Try our new research platform with insights from 80,000+ expert users

Checkmarx One vs Fortify WebInspect comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Customer Service

Sentiment score
7.4
Checkmarx One's support is generally rated positively for knowledgeability and quick responses, despite occasional delays and unresolved issues.
Sentiment score
4.9
Fortify WebInspect support receives varied reviews, with some citing slow responses, while others praise quick resolutions and knowledgeable staff.
 

Room For Improvement

Sentiment score
4.7
Checkmarx One needs better accuracy, language support, integration, flexibility, UI customization, documentation, dynamic testing, and API security features.
Sentiment score
4.6
Fortify WebInspect users want improved cloud integration, user-friendliness, efficiency, mobile testing, and better reporting with reduced resource consumption.
 

Scalability Issues

Sentiment score
7.3
Checkmarx One is favored for its scalability and efficiency, though licensing and resource challenges are sometimes noted.
Sentiment score
7.1
Fortify WebInspect offers scalability, with cloud setups excelling, but on-premises deployments face limitations and budget concerns.
 

Setup Cost

Sentiment score
6.4
Checkmarx One is costly but valued for its robust security, despite complexity in setup and licensing options.
No sentiment score available
Fortify WebInspect is seen as expensive with complex licensing; suited for larger enterprises, but costly for smaller ones.
 

Stability Issues

Sentiment score
7.2
Checkmarx One is stable for most, but large codebase handling can cause crashes, memory issues, and configuration dependence.
Sentiment score
7.5
Fortify WebInspect is stable but struggles with complex sites, showing occasional bugs and resource-heavy performance issues.
 

Valuable Features

Sentiment score
8.4
Checkmarx One enhances secure coding with user-friendly interface, automation, and multi-language support, making it ideal for developers.
Sentiment score
8.3
Fortify WebInspect delivers efficient vulnerability detection, scalable scanning, and user-friendly reporting with easy setup and security standard alignment.
 

Categories and Ranking

Checkmarx One
Ranking in DevSecOps
2nd
Average Rating
7.6
Reviews Sentiment
7.1
Number of Reviews
70
Ranking in other categories
Application Security Tools (3rd), Static Application Security Testing (SAST) (3rd), Vulnerability Management (16th), Static Code Analysis (2nd), API Security (2nd), Risk-Based Vulnerability Management (5th)
Fortify WebInspect
Ranking in DevSecOps
9th
Average Rating
7.2
Reviews Sentiment
6.8
Number of Reviews
20
Ranking in other categories
Dynamic Application Security Testing (DAST) (2nd)
 

Featured Reviews

Rohit Kesharwani - PeerSpot reviewer
Provides good security analysis and security identification within the source code
We integrate Checkmarx into our software development cycle using GitLab's CI/CD pipeline. Checkmark has been the most helpful for us in the development stage. The solution's incremental scanning feature has impacted our development speed. The solution's vulnerability detection is around 80% to 90% accurate. I would recommend Checkmarx to other users because it is one of the good tools for doing security analysis and security identification within the source code. Overall, I rate Checkmarx a nine out of ten.
Navin N - PeerSpot reviewer
Effective scanning of diverse file extensions with fast reporting and issue resolution
We develop software packages for clients, and these clients are mostly in the BFSI sector. The packages need to be scanned, and we engage Fortify WebInspect for this.  Customers typically perform their own application pen tests, but in some cases, we have engagements where customers want us to scan…
report
Use our free recommendation engine to learn which DevSecOps solutions are best for your needs.
816,816 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
22%
Computer Software Company
15%
Manufacturing Company
10%
Government
5%
Financial Services Firm
19%
Computer Software Company
15%
Government
14%
Manufacturing Company
13%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What alternatives are there for Fortify WebInspect and Fortify SCA?
I would like to recommend Checkmarx. With Checkmarx, you are able to have an all in one solution for SAST and SCA as well. Veracode is only a cloud solution. Hope this helps.
What do you like most about Checkmarx?
Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%.
What is your experience regarding pricing and costs for Checkmarx?
The pricing is relatively expensive due to the product's quality and performance, but it is worth it.
What do you like most about Fortify WebInspect?
The solution's technical support was very helpful.
What is your experience regarding pricing and costs for Fortify WebInspect?
Fortify WebInspect can be a bit expensive. However, considering its stability and reliability in meeting current standards, the cost is justified. Still, making the cost more affordable for multipl...
What needs improvement with Fortify WebInspect?
I would like WebInspect's scanning capability to be quicker. Specifically, being able to scan a particular flow or part of an application more rapidly would be beneficial. Additionally, the cost of...
 

Also Known As

No data available
Micro Focus WebInspect, WebInspect
 

Overview

 

Sample Customers

YIT, Salesforce, Coca-Cola, SAP, U.S. Army, Liveperson, Playtech Case Study: Liveperson Implements Innovative Secure SDLC
Aaron's
Find out what your peers are saying about Checkmarx One vs. Fortify WebInspect and other solutions. Updated: October 2024.
816,816 professionals have used our research since 2012.