We performed a comparison between Checkmarx One and Fortinet FortiADC based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools."The value you can get out of the speedy production may be worth the price tag."
"We were using HPE Security Fortify to scan code for security vulnerabilities, but it can scan only after a successful compile. If the code has dependencies or build errors, the scan fails. With Checkmarx, pre-compile scanning is seamless. This allows us to scan more code."
"Checkmarx has helped us deliver more secure products. We are able to do static code analysis with the tool before shipping our code to production. When the integration is in the pipeline, this tool gives us early notifications on code fixes."
"Checkmarx pinpoints the vulnerability in the code and also presents the flow of malicious input across the application."
"The setup is fairly easy. We didn't struggle with the process at all."
"The product's most valuable feature is static code and supply chain effect analysis. It provides a lot of visibility."
"It can integrate very well with DAST solutions. So both of them are combined into an integrated solution for customers running application security."
"The feature that I have found most valuable is that its number of false positives is less than the other security application platforms. Its ease of use is another good feature. It also supports most of the languages."
"The user interface is very easy and integrates with Sandbox easily."
"The most valuable feature is its simplicity."
"The most valuable feature is the SSL offloading capacity."
"The product has flexible and interesting licensing options."
"The main feature that we use is GSLB (Global Server Load Balancing). GSLB makes the customer's network more reliable by scaling applications across multiple datacenters. GSLB as a disaster recovery solution can direct traffic based on site availability."
"From a technical perspective, it is the most scalable device from Fortinet."
"The GSLB, the DR side, is the best part. Because we had our main side in one city, we created another, and we had a complete MPLS over the internet. We used the GSLB and data loss for our business applications."
"TSL and SSL offloading are both very good features."
"I would like to see the rate of false positives reduced."
"Licensing models and Swift language support are the aspects in which this product needs to improve. Swift is a new language, in which major customers require support for lower prices."
"It would be really helpful if the level of confidence was included, with respect to identified issues."
"Checkmarx could improve the solution reports and false positives. The false positives could be reduced. For example, we have alerts that are tagged as vulnerabilities but when you drill down they are not."
"With Checkmarx, normally you need to use one tool for quality and you need to use another tool for security. I understand that Checkmarx is not in the parity space because it's totally different, but they could include some free features or recommendations too."
"They could work to improve the user interface. Right now, it really is lacking."
"The product can be improved by continuing to expand the application languages and frameworks that can be scanned for vulnerabilities. This includes expanded coverage for mobile applications as well as open-source development tools."
"One area for improvement in Checkmarx is pricing, as it's more expensive than other products."
"Setup could be easier. The company's homework is to redesign those menus to configure with the smallest number of steps."
"I think it would be helpful if Fortinet put more video examples on their cookbook site."
"There is a mismatch between the number of features they are offering and the device capacity on how much it can handle."
"The solution’s pricing could be improved."
"The configuration is relatively complex."
"The initial setup could be simplified."
"The solution should improve finding false positives and false negatives. There are a lot of false positives."
"The solution's WAF needs an upgrade because it is not as good as FortiWeb, VMware, F5, or Imperva."
Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while Fortinet FortiADC is ranked 8th in Application Delivery Controllers (ADC) with 19 reviews. Checkmarx One is rated 7.6, while Fortinet FortiADC is rated 7.8. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Fortinet FortiADC writes "High-level load balancing and routing protocols but scalability is limited to 200 gigabits". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas Fortinet FortiADC is most compared with F5 BIG-IP Local Traffic Manager (LTM), Fortinet FortiWeb, Citrix NetScaler, Kemp LoadMaster and HAProxy.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.