We performed a comparison between Checkmarx One and Contrast Security Protect based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Both automatic and manual code review (CxQL) are valuable."
"The user interface is excellent. It's very user friendly."
"It allows for SAST scanning of uncompiled code. Further, it natively integrates with all key repos formats (Git, TFS, SVN, Perforce, etc)."
"Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%."
"The reports are very good because they include details on the code level, and make suggestions about how to fix the problems."
"Most valuable features include: ease of use, dashboard. interface and the ability to report."
"The most valuable feature is the application tracking reporting."
"The solution communicates where to fix the issue for the purpose of less iterations."
"The product gives a few false positives. We get 99 percent true positives."
"Protect provides us with more in-depth visibility into ongoing attacks."
"The solution has excellent real-time capabilities."
"Checkmarx has a slightly difficult compilation with the CI/CD pipeline."
"The reports are good, but they still need to be improved considering what the UI offers."
"The product can be improved by continuing to expand the application languages and frameworks that can be scanned for vulnerabilities. This includes expanded coverage for mobile applications as well as open-source development tools."
"The resolutions should also be provided. For example, if the user faces any problem regarding an installation due to the internal security policies of their company, there should be a resolution offered."
"I really would like to integrate it as a service along with the SAP HANA Cloud Platform. It will then be easy to use it directly as a service."
"The plugins for the development environment have room for improvements such as for Android Studio and X code."
"The lack of ability to review compiled source code. It would then be able to compete with other scanning tools, such as Veracode."
"In terms of dashboarding, the solution could provide a little more flexibility in terms of creating more dashboards. It has some of its own dashboards that come out of the box. However, if I have to implement my own dashboards that are aligned to my organization's requirements, that dashboarding feature has limited capability right now."
"Protect's reporting GUI is very basic. To get all statuses from the APIs, we needed to write our own KPI dashboard to provide reports."
"There's room for improvement in the initial setup."
"Contrast Security Protect needs to improve integration."
Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while Contrast Security Protect is ranked 32nd in Application Security Tools with 3 reviews. Checkmarx One is rated 7.6, while Contrast Security Protect is rated 8.4. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Contrast Security Protect writes "It provides us with more in-depth visibility into ongoing attacks". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas Contrast Security Protect is most compared with SonarQube, Fortify on Demand, Snyk, Tenable.io Web Application Scanning and Sonatype Lifecycle. See our Checkmarx One vs. Contrast Security Protect report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.