We performed a comparison between Checkmarx One and Kiuwan Insights based on real PeerSpot user reviews.
Find out what your peers are saying about Veracode, Checkmarx, OpenText and others in Static Code Analysis."The UI is user-friendly."
"The solution has good performance, it is able to compute in 10 to 15 minutes."
"It can integrate very well with DAST solutions. So both of them are combined into an integrated solution for customers running application security."
"The setup is very easy. There is a lot of information in the documents which makes the install not difficult at all."
"The most valuable feature is that it actually identifies the different criteria you can set to meet whatever standards you're trying to get your system accredited for."
"Vulnerability details is valuable."
"The product's most valuable feature is static code and supply chain effect analysis. It provides a lot of visibility."
"The UI is very intuitive and simple to use."
"I have found the interface to be perfect."
"Can help in reducing the number of false positives."
"The tool is currently quite static in terms of finding security vulnerabilities. It would be great if it was more dynamic and we had even more tools at our disposal to keep us safe. It would help if there was more scanning or if the process was more automated."
"If it is a very large code base then we have a problem where we cannot scan it."
"I would like to see the rate of false positives reduced."
"They can support the remaining languages that are currently not supported. They can also create a different model that can identify zero-day attacks. They can work on different patterns to identify and detect zero-day vulnerability attacks."
"I think the CxAudit tool has room for improvement. At the beginning you can choose a scan of a project, but in any event the project must be scanned again (wasting time)."
"Checkmarx has a slightly difficult compilation with the CI/CD pipeline."
"C, C++, VB and T-SQL are not supported by this product. Although, C and C++ were advertised as being supported."
"We want to have a holistic view of the portfolio-level dashboard and not just an individual technical project level."
"The solution is great, but improvement is needed in the number of lines of code allowed, that is the capacity. Pricing can be improved as well."
"The solution has issues detecting intrusive methods."
Earn 20 points
Checkmarx One is ranked 2nd in Static Code Analysis with 67 reviews while Kiuwan Insights is ranked 12th in Static Code Analysis. Checkmarx One is rated 7.6, while Kiuwan Insights is rated 4.0. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Kiuwan Insights writes "Protects problematic libraries; sorely lacking in customer services". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas Kiuwan Insights is most compared with .
See our list of best Static Code Analysis vendors.
We monitor all Static Code Analysis reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.