CodeSonar vs Klocwork comparison

CodeSecure and Perforce are both solutions in the Application Security Tools category. CodeSecure is ranked #30, while Perforce is ranked #19 with an average rating of 8.2. CodeSecure holds a 1.5% mindshare in AS, compared to Perforce’s 1.4% mindshare. Additionally, 87% of CodeSecure users are willing to recommend the solution, compared to 93% of Perforce users who would recommend it.

CodeSonar

Read 7 CodeSonar reviews

2,608 Views
1,800 Comparison Views

87% willing to recommend

Klocwork

Read 25 Klocwork reviews

3,353 Views
1,878 Comparison Views

93% willing to recommend

CodeSonar

Klocwork

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

Klocwork and CodeSonar are leading tools in static code analysis. Based on user reviews, CodeSonar is preferred for its extensive features and justified pricing, even though Klocwork is favored for its competitive pricing and support.

Features: Klocwork supports multiple programming languages, integrates easily with existing systems, and is recognized for comprehensive language support. CodeSonar provides thorough analysis, has high accuracy in detecting potential vulnerabilities, and offers superior detection abilities.

Room for Improvement: Klocwork could improve in processing speed, reduce false positives, and enhance performance. CodeSonar needs a more intuitive configuration process, improved documentation, and simplified user interaction.

Ease of Deployment and Customer Service: Klocwork has an easy deployment process, but users desire more proactive customer service. CodeSonar's complex deployment is balanced by responsive support, providing effective guidance.

Pricing and ROI: Klocwork provides competitive setup costs and reasonable ROI based on integration needs. CodeSonar's higher cost is balanced by a comprehensive feature set and detailed analysis, making it a justified investment for thorough code evaluation.

To learn more, read our detailed CodeSonar vs. Klocwork Report (Updated: September 2025).

Buyer's Guide

CodeSonar vs. Klocwork

September 2025

Download the complete report

Helped 868,787 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

CodeSonar

Ranking in Application Security Tools

30th

Ranking in Static Code Analysis

10th

Average Rating

8.2

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

No ranking in other categories

Klocwork

Ranking in Application Security Tools

19th

Ranking in Static Code Analysis

6th

Average Rating

8.0

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Static Application Security Testing (SAST) (17th)

Mindshare comparison

As of October 2025, in the Application Security Tools category, the mindshare of CodeSonar is 1.5%, up from 1.1% compared to the previous year. The mindshare of Klocwork is 1.4%, down from 1.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Application Security Tools Market Share Distribution
Product	Market Share (%)
Klocwork	1.4%
CodeSonar	1.5%
Other	97.1%

Application Security Tools

Featured Reviews

Mathieu ALBRESPY

Intigration Developer at ez-Wheel

Nice interface, quick to deploy, and easy to expand

This is the first time I've used this kind of software. It was the only one we could apply to analyze with MISRA rules. At my new company, I tried to use Klocwork. I tried to use it, just once so I cannot compare it exactly with CodeSonar. I also have a plugin for my Visual Studio and I try to make it work. It's not easy, however, I don't think that we have this kind of functionality with CodeSonar. It can do some incremental analysis. However, since this feature is also available on CodeSonar, it would be a good idea to have a plugin on Visual Studio just to have a quick analysis.

Read full review

AnirbanSarkar

Head - Solution Management Group at Meteonic Innovation Pvt. Ltd.

Lets you find defects during the development phase, so you don't have to wait till the development is over to find and address flaws

What needs improvement in Klocwork, compared to other products in the market, is the dashboard or reporting mechanisms that need to be a bit more flexible. The Klocwork dashboard could be improved. Though it's good, it's not as good as some of the other products in the market, which is a problem. The reporting could be more detailed and easier to sort out because sorting in Klocwork could be a bit more time-consuming, mainly when sorting defects based on filters, compared to how it's done on other tools such as Coverity. What I'd like added in the next release of Klocwork is the peer code review Cahoots which used to be a part of Klocwork, and the architecture analysis and both have been taken out of Klocwork. I found the two critical for specific deployments, so if those can be brought back to Klocwork, that would be very good.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable features of CodeSonar were all the categorized classes provided, and reports of future bugs which might occur in the production code. Additionally, I found the buffer overflow and underflow useful."

"There is nice functionality for code surfing and browsing."

"CodeSonar’s most valuable feature is finding security threats."

"It has been able to scale."

"The most valuable feature of CodeSonar is the catching of dead code. It is helpful."

"What I like best about CodeSonar is that it has fantastic speed, analysis and configuration times. Its detection of all runtime errors is also very good, though there were times it missed a few. The configuration of logs by CodeSonar is also very fantastic which I've not seen anywhere else. I also like the GUI interface of CodeSonar because it's very user friendly and the tool also shows very precise logs and results."

"The tool is very good for detecting memory leaks."

"The most valuable feature is the Incremental analysis."

"There is a central Klocwork server at our headquarter in France so we connect the client directly to the server on-premises remotely."

"The ability to create custom checkers is a plus."

"Technical support is quite good."

"Klocwork is user-friendly, with a client-server architecture that provides all needed compliance."

"The most valuable feature of Klocwork is its reduced setup time."

"The best advantage of Klocwork is the reduced setup time."

"The most valuable feature of Klocwork is its reduced setup time."

More Klocwork pros

Cons

"In a future release, the solution should upgrade itself to the current trends and differentiate between the languages. If there are any classifications that can be set for these programming languages that would be helpful rather than having everything in the generic category."

"The scanning tool for core architecture could be improved."

"There could be a shared licensing model for the users."

"It was expensive."

"In terms of areas for improvement, the use case for CodeSonar was good, but compared to other tools, it seems CodeSonar isn't a sound static analysis tool, and this is a major con I've seen from it. Right now, in the market, people prefer sound static analysis tools, so I would have preferred if CodeSonar was developed into a sound static analysis tool formally, in terms of its algorithms, so then you can see it extensively used in the market because at the moment, here in India, only fifty to sixty customers use CodeSonar. If the product is developed into a sound static analysis tool, it could compete with Polyspace, and from its current fifty customers, that number could go up to a hundred."

"It would be beneficial for the solution to include code standards and additional functionality for security."

"CodeSonar could improve by having better coding rules so we did not have to use another solution, such as MISRA C."

"What needs improvement in Klocwork, compared to other products in the market, is the dashboard or reporting mechanisms that need to be a bit more flexible. The Klocwork dashboard could be improved. Though it's good, it's not as good as some of the other products in the market, which is a problem. The reporting could be more detailed and easier to sort out because sorting in Klocwork could be a bit more time-consuming, mainly when sorting defects based on filters, compared to how it's done on other tools such as Coverity."

"Even though it does the job, there's room for feature enhancements, such as integrations with Git for better tracking and notifications."

"We'd like to see integration with Agile DevOps and Agile methodologies."

"I believe it should support more languages, such as Python and JavaScript."

"Now the only issue we have is that whenever we need to get the code we have to build it first. Then we can get the report."

"Every update that we receive requires of us a lengthy and involved process."

"Customers using different static analysis tools report more issues than with Klocwork, indicating that Klocwork's engine is not as superior."

"There are too many warnings, and it requires expertise to determine the correct category for them."

More Klocwork cons

Pricing and Cost Advice

"Our organization purchased a license to use the solution."

"The solution's price depends on the number of licenses needed and the source code for the project."

"Pricing is a bit costly."

"The application’s pricing is high compared to other tools."

"There are other solutions on the market such as Microsoft Visual Studio. They have been adding more static code analysis features that come for free. It is getting better all the time. That is one of the possibilities is that we've been considering that we may stop using the Klocwork because it doesn't give us any added value."

"This solution offers competitive pricing."

"The limitation that we have is that Klocwork is licensed to certain programs, and if you want to license them to other programs, you have to pay more money."

"The pricing for Klocwork is very competitive if you compare it from apple to apple. It has competitive pricing regarding the licensing model and the per-license cost. Klocwork isn't a high-end investment for anyone deploying it; even SMBs can afford it. The Klocwork cost per user would depend on the license type, so I'm unable to mention a ballpark figure because it would depend on the type of installation and how the deployment will be, and the nodes to give an accurate calculation or figure. The total price depends on the package, so my company could never publish pricing for Klocwork on the website. My team first collects information from potential clients on the deployment scenario, project environment, etc., before suggesting a package for Klocwork. My rating for Klocwork in terms of pricing is a five because of its flexible license models. There's a license model for every type of organization, whether small, midsize, or enterprise, so it's a five out of five for me."

"When it comes to licensing, the solution has two packages, one for a fixed and the other for a floating server, with the former being more cost effective than the latter."

"Licensing fees are paid annually, but they also have a perpetual license."

"Klocwork is still tight on their licensing. If Klocwork would loosen up on the licensing, and where the license could be used, and how many different programs could be run on it, then we have several development programs that I would love to be able to use it for going forward."

"Klocwork should not to be quite so heavy handed on the licensing for very specific programs."

See which vendors are best for you

Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.

See recommendations

868,787 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Manufacturing Company

23%

University

11%

Computer Software Company

10%

Financial Services Firm

Manufacturing Company

26%

Computer Software Company

13%

Comms Service Provider

Transportation Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	1
Large Enterprise	2

By reviewers
Company Size	Count
Small Business	12
Midsize Enterprise	2
Large Enterprise	12

Questions from the Community

Ask a question

Earn 20 points

What is your experience regarding pricing and costs for Klocwork?

Klocwork's pricing seems attractive, as it uses a per-user license model that does not have a lot of overhead.

See all answers

What needs improvement with Klocwork?

One area for improvement is that when customers use different static analysis tools, they report more issues compared to Klocwork. The static analysis engine of Klocwork has areas that need improve...

See all answers

What is your primary use case for Klocwork?

I work on tools such as Klocwork, LDRA, as well as Jira and Confluence, focusing more on the software quality assurance aspect. We use Klocwork for coding and aggregate checks. We use it for static...

See all answers

Comparisons

SonarQube Server (formerly SonarQube) vs CodeSonar

Compared 45% of the time

Coverity Static vs CodeSonar

Compared 27% of the time

Polyspace Code Prover vs CodeSonar

Compared 9% of the time

Axivion Static Code Analysis vs CodeSonar

Compared 4% of the time

OpenText Static Application Security Testing vs CodeSonar

Compared 3% of the time

More CodeSonar Competitors

Coverity Static vs Klocwork

Compared 28% of the time

SonarQube Server (formerly SonarQube) vs Klocwork

Compared 27% of the time

Polyspace Code Prover vs Klocwork

Compared 14% of the time

Helix QAC vs Klocwork

Compared 6% of the time

Parasoft SOAtest vs Klocwork

Compared 2% of the time

More Klocwork Competitors

Product Reports

Buyer's Guide

Application Security Tools

September 2025

Download CodeSonar product report

Buyer's Guide

Klocwork

September 2025

Download Klocwork product report

Overview

GrammaTech enables organizations to develop software applications more efficiently, on-budget, and on-schedule by helping to eliminate harmful defects that can cause system failures, enable data breaches, and ultimately increase corporate liabilities in today’s connected world. GrammaTech is the developer of CodeSonar, the most powerful source and binary code analysis solution available today. Extraordinarily precise, CodeSonar finds, on average, 2 times more serious defects in software than other static analysis solutions. Designed for organizations with zero tolerance for defects and vulnerabilities in their applications, CodeSonar provides static analysis for applications where reliability and security are paramount - widely used by software developers in avionics, medical, automotive, industrial control, and other mission-critical applications. Some of GrammaTech's customers include Toyota, GE, Hyundai, Kawasaki, LG, Lockheed Martin, NASA, Northrop Grumman, Panasonic, and Samsung.

CodeSecure

Klocwork detects security, safety, and reliability issues in real-time by using this static code analysis toolkit that works alongside developers, finding issues as early as possible, and integrates with teams, supporting continuous integration and actionable reporting.

Perforce

Sample Customers

Viveris, Micrel Medical Devices, Olympus, SOFTEQ, SONY

ACCESS Co Ltd, Risk-AI, Winbond Electronics, Bristol-Myers Squibb Pharmaceutical Research Institute, University of Southern California, Alebra Technologies, SIMULIA, Risk Management Solutions, Brigham Young University, SRD, HRL

Buyer's Guide

CodeSonar vs. Klocwork

September 2025

Free Report: CodeSonar vs. Klocwork

Find out what your peers are saying about CodeSonar vs. Klocwork and other solutions. Updated: September 2025.

DOWNLOAD NOW

868,787 professionals have used our research since 2012.

See our CodeSonar vs. Klocwork report.

See our list of best Application Security Tools vendors and best Static Code Analysis vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.