersecurity...

Read 1 ERPScan SMART Cybersecurity Platform review

240 Views
221 Comparison Views

0% willing to recommend

Checkmarx One

ERPScan SMART Cybersecurity...

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Checkmarx One and ERPScan SMART Cybersecurity Platform based on real PeerSpot user reviews.

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools.

To learn more, read our detailed Application Security Tools Report (Updated: July 2025).

Buyer's Guide

Application Security Tools

July 2025

Download the complete report

Helped 865,140 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Checkmarx One

Ranking in Application Security Tools

3rd

Average Rating

7.6

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Static Application Security Testing (SAST) (3rd), Vulnerability Management (23rd), Container Security (22nd), Static Code Analysis (3rd), API Security (4th), Dynamic Application Security Testing (DAST) (4th), DevSecOps (4th), Risk-Based Vulnerability Management (9th)

ERPScan SMART Cybersecurity...

Ranking in Application Security Tools

48th

Average Rating

0.0

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of August 2025, in the Application Security Tools category, the mindshare of Checkmarx One is 10.3%, down from 13.9% compared to the previous year. The mindshare of ERPScan SMART Cybersecurity Platform is 0.2%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Application Security Tools

Featured Reviews

Syed Hasan

Specialist Leader at Deloitte

Partner experiences excellent technical support and seamless initial setup

In my opinion, if we are able to extract or show the report, and because everything is going towards agent tech and GenAI, it would be beneficial if it could get integrated with our code base and do the fix automatically. It could suggest how the code base is written and automatically populate the source code with three different solution options to choose from. This would be really helpful.

Read full review

TundeOgunkoya

Consulting Partner, Cyber Security Delivery - Africa at DeltaGRiC Consulting

Good core scanning, a helpful GDPR assessment template and very good technical support

The core scanning, the scanning process, has got a very nice pass management module. It's fantastic. The last time we did it, the customer was trying to make the SAP system match the GDPR process. We were able to use it for that benchmark. It was very important. The GDPR assessment template that is being used in the process application benchmark and analyzing landscape came in very handy. It was very useful because it also gave notifications.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The tool's valuable features include integrating GPT and Copilot. Additionally, the UI web representation is very user-friendly, making navigation easy. GPT has made several improvements to my security code."

"I have seen a return on investment from Checkmarx One."

"The main thing we find valuable about Checkmarx is the ease of use. It's easy to initiate scans and triage defects."

"It's not an obstacle for developers. They can easily write their code and make it more secure with Checkmarx."

"The UI is very intuitive and simple to use."

"The solution allows us to create custom rules for code checks."

"It can integrate very well with DAST solutions. So both of them are combined into an integrated solution for customers running application security."

"One of the most valuable features is it is flexible."

More Checkmarx One pros

"The core scanning, the scanning process, has got a very nice pass management module. It's fantastic."

Cons

"The product's reporting feature could be better. The feature works well for developers, but reports generated to be shared with external parties are poor, it lacks the details one gets when viewing the results directly from the Checkmarx One platform."

"We would like to be able to run scans from our local system, rather than having to always connect to the product server, which is a longer process."

"Updating and debugging of queries is not very convenient."

"I really would like to integrate it as a service along with the SAP HANA Cloud Platform. It will then be easy to use it directly as a service."

"We are trying to find out if there is a way to identify the run-time null values. I am analyzing different tools to check if there is any tool that supports run-time null value identification, but I don't think any of the tools in the market currently supports this feature. It would be helpful if Checkmarx can identify and throw an exception for a null value at the run time. It would make things a lot easier if there is a way for Checkmarx to identify nullable fields or hard-coded values in the code. The accessibility for customized Checkmarx rules is currently limited and should be improved. In addition, it would be great if Checkmarx can do static code and dynamic code validation. It does a lot of security-related scanning, and it should also do static code and dynamic code validation. Currently, for security-related validation, we are using Checkmarx, and for static code and dynamic code validation, we are using some other tools. We are spending money on different tools. We can pay a little extra money and use Checkmarx for everything."

"Checkmarx has a slightly difficult compilation with the CI/CD pipeline."

"I think the CxAudit tool has room for improvement. At the beginning you can choose a scan of a project, but in any event the project must be scanned again (wasting time)."

"The plugins for the development environment have room for improvements such as for Android Studio and X code."

More Checkmarx One cons

"The anomaly detection could be improved."

Pricing and Cost Advice

"We're using a commercial version of Checkmarx, and we paid for the solution for one year. The price is high and could be reduced."

"It is not expensive, but sometimes, their pricing model or licensing model is not very clear. There are similar variables, such as projects or developers, and sometimes, it is a little bit confusing."

"Before implementing the product I would evaluate if it is really necessary to scan so many different languages and frameworks. If not, I think there must be a cheaper solution for scanning Java-only applications (which are 90% of our applications)."

"Checkmarx is not a cheap scanning tool, but none of the security tools are cheap. Checkmarx is a powerful scanning tool, and it’s essential to have one of these products."

"The interface used to create custom rules comes at an additional cost."

"We have a subscription license that is on a yearly basis, and it's a pretty competitive solution."

"We have purchased an annual license to use this solution. The price is reasonable."

"For around 250 users or committers, the cost is approximately $500,000."

More Checkmarx One pricing and cost advice

Information not available

See which vendors are best for you

Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.

See recommendations

865,140 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

20%

Computer Software Company

14%

Manufacturing Company

10%

Government

No data available

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What alternatives are there for Fortify WebInspect and Fortify SCA?

I would like to recommend Checkmarx. With Checkmarx, you are able to have an all in one solution for SAST and SCA as well. Veracode is only a cloud solution. Hope this helps.

See all answers

What do you like most about Checkmarx?

Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%.

See all answers

What is your experience regarding pricing and costs for Checkmarx?

The pricing is relatively expensive due to the product's quality and performance, but it is worth it.

See all answers

Ask a question

Earn 20 points

Comparisons

SonarQube Server (formerly SonarQube) vs Checkmarx One

Compared 40% of the time

Veracode vs Checkmarx One

Compared 9% of the time

Checkmarx SAST vs Checkmarx One

Compared 7% of the time

OpenText Core Application Security vs Checkmarx One

Compared 5% of the time

OWASP Zap vs Checkmarx One

Compared 5% of the time

More Checkmarx One Competitors

Tenable.io Web Application Scanning vs ERPScan SMART Cybersecurity Platform

Compared 100% of the time

More ERPScan SMART Cybersecurity Platform Competitors

Product Reports

Buyer's Guide

Checkmarx One

August 2025

Download Checkmarx One product report

Buyer's Guide

Application Security Tools

July 2025

ERPScan SMART Cybersecurity Platform report

Download ERPScan SMART Cybersecurity Platform product report

Overview

Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.

Checkmarx One offers comprehensive application scanning across the SDLC:

Static Application Security Testing (SAST)
Software Composition Analysis (SCA)
API security
Dynamic Application Security Testing (DAST)
Container security
IaC security
Correlation, prioritization, and risk management
Codebashing secure code training
AI security
Tech partnerships extending AppSec into runtime analysis
Developer tool integrations including: CI/CD tools, development frameworks, feedback tools, IDEs, programming languages and SCMs

Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.

Checkmarx

ERPScan’s primary mission is to bridge the gap between technical and business security, and provide solutions to evaluate and secure SAP and Oracle ERP systems and business-critical applications from both, cyber-attacks as well as internal fraud.

ERPScan

Sample Customers

YIT, Salesforce, Coca-Cola, SAP, U.S. Army, Liveperson, Playtech Case Study: Liveperson Implements Innovative Secure SDLC

Wired

Buyer's Guide

Application Security Tools

July 2025

Download Free Report

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools. Updated: July 2025.

DOWNLOAD NOW

865,140 professionals have used our research since 2012.

See our list of best Application Security Tools vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.