Checkmarx One and NGINX App Protect compete in the cybersecurity and application security domain. Checkmarx One seems to have the upper hand due to its comprehensive code-level analysis capabilities, while NGINX App Protect offers robust application-level protections.
Features: Checkmarx One is recognized for its comprehensive code analysis, vulnerability tracking capabilities, and support for various programming languages. It integrates seamlessly with common version control systems and identifies vulnerabilities in both compiled and uncompiled code. NGINX App Protect excels in providing security with features like reverse proxy capabilities, traffic management, and comprehensive application protection. It offers flexibility in policy configurations.
Room for Improvement: Checkmarx One users note the need to reduce false positive rates, improve role management, and expand language support for emerging languages. Licensing complexity and ease of integration with customized third-party systems are also concerns. NGINX App Protect could improve its automation capabilities, streamline policy settings, and enhance protection against DoS attacks. Better documentation and simplified configuration processes are areas for development.
Ease of Deployment and Customer Service: Checkmarx One provides deployment options in on-premises, hybrid, and public cloud environments, though customization may require support. Its technical support receives mixed reviews. NGINX App Protect offers flexible deployment and is straightforward for IT teams familiar with command-line configurations. Its customer service is generally well-regarded, and ease of use is noted once configured.
Pricing and ROI: Checkmarx One is effective but expensive due to its complex licensing structure, offering significant ROI by preventing security breaches. NGINX App Protect also has a premium price but is viewed as cost-effective with a lower total cost of ownership. It provides value through flexibility and competitive pricing within its market. Both solutions offer value, with Checkmarx focusing on development security and NGINX on application protection.
They were quick and efficient when we had issues.
I would rate the stability of this solution a nine on a scale of 1 to 10 where one is low stability and 10 is high.
It is a quality solution, and I would rate its stability as eight out of ten.
It could suggest how the code base is written and automatically populate the source code with three different solution options to choose from.
There was more information from F5 regarding hardware requirements and specifications to deploy the service.
My experience with the initial setup of Checkmarx One is straightforward; it is not complex compared to other tools that I have tried.
The most valuable feature is the ability to operate in a DevOps environment and to be configured through API and pipeline by the developers themselves.
Detecting bots and blocking IPs have proven effective for securing applications.
Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.
Checkmarx One offers comprehensive application scanning across the SDLC:
Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.
NGINX App Protect application security solution combines the efficacy of advanced F5 web application firewall (WAF) technology with the agility and performance of NGINX Plus. The solution runs natively on NGINX Plus and addresses some of the most difficult challenges facing modern DevOps environments:
NGINX App Protect offers:
We monitor all API Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
