Kiuwan vs Software Risk Manager ASPM comparison

Kiuwan and Black Duck are both solutions in the Static Application Security Testing (SAST) category. Kiuwan is ranked #25 with an average rating of 7.8, while Black Duck is ranked #33. Kiuwan holds a 1.0% mindshare in SAST, compared to Black Duck’s 0.4% mindshare. Additionally, 93% of Kiuwan users are willing to recommend the solution.

Kiuwan

Read 23 Kiuwan reviews

1,522 Views
1,355 Comparison Views

93% willing to recommend

Software Risk Manager ASPM

Read 1 Software Risk Manager ASPM review

726 Views
624 Comparison Views

0% willing to recommend

Kiuwan

Software Risk Manager ASPM

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 15, 2025

Kiuwan and Software Risk Manager ASPM are competitors in application security management. Kiuwan leads in integration and reporting, while Software Risk Manager ASPM is superior in flexibility and scalability.

Features: Kiuwan offers strong code analysis, seamless integration with development tools, and comprehensive reporting. Software Risk Manager ASPM provides detailed risk assessment models, adaptive security measures, and scalability suitable for large organizations.

Ease of Deployment and Customer Service: Kiuwan has an easy deployment process, user-friendly dashboard, and responsive support, catering well to development teams. Software Risk Manager ASPM supports multiple environments with flexible deployment but may require more setup effort.

Pricing and ROI: Kiuwan has a competitive setup cost and focuses on delivering ROI through integration and actionable insights. Software Risk Manager ASPM, with potentially higher upfront costs, enhances security posture, offering significant long-term value.

To learn more, read our detailed Static Application Security Testing (SAST) Report (Updated: September 2025).

Buyer's Guide

Static Application Security Testing (SAST)

September 2025

Download the complete report

Helped 868,706 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Kiuwan

Ranking in Static Application Security Testing (SAST)

25th

Average Rating

8.6

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Application Security Tools (21st)

Software Risk Manager ASPM

Ranking in Static Application Security Testing (SAST)

33rd

Average Rating

0.0

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Software Composition Analysis (SCA) (28th), Application Security Posture Management (ASPM) (14th)

Mindshare comparison

As of October 2025, in the Static Application Security Testing (SAST) category, the mindshare of Kiuwan is 1.0%, up from 0.8% compared to the previous year. The mindshare of Software Risk Manager ASPM is 0.4%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Static Application Security Testing (SAST) Market Share Distribution
Product	Market Share (%)
Kiuwan	1.0%
Software Risk Manager ASPM	0.4%
Other	98.6%

Static Application Security Testing (SAST)

Featured Reviews

Mustufa Bhavnagarwala

CyberRisk Solution Advisor at Deloitte

Though a stable tool, the UI needs improvement

Kiuwan can improve its UI a little more. The user experience can be made better. Kiuwan offers a user interface that is similar to the one offered by Windows 7 or Windows 98, which I saw when I ran the tool and tried to scan the repository to find the security issues. The product's UI has certain shortcomings, where improvements are required.

Read full review

Saravanan_Radhakrishnan

Senior Manager at Happiest Minds Technologies

Facilitates continuous assessment of applications, covering both static and dynamic security aspects

Code Dx lacks one aspect, the dynamic security part, known as DAST. It's not an on-premise solution; it's in the cloud now. There are compliance standards and data standards where the customer might need to have the data on-premises for dynamic security testing. So that is one shortfall. An area of improvement could be developing an on-premise DAST solution. The current one is a complete cloud-based solution, and that can be one of the areas of improvement.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I have found the security and QA in the source code to be most valuable."

"The most valuable feature is the time to resolution, where it tells you how long it is going to take to get to a zero-base or a five-star security rating."

"The feature that I have found the most valuable in Kiuwan is the speed of scanning. Compared to other SaaS tools I have used, Kiuwan is much quicker in performing scans. I have not yet used it on a large code base, but from what I have experienced, it is efficient and accurate. Additionally, I have used it both manually and in an automated pipeline, and both methods have been effective. The speed of scanning is what makes it valuable to me."

"Software analytics for a lot of different languages including ABAP."

"I like that it provides a detailed report that lets you know the risk index and the vulnerability."

"I personally like the way it breaks down security vulnerabilities with LoC at first glance."

"I find it immensely helpful because it's not just about generating code; it's about ensuring efficiency in the execution."

"The solution offers very good technical support."

More Kiuwan pros

"The customers were looking for something around static security and dynamic security, and in all those areas, they were looking for an industry leader with a proven solution. Synopsys is a Gartner leader, so I position this particular technology for the technical pre-sales part of it."

Cons

"Integration of the programming tools could be improved."

"The product's UI has certain shortcomings, where improvements are required."

"The QA developer and security could be improved."

"Perhaps more languages supported."

"DIfferent languages, such Spanish, Portuguese, and so on."

"Kiuwan's support has room for improvement. You can only open a ticket is through email, and the support team is outside of our country. They should have a support number or chat."

"I would like to see additional languages supported."

"The integration process could be improved. It'll also help if it could generate reports automatically. But I'm not sure about the effectiveness of the reports. This is because, in our last project, we still found some key issues that weren't captured by the Kiuwan report."

More Kiuwan cons

"The initial setup is a bit challenging because things are not easy. It needs a lot of technology adaptability plus the customer's environment-specific use cases."

Pricing and Cost Advice

"Kiuwan is an open-source solution and free to use."

"This solution is cheaper than other tools."

"Check with your account manager."

"I recommend contacting a sales person who will create the best plan payment plan for you, as we did."

"It follows a subscription model. I think the price is somewhere in the middle."

"The price of Kiuwan is lower than that of other tools on the market."

"Nothing special. It's a very fair model."

"It is more of an enterprise solution for budget-conscious customers. So, it's moderately priced. It's not for everybody."

See which vendors are best for you

Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.

See recommendations

868,706 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

University

Financial Services Firm

Comms Service Provider

Financial Services Firm

18%

Manufacturing Company

12%

Computer Software Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	16
Midsize Enterprise	4
Large Enterprise	6

No data available

Questions from the Community

What do you like most about Kiuwan?

The most valuable feature of the solution stems from the fact that it is quick when processing and giving an output or generating a report.

See all answers

What is your experience regarding pricing and costs for Kiuwan?

I'm not entirely sure about the price and business aspects, but I assume Checkmarx might be less expensive. I think Checkmarx might offer more affordable options, especially in its smaller business...

See all answers

What needs improvement with Kiuwan?

See all answers

What do you like most about Synopsys Code Dx?

The customers were looking for something around static security and dynamic security, and in all those areas, they were looking for an industry leader with a proven solution. Synopsys is a Gartne...

See all answers

What is your experience regarding pricing and costs for Synopsys Code Dx?

I would rate the pricing model an eight out of ten, where one is low and ten is high. Because it is more of an enterprise solution for budget-conscious customers. So, it's moderately priced. It's n...

See all answers

What needs improvement with Synopsys Code Dx?

See all answers

Comparisons

SonarQube Server (formerly SonarQube) vs Kiuwan

Compared 46% of the time

Checkmarx One vs Kiuwan

Compared 11% of the time

Veracode vs Kiuwan

Compared 10% of the time

Snyk vs Kiuwan

Compared 9% of the time

SonarQube Cloud (formerly SonarCloud) vs Kiuwan

Compared 9% of the time

More Kiuwan Competitors

Veracode vs Software Risk Manager ASPM

Compared 32% of the time

Acunetix vs Software Risk Manager ASPM

Compared 14% of the time

PortSwigger Burp Suite Professional vs Software Risk Manager ASPM

Compared 14% of the time

Semgrep vs Software Risk Manager ASPM

Compared 14% of the time

SonarQube Server (formerly SonarQube) vs Software Risk Manager ASPM

Compared 13% of the time

More Software Risk Manager ASPM Competitors

Product Reports

Buyer's Guide

Kiuwan

September 2025

Download Kiuwan product report

Buyer's Guide

Application Security Posture Management (ASPM)

September 2025

Download Software Risk Manager ASPM product report

Also Known As

No data available

Code Dx

Overview

Software analytics technology with a breadth of third party integrations that takes into account the wealth of applications your teams are currently using.

We facilitate and encourage work between unlocalized teams. We understand the complexity of working on multi technology environments, constantly striving to increase the number of programming languages and technologies we support.

Kiuwan

Software Risk Manager is an application security posture management (ASPM) solution that enables security and development teams to manage their application security programs at enterprise scale. By unifying policy, test orchestration, correlation, prioritization, and built-in static application security testing (SAST) and software composition analysis (SCA) engines, organizations can streamline their security activities across the enterprise.

Black Duck

Sample Customers

DHL, BNP Paribas, Zurich, AXA, Ernst & Young, KFC, Santander, Latam, Ferrovial

Discover why companies like: CGI said, "Synopsys and Software Risk Manager have provided the results we’re looking for".

Buyer's Guide

Static Application Security Testing (SAST)

September 2025

Download Free Report

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST). Updated: September 2025.

DOWNLOAD NOW

868,706 professionals have used our research since 2012.

See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.