We performed a comparison between Checkmarx One and Pentera based on real PeerSpot user reviews.
Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Most valuable features include: ease of use, dashboard. interface and the ability to report."
"The ability to track the vulnerabilities inside the code (origin and destination of weak variables or functions)."
"The features and technologies are very good. The flexibility and the roadmap have also been very good. They're at the forefront of delivering the additional capabilities that are required with cloud delivery, etc. Their ability to deliver what customers require and when they require is very important."
"The identification of verification-related security vulnerabilities is really important and one of the key things. It also identifies vulnerabilities for any kind of third-party tool coming into the system or any third-party tools that you are using, which is very useful for avoiding random hacking."
"What I like best about Checkmarx is that it has fewer false positives than other products, giving you better results."
"The only thing I like is that Checkmarx does not need to compile."
"Less false positive errors as compared to any other solution."
"Vulnerability details is valuable."
"Maybe there are some remediation steps on the website, we can mask sensitive information on the website better."
"The product is easy to use."
"The most valuable feature of Pentera is that you can do continuous vulnerability assessment, which is automated."
"The vulnerability scanner, exploit achievements, and remediation actions are all great."
"What I like the most about Pentera is its solution-oriented approach."
"Checkmarx is not good because it has too many false positive issues."
"I think the CxAudit tool has room for improvement. At the beginning you can choose a scan of a project, but in any event the project must be scanned again (wasting time)."
"Checkmarx needs to improve the false positives and provide more accuracy in identifying vulnerabilities. It misses important vulnerabilities."
"I would like to see the tool’s pricing improved."
"If it is a very large code base then we have a problem where we cannot scan it."
"Implementing a blackout time for any user or teams: Needs improvement."
"The product can be improved by continuing to expand the application languages and frameworks that can be scanned for vulnerabilities. This includes expanded coverage for mobile applications as well as open-source development tools."
"Its user interface could be improved and made more friendly."
"The price could be improved."
"Pentera's general dashboards could be improved and made more specific in terms of vulnerabilities that I'm discovering."
"Maybe scalability. I know that the Pentera right now is high level in order to scan big deals over 500 IPs and not less, and not less. That can be more granular. This will be useful."
"There is room for improvement in virtualization compatibility."
"The vulnerability scanner, exploit achievements, and remediation actions are all great."
Checkmarx One is ranked 11th in Vulnerability Management with 67 reviews while Pentera is ranked 14th in Vulnerability Management with 5 reviews. Checkmarx One is rated 7.6, while Pentera is rated 8.2. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Pentera writes "A stable solution that can be used to do continuous and automated vulnerability assessments". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas Pentera is most compared with Cymulate, Tenable Nessus, Horizon3.ai, Picus Security and Qualys VMDR. See our Checkmarx One vs. Pentera report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.