We performed a comparison between Checkmarx One and Citrix Web App and API Protection based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools."It can integrate very well with DAST solutions. So both of them are combined into an integrated solution for customers running application security."
"Most valuable features include: ease of use, dashboard. interface and the ability to report."
"The SAST component was absolutely 100% stable."
"The solution communicates where to fix the issue for the purpose of less iterations."
"We use the solution to validate the source code and do SAST and security analysis."
"The value you can get out of the speedy production may be worth the price tag."
"Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%."
"Both automatic and manual code review (CxQL) are valuable."
"We have good customer support."
"When our primary link goes down I can still get to my Cisco devices and the NetScaler devices on-prem because of the SDN solution. If the internet connection at one of the branches goes down, we can still route them, they still get internet based on the SDN solution through one of the other sites. They can carry on working."
"I like the solution's simplicity compared to Citrix's on-prem solutions."
"I prefer this solution because of its user-friendly interface. I find it simple and close to what I am currently using, which is Citrix Fortiva Access for Multi-Factor Authentication. I appreciate the familiar user interface and troubleshooting tools it offers."
"The stability is good. If there is a problem, the load will be shifted to other sites automatically, which has been a good experience for us."
"The work balancing applications are the most valuable feature."
"Citrix Web App API Protection allows you to enable a blocking mode"
"The solution's technical support is good."
"With Checkmarx, normally you need to use one tool for quality and you need to use another tool for security. I understand that Checkmarx is not in the parity space because it's totally different, but they could include some free features or recommendations too."
"I really would like to integrate it as a service along with the SAP HANA Cloud Platform. It will then be easy to use it directly as a service."
"The pricing can get a bit expensive, depending on the company's size."
"We would like to be able to run scans from our local system, rather than having to always connect to the product server, which is a longer process."
"It would be really helpful if the level of confidence was included, with respect to identified issues."
"Micro-services need to be included in the next release."
"I expect application security vendors to cover all aspects of application security, including SAST, DAST, and even mobile application security testing. And it would be much better if they provided an on-premises and cloud option for all these main application security features."
"Its pricing model can be improved. Sometimes, it is a little complex to understand its pricing model."
"The user interface could be more friendly. Some wizards and other documentation for administrators, as well as some use cases, helps us to understand the solution."
"Security could be improved because then I can get rid of my Cisco firewalls. If they improve the security then I could run my security, my proxy, my firewalling and my SDN solution on one device instead of having to have multiple devices."
"An area for improvement in Citrix Web App and API Protection is for it to give real-time notifications and alerts. It would be practical if the solution warns you if there's an attack or if the load or traffic volume increases or decreases. An additional feature I'd like to see in Citrix Web App and API Protection is a prediction or artificial intelligence on what is happening, for example, attacks."
"I am not an expert in this solution, but simplicity and user-friendly interfaces are crucial for me. I would appreciate advice from Citrix, particularly in the form of an interactive guide for API protection. It would be helpful if they could provide specific points and recommendations for cybersecurity, indicating areas that need attention or improvement. I find such interactive guidance valuable."
"The product could be improved by making it easier to use and easier to implement."
"Their upgrades are not very backward compatible, and sometimes they mess up."
"The configuration for its web application firewall is complicated."
"The solution's pricing is a big concern and should be improved."
More Citrix Web App and API Protection Pricing and Cost Advice →
Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while Citrix Web App and API Protection is ranked 20th in Web Application Firewall (WAF) with 10 reviews. Checkmarx One is rated 7.6, while Citrix Web App and API Protection is rated 8.0. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Citrix Web App and API Protection writes "Has a good graphic user interface for beginners, but lacks real-time notifications, alerts, and artificial intelligence". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas Citrix Web App and API Protection is most compared with F5 Advanced WAF, Azure Front Door, Fortinet FortiWeb, AWS WAF and Akamai App and API Protector.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
