Checkmarx One vs Invicti comparison

Read 27 Invicti reviews

3,137 Views
1,662 Comparison Views

96% willing to recommend

Checkmarx One

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

Invicti and Checkmarx One are both key players in the security testing tools category, serving different user preferences. Invicti appears to have the upper hand in terms of pricing and customer service, whereas Checkmarx One is favored for its comprehensive features.

Features: Invicti offers ease of integration, accurate vulnerability scans, and streamlined security assessments. Checkmarx One stands out with static and dynamic application security testing and broader security coverage.

Room for Improvement: Invicti could improve its reporting outputs, scalability, and handling of larger projects. Checkmarx One needs more intuitive navigation, faster analysis times, and could simplify deployment.

Ease of Deployment and Customer Service: Invicti is known for its straightforward deployment and responsive customer service. Checkmarx One, while more complex to deploy, provides comprehensive support, though response times vary.

Pricing and ROI: Invicti's pricing is considered reasonable, offering a positive ROI. Checkmarx One, although more expensive, delivers substantial returns, justifying its cost with advanced features.

To learn more, read our detailed Checkmarx One vs. Invicti Report (Updated: October 2024).

Checkmarx One vs. Invicti

October 2024

Download the complete report

Helped 816,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Customer Service

Sentiment score

7.4

Checkmarx One's support is generally rated positively for knowledgeability and quick responses, despite occasional delays and unresolved issues.

No sentiment score available

Invicti's customer service is praised for professionalism and promptness, offering effective support through various communication channels and regional partners.

No quotes available

For more quotes and insights, download the Checkmarx One report

No quotes available

For more quotes and insights, download the Invicti report

Room For Improvement

Sentiment score

4.7

Checkmarx One needs better accuracy, language support, integration, flexibility, UI customization, documentation, dynamic testing, and API security features.

Sentiment score

3.9

Invicti needs improved efficiency, better authentication, reporting, more database support, and enhancements in UI, documentation, and security features.

No quotes available

For more quotes and insights, download the Checkmarx One report

No quotes available

For more quotes and insights, download the Invicti report

Scalability Issues

Sentiment score

7.3

Checkmarx One is favored for its scalability and efficiency, though licensing and resource challenges are sometimes noted.

Sentiment score

7.4

Invicti is highly scalable, excelling in handling multiple installations and extensive scans, despite occasional performance slowdowns with large applications.

No quotes available

For more quotes and insights, download the Checkmarx One report

No quotes available

For more quotes and insights, download the Invicti report

Setup Cost

Sentiment score

6.4

Checkmarx One is costly but valued for its robust security, despite complexity in setup and licensing options.

No sentiment score available

Invicti offers flexible pricing, competitive for large enterprises, with subscriptions ranging from $5,000 to $15,000 for detailed security insights.

No quotes available

For more quotes and insights, download the Checkmarx One report

No quotes available

For more quotes and insights, download the Invicti report

Stability Issues

Sentiment score

7.2

Checkmarx One is stable for most, but large codebase handling can cause crashes, memory issues, and configuration dependence.

Sentiment score

8.3

Invicti is stable and reliable, with minimal issues, except for occasional high resource usage and temporary glitches with large applications.

No quotes available

For more quotes and insights, download the Checkmarx One report

No quotes available

For more quotes and insights, download the Invicti report

Valuable Features

Sentiment score

8.4

Checkmarx One enhances secure coding with user-friendly interface, automation, and multi-language support, making it ideal for developers.

Sentiment score

8.4

Invicti offers detailed scanning, customizable checks, and CI/CD integration, emphasizing accuracy and flexibility in web security testing.

No quotes available

For more quotes and insights, download the Checkmarx One report

No quotes available

For more quotes and insights, download the Invicti report

Categories and Ranking

Checkmarx One

Ranking in Static Application Security Testing (SAST)

3rd

Ranking in API Security

2nd

Average Rating

7.6

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Application Security Tools (3rd), Vulnerability Management (16th), Static Code Analysis (2nd), DevSecOps (2nd), Risk-Based Vulnerability Management (5th)

Invicti

Ranking in Static Application Security Testing (SAST)

14th

Ranking in API Security

5th

Average Rating

8.2

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Dynamic Application Security Testing (DAST) (3rd)

Mindshare comparison

As of November 2024, in the Static Application Security Testing (SAST) category, the mindshare of Checkmarx One is 12.8%, down from 13.8% compared to the previous year. The mindshare of Invicti is 1.3%, up from 1.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Static Application Security Testing (SAST)

Featured Reviews

Rohit Kesharwani

Manager, Engineering at 7-Eleven.

Provides good security analysis and security identification within the source code

We integrate Checkmarx into our software development cycle using GitLab's CI/CD pipeline. Checkmark has been the most helpful for us in the development stage. The solution's incremental scanning feature has impacted our development speed. The solution's vulnerability detection is around 80% to 90% accurate. I would recommend Checkmarx to other users because it is one of the good tools for doing security analysis and security identification within the source code. Overall, I rate Checkmarx a nine out of ten.

Read full review

Amr Abdelnaser

Senior Information Security Analyst at EastNets Holding Ltd.

A safe solution used to detective vulnerabilities for dynamic and complex testing

The Invicti is the scope application tool. The solution is installed on-premise but could be installed as a web version. Starting from the latest version, the web version could be used. They have a web application server. The deployment of the solution involves installing the EXE and configuring your machine.

Read full review

See which vendors are best for you

Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.

See recommendations

816,406 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

21%

Computer Software Company

15%

Manufacturing Company

10%

Government

Educational Organization

55%

Financial Services Firm

Computer Software Company

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What alternatives are there for Fortify WebInspect and Fortify SCA?

I would like to recommend Checkmarx. With Checkmarx, you are able to have an all in one solution for SAST and SCA as well. Veracode is only a cloud solution. Hope this helps.

What do you like most about Checkmarx?

Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%.

What is your experience regarding pricing and costs for Checkmarx?

The pricing is relatively expensive due to the product's quality and performance, but it is worth it.

What is your experience regarding pricing and costs for Netsparker Web Application Security Scanner?

The inventory prices are very competitive. The competitors are more expensive, but the estimated cost of Invicti is more competitive than that of other tools. They had very good pricing. We have di...

What do you like most about Invicti?

The most valuable feature of Invicti is getting baseline scanning and incremental scan.

What needs improvement with Invicti?

Invicti has provided a roadmap outlining the improvements they're focusing on. Given the competition, with tools like Qualys and many others in the market, the interface needs to be enhanced, integ...

SonarQube Server (formerly SonarQube) vs Checkmarx One

Comparisons

Compared 49% of the time

Veracode vs Checkmarx One

Compared 13% of the time

Fortify on Demand vs Checkmarx One

Compared 6% of the time

Coverity vs Checkmarx One

Compared 4% of the time

Snyk vs Checkmarx One

Compared 4% of the time

More Checkmarx One Competitors

OWASP Zap vs Invicti

Compared 18% of the time

Acunetix vs Invicti

Compared 16% of the time

Qualys Web Application Scanning vs Invicti

Compared 8% of the time

PortSwigger Burp Suite Professional vs Invicti

Compared 6% of the time

SonarQube Server (formerly SonarQube) vs Invicti

Compared 5% of the time

More Invicti Competitors

Product Reports

Download Checkmarx One product report

Checkmarx One

November 2024

Download Invicti product report

November 2024

Also Known As

No data available

Netsparker

Learn More

Checkmarx

Overview

Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.

Checkmarx One offers comprehensive application scanning across the SDLC:

Static Application Security Testing (SAST)
Software Composition Analysis (SCA)
API security
Dynamic Application Security Testing (DAST)
Container security
IaC security
Correlation, prioritization, and risk management
Codebashing secure code training
AI security
Tech partnerships extending AppSec into runtime analysis
Developer tool integrations including: CI/CD tools, development frameworks, feedback tools, IDEs, programming languages and SCMs

Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.

Invicti helps DevSecOps teams automate security tasks and save hundreds of hours each month by identifying web vulnerabilities that matter. Combining dynamic with interactive testing (DAST + IAST) and software composition analysis (SCA), Invicti scans every corner of an app to find what other tools miss with 99.98% accuracy, delivering on the promise of Zero Noise AppSec. Invicti helps discover all web assets — even ones that are lost, forgotten, or created by rogue departments. With an array of out-of-the-box integrations, DevSecOps teams can get ahead of their workloads to hit critical deadlines, improve processes, and communicate more effectively while reducing risk and hitting the ROI goals.

Sample Customers

YIT, Salesforce, Coca-Cola, SAP, U.S. Army, Liveperson, Playtech Case Study: Liveperson Implements Innovative Secure SDLC

Samsung, The Walt Disney Company, T-Systems, ING Bank