We performed a comparison between Checkmarx One and NGINX App Protect based on real PeerSpot user reviews.
Find out what your peers are saying about Noname Security, Salt Security, Checkmarx and others in API Security."It is a stable product."
"The solution improved the efficiency of our code security reviews. It helps tremendously because it finds hundreds of potential problems sometimes."
"We were using HPE Security Fortify to scan code for security vulnerabilities, but it can scan only after a successful compile. If the code has dependencies or build errors, the scan fails. With Checkmarx, pre-compile scanning is seamless. This allows us to scan more code."
"The feature that I have found most valuable is that its number of false positives is less than the other security application platforms. Its ease of use is another good feature. It also supports most of the languages."
"The most valuable features of Checkmarx are the SCA module and the code-checking module. Additionally, the solutions are explanatory and helpful."
"The product's most valuable feature is static code and supply chain effect analysis. It provides a lot of visibility."
"Helps us check vulnerabilities in our SAP Fiori application."
"The ability to track the vulnerabilities inside the code (origin and destination of weak variables or functions)."
"NGINX App Protect's best features are auto-learning, which creates a profile of applications that are deployed, bot protection, and force protection, which lets you configure your brute force policy and alert for and prevent brute force attacks."
"It has the best documentation features."
"The most valuable feature is that I can establish different services from the firewall."
"I tested specific features and evaluated the solution against the Web Application Firewall. I conducted research to test different detection percentages. I did not use it directly for protection but for evaluation purposes."
"WAF is useful to track mitigation, inclusion, prevention, and the parametric firewall."
"It's very easy to deploy."
"NGINX App Protect has complete control over the HTTP session."
"We were looking for a product that is capable of complete automation and a container based solution. It's working."
"They could work to improve the user interface. Right now, it really is lacking."
"Implementing a blackout time for any user or teams: Needs improvement."
"Checkmarx has a slightly difficult compilation with the CI/CD pipeline."
"Its pricing model can be improved. Sometimes, it is a little complex to understand its pricing model."
"C, C++, VB and T-SQL are not supported by this product. Although, C and C++ were advertised as being supported."
"The product's reporting feature could be better. The feature works well for developers, but reports generated to be shared with external parties are poor, it lacks the details one gets when viewing the results directly from the Checkmarx One platform."
"Meta data is always needed."
"I think the CxAudit tool has room for improvement. At the beginning you can choose a scan of a project, but in any event the project must be scanned again (wasting time)."
"It's challenging if you need to go for a high throughput."
"The product's user interface is an area with shortcomings as it can be quite confusing for users, making it an area where improvements are required."
"As far as scalability, it takes a long time for deployment."
"The dashboard could provide a more comprehensive view of the status of the connections."
"Its technical support could be better."
"Right now, the tool doesn't provide an option revolving around update feeds, specifically the signature update option in the UI."
"I encountered issues with NGINX App Protect while trying to upgrade custom rules."
"NGINX App Protect could improve security."
Checkmarx One is ranked 3rd in API Security with 67 reviews while NGINX App Protect is ranked 4th in API Security with 19 reviews. Checkmarx One is rated 7.6, while NGINX App Protect is rated 8.2. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of NGINX App Protect writes "Capable of complete automation but is costly ". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas NGINX App Protect is most compared with AWS WAF, Microsoft Azure Application Gateway, F5 Advanced WAF, Fortinet FortiWeb and Cloudflare Web Application Firewall.
See our list of best API Security vendors.
We monitor all API Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.