--- description: Review of Checkmarx One Software: system overview, features, price and cost information. Get free demos and compare to similar programs. image: https://gdm-localsites-assets-gfprod.imgix.net/images/software_advice/og_logo-55146305bbe7b450bea05c18e9be9c9a.png title: Checkmarx One | Reviews, Pricing & Demos - SoftwareAdvice AU --- Breadcrumb: [Home](/) > [Static Application Security Testing (SAST) Software](/directory/4429/sast/software) > [Checkmarx One](/software/450140/Checkmarx-One) # Checkmarx One Canonical: https://www.softwareadvice.com.au/software/450140/Checkmarx-One Page: 1 / 2\ Next: [Next page](https://www.softwareadvice.com.au/software/450140/Checkmarx-One?page=2) > Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources. Checkmarx One offers comprehensive application scanning across the SDLC: \*Static Application Security Testing (SAST) \*Software Composition Analysis (SCA) \*API security \*Dynamic Application Security Testing (DAST) \*Container security \*IaC security \*Correlation, prioritization and risk management \*Codebashing secure code training \*AI security \*Tech partnerships extending AppSec into runtime analysis \*Developer tool integrations including: CI/CD tools, development frameworks, feedback tools, IDEs, programming languages and SCMs Checkmarx One helps secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving toolset, Checkmarx One helps consolidate AppSec solutions and make better sense of results. > > Verdict: Rated **3.9/5** by 7 users. Top-rated for **Likelihood to recommend**. ----- ## Quick Stats & Ratings | Metric | Rating | Detail | | **Overall** | **3.9/5** | 7 Reviews | | Ease of Use | 3.7/5 | Based on overall reviews | | Customer Support | 4.0/5 | Based on overall reviews | | Value for Money | 3.0/5 | Based on overall reviews | | Features | 4.3/5 | Based on overall reviews | | Recommendation percentage | 70% | (7/10 Likelihood to recommend) | ## About the vendor - **Company**: CHECKMARX - **Location**: Ramat Gan, Israel ## Commercial Context - **Pricing Details**: Please contact CHECKMARX for pricing details. - **Target Audience**: 1,001–5,000, 5,001–10,000, 10,000+ - **Deployment & Platforms**: Cloud, SaaS, Web-based - **Supported Languages**: English - **Available Countries**: Australia, Canada, France, Germany, Israel, Saudi Arabia, Singapore, Spain, United Arab Emirates, United Kingdom, United States ## Features - API - Access Controls/Permissions - Alerts/Notifications - Application Security - Collaboration Tools - Compliance Management - Dashboard - Data Import/Export - Debugging - For Developers - Integrated Development Environment - Multi-Language Scanning - Real-Time Analytics - Reporting/Analytics - Security Testing - Software Development - Source-Code Scanning - Third-Party Integrations - Vulnerability Scanning ## Integrations (9 total) - AWS CodePipeline - AppVeyor - Bamboo - Bitbucket - GitHub - GitLab - IntelliJ IDEA - ThreadFix - Visual Studio Code ## Support Options - Email/Help Desk - FAQs/Forum - Knowledge Base - Phone Support - Chat ## Category - [Static Application Security Testing (SAST) Software](https://www.softwareadvice.com.au/directory/4429/sast/software) ## Related Categories - [Static Application Security Testing (SAST) Software](https://www.softwareadvice.com.au/directory/4429/sast/software) - [Vulnerability Scanner Tools](https://www.softwareadvice.com.au/directory/4415/vulnerability-scanner/software) - [Container Security Tools](https://www.softwareadvice.com.au/directory/4438/container-security/software) - [App Development Software](https://www.softwareadvice.com.au/directory/4499/app-development/software) ## Alternatives 1. [CodeScene](https://www.softwareadvice.com.au/software/349713/codescene) — 4.7/5 (11 reviews) 2. [GitHub](https://www.softwareadvice.com.au/software/397820/github) — 4.8/5 (6155 reviews) 3. [GitLab](https://www.softwareadvice.com.au/software/28004/gitlab) — 4.6/5 (1215 reviews) 4. [SonarQube](https://www.softwareadvice.com.au/software/182719/sonarqube) — 4.5/5 (66 reviews) 5. [Klocwork](https://www.softwareadvice.com.au/software/234817/klocwork) — 4.6/5 (8 reviews) ## Reviews ### "Gives a full 360 degree view of vulnerabilities in static code" — 5.0/5 > **Daniel** | *22 January 2023* | Hospital & Health Care | Recommendation rating: 10.0/10 > > **Pros**: The ability to use CI/CD pipelines so when the build task kicks off, scanning for static code and open source libraries is done at build time. > > **Cons**: The only thing I do not like is we have some languages that the product does not support like ColdFusion and R-Code. > > My personal overall experience with SAST is positive. I like that I can tweak queries myself and if there is something I can't do, support is just a phone call/ticket away. They respond to all inquiries very quickly. ----- ### "Checkmarx a strong and reliable competitor" — 4.0/5 > **Juan** | *18 November 2021* | Banking | Recommendation rating: 8.0/10 > > **Pros**: Easy of use, the 0 complexity it adds to configure a new project, it feels to work in a collaborative way even in an on premise environment. > > **Cons**: The implementation requires Windows and SQL, i would prefer that it runs on linux with postgresql. The reporting could be improved. > > It has been a good experience, the support is fast and reliable. The tool work as expected and you can use the api integration to go even further. ----- ### "Super expensive but also feels outdated" — 1.0/5 > **Donovan** | *25 March 2022* | Financial Services | Recommendation rating: 3.0/10 > > **Pros**: It certainly covers all the vulnerability rules you would ever need. > > **Cons**: It is SUPER expensive, very slow and the reporting is too messy. It would have been better if it can take a more integrated into the code approach like Sonar. > > Overall I did not enjoy using it. ----- ### "CxSAST - A great static software analyzer" — 5.0/5 > **Tiennot** | *15 January 2021* | Computer & Network Security | Recommendation rating: 10.0/10 > > **Pros**: CXSast has several very important advantages. The first is that the code is scanned before it is even compiled, this means that de developers can scan and fix while they are still in the coding process. Second CXSAST fully integrates in any devops proces. Scanning and reporting will be doen from within the screens developers work in, so no unneccesary switching between screens. (see extention CXflow) Nex to that the rules (or queries) are open, every one can see them or a organisation can tailor them to their own need. If needed a FP free setup can be created\! V9.3 now enable installation of the engines on Linux, you can dockarize the stuff Last but not least CXSast can be setup with additions such as CX-SCA (opensource analysis) and CX-IAST (passive IAST scanning) > > **Cons**: The installation can sometimes be difficult. However Checkmarx counters this by offering free installation services for their costumers. ----- ### "Preferred Vulnerability Management Tool" — 4.0/5 > **Shreyans** | *12 November 2022* | Banking | Recommendation rating: 8.0/10 > > **Pros**: Can be used to analyse application, source code, byte code, and binaries for coding and design conditions.Key elements of the checkmarx dashboard can be split into two sections, namely scan, statistics and scan trends. > > **Cons**: Unavailable or downtime of application causes delay in deploying the code through pipeline which is integrated with Checkmarx. ----- Page: 1 / 2\ Next: [Next page](https://www.softwareadvice.com.au/software/450140/Checkmarx-One?page=2) ## Links - [View on SoftwareAdvice](https://www.softwareadvice.com.au/software/450140/Checkmarx-One) ## This page is available in the following languages | Locale | URL | | de | | | en | | | en-AU | | | en-GB | | | en-IE | | | en-NZ | | | fr | | ----- ## Structured Data