Checkmarx One vs WhiteHat Dynamic comparison

The compared Checkmarx and Black Duck solutions aren't in the same category. Checkmarx is ranked #3 in AS , with an average rating of 7.7, and holds a 10.3% mindshare in the category. Black Duck is ranked #7 in DAST , and holds a 6.1% mindshare. Additionally, 87% of Checkmarx users are willing to recommend the solution, compared to 50% of Black Duck users who would recommend it.

Checkmarx One

Read 70 Checkmarx One reviews

20,037 Views
13,630 Comparison Views

87% willing to recommend

WhiteHat Dynamic

Read 2 WhiteHat Dynamic reviews

158 Views
117 Comparison Views

50% willing to recommend

Checkmarx One

WhiteHat Dynamic

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Checkmarx One and WhiteHat Dynamic based on real PeerSpot user reviews.

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools.

To learn more, read our detailed Application Security Tools Report (Updated: May 2025).

Buyer's Guide

Application Security Tools

May 2025

Download the complete report

Helped 850,760 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Checkmarx One

Average Rating

7.6

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Application Security Tools (3rd), Static Application Security Testing (SAST) (3rd), Vulnerability Management (24th), Static Code Analysis (2nd), API Security (4th), DevSecOps (2nd), Risk-Based Vulnerability Management (10th)

WhiteHat Dynamic

Average Rating

8.0

Number of Reviews

Ranking in other categories

Dynamic Application Security Testing (DAST) (7th)

Mindshare comparison

While both are Quality Assurance solutions, they serve different purposes. Checkmarx One is designed for Application Security Tools and holds a mindshare of 10.3%, down 14.8% compared to last year.
WhiteHat Dynamic, on the other hand, focuses on Dynamic Application Security Testing (DAST), holds 6.1% mindshare, up 5.3% since last year.

Application Security Tools

Dynamic Application Security Testing (DAST)

Featured Reviews

Rohit Kesharwani

Manager, Engineering at 7-Eleven

Provides good security analysis and security identification within the source code

We integrate Checkmarx into our software development cycle using GitLab's CI/CD pipeline. Checkmark has been the most helpful for us in the development stage. The solution's incremental scanning feature has impacted our development speed. The solution's vulnerability detection is around 80% to 90% accurate. I would recommend Checkmarx to other users because it is one of the good tools for doing security analysis and security identification within the source code. Overall, I rate Checkmarx a nine out of ten.

Read full review

it_user245412

Executive Vice President, Operations at a computer software company with 51-200 employees

The product and customer service is extremely efficient but I would like to see more research and code examples.

* The continuous online scanning capabilities and reporting features. * The SaaS product features accessible from a browser make managing our online systems easy. * The ability to review security items quickly along with being able to retest vulnerabilities on our schedule make the Sentinel product an invaluable tool for our company’s product security requirements.

Read full review

See which vendors are best for you

Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.

See recommendations

850,760 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

21%

Computer Software Company

14%

Manufacturing Company

10%

Government

Computer Software Company

16%

Financial Services Firm

13%

Government

13%

Healthcare Company

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What alternatives are there for Fortify WebInspect and Fortify SCA?

I would like to recommend Checkmarx. With Checkmarx, you are able to have an all in one solution for SAST and SCA as well. Veracode is only a cloud solution. Hope this helps.

See all answers

What do you like most about Checkmarx?

Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%.

See all answers

What is your experience regarding pricing and costs for Checkmarx?

The pricing is relatively expensive due to the product's quality and performance, but it is worth it.

See all answers

Ask a question

Earn 20 points

Comparisons

SonarQube Server (formerly SonarQube) vs Checkmarx One

Compared 39% of the time

Veracode vs Checkmarx One

Compared 12% of the time

Fortify on Demand vs Checkmarx One

Compared 6% of the time

Checkmarx SAST vs Checkmarx One

Compared 5% of the time

OWASP Zap vs Checkmarx One

Compared 5% of the time

More Checkmarx One Competitors

Invicti vs WhiteHat Dynamic

Compared 38% of the time

Veracode vs WhiteHat Dynamic

Compared 26% of the time

PortSwigger Burp Suite Professional vs WhiteHat Dynamic

Compared 18% of the time

SonarQube Server (formerly SonarQube) vs WhiteHat Dynamic

Compared 18% of the time

More WhiteHat Dynamic Competitors

Product Reports

Buyer's Guide

Checkmarx One

May 2025

Download Checkmarx One product report

Buyer's Guide

Dynamic Application Security Testing (DAST)

April 2025

Download WhiteHat Dynamic product report

Also Known As

No data available

Sentinel Dynamic, WhiteHat Security Application Security Testing, Synopsys WhiteHat Dynamic

Overview

Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.

Checkmarx One offers comprehensive application scanning across the SDLC:

Static Application Security Testing (SAST)
Software Composition Analysis (SCA)
API security
Dynamic Application Security Testing (DAST)
Container security
IaC security
Correlation, prioritization, and risk management
Codebashing secure code training
AI security
Tech partnerships extending AppSec into runtime analysis
Developer tool integrations including: CI/CD tools, development frameworks, feedback tools, IDEs, programming languages and SCMs

Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.

Checkmarx

Continuous Dynamic^™ is a powerful dynamic application security testing (DAST) solution that rapidly and accurately finds vulnerabilities in websites and applications. With this DAST solution, you can perform scans and testing at the scale and speed modern enterprises need to identify security risks across your entire application portfolio.

Black Duck

Sample Customers

YIT, Salesforce, Coca-Cola, SAP, U.S. Army, Liveperson, Playtech Case Study: Liveperson Implements Innovative Secure SDLC

Information Not Available

Buyer's Guide

Application Security Tools

May 2025

Download Free Report

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools. Updated: May 2025.

DOWNLOAD NOW

850,760 professionals have used our research since 2012.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.