Try our new research platform with insights from 80,000+ expert users

Checkmarx One vs Qualys Web Application Scanning comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 30, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.5
Checkmarx One enhances security, speeds delivery, reduces costs, and returns ROI within six months for some users.
Sentiment score
5.5
Qualys Web Application Scanning improved visibility, reduced costs and failure rates, and increased ROI with automation, despite licensing challenges.
 

Customer Service

Sentiment score
7.1
Checkmarx One provides generally positive support, but response delays and unresolved tickets challenge some users, despite skilled assistance.
Sentiment score
5.0
Qualys Web Application Scanning support is mostly praised for responsiveness, with minor concerns about higher-tier access and engagement.
Once we purchase the license, we have access to top-notch support.
I have dealt with Qualys's technical support, and any enhancements are challenging.
 

Scalability Issues

Sentiment score
7.1
Checkmarx One offers strong scalability, supports automation, and manages scan engines, though may face processing time and licensing cost constraints.
Sentiment score
7.7
Qualys Web Application Scanning is scalable, handling multiple licenses and users, though some issues arise with concurrent scans.
At one point, there was a limitation on reporting for 100,000 assets at a time.
It is licensed for assets, so we just contact the team for additional licenses if needed.
 

Stability Issues

Sentiment score
7.1
Checkmarx One is generally stable, but users report occasional crashes and performance issues, varying stability ratings from 4-10.
Sentiment score
8.5
Qualys Web Application Scanning is praised for stability and reliability, with users rating it highly and few issues reported.
 

Room For Improvement

Checkmarx One requires enhancements in false positive reduction, language support, pricing, role management, UI, and support response time.
Qualys Web Application Scanning users seek improved XSS detection, simpler interface, better pricing, and enhanced integration features.
With the growing reliance on AI, Qualys Web Application Scanning should be updated to handle AI-based applications and LLM-based attacks.
One area of improvement is reducing false positives by prioritizing agent findings over remote findings when there is a corresponding local agent finding.
I would like it to be cheaper because it is a bit expensive compared to competitors like Tenable Nessus.
 

Setup Cost

Checkmarx One's pricing is costly but justified by its flexibility, competitive pricing, and enhanced security for enterprises.
Qualys Web Application Scanning offers competitive pricing and flexible licensing, though some users seek improved cost-effectiveness.
They offer discounts on bulk licenses, making it cheaper compared to competitors like Veracode DAST.
I find it a bit expensive compared to other competitors.
 

Valuable Features

Checkmarx One offers advanced code analysis, seamless repository integration, and user-friendly features for efficient security testing and vulnerability management.
Qualys Web Application Scanning offers Selenium integration, effective threat detection, and seamless CI/CD integration with a user-friendly interface.
It effectively detects vulnerabilities like the OWASP Top 10 without any issues in reporting.
It is recognized as one of the best tools for web application security from a development perspective.
The product helps by providing options for remediating vulnerabilities it finds, making it really useful.
 

Categories and Ranking

Checkmarx One
Ranking in Application Security Tools
3rd
Ranking in Static Application Security Testing (SAST)
3rd
Average Rating
7.6
Reviews Sentiment
6.9
Number of Reviews
70
Ranking in other categories
Vulnerability Management (21st), Static Code Analysis (2nd), API Security (3rd), DevSecOps (2nd), Risk-Based Vulnerability Management (8th)
Qualys Web Application Scan...
Ranking in Application Security Tools
12th
Ranking in Static Application Security Testing (SAST)
9th
Average Rating
7.8
Reviews Sentiment
6.9
Number of Reviews
38
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Application Security Tools category, the mindshare of Checkmarx One is 10.7%, down from 15.1% compared to the previous year. The mindshare of Qualys Web Application Scanning is 2.0%, down from 2.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools
 

Featured Reviews

Rohit Kesharwani - PeerSpot reviewer
Provides good security analysis and security identification within the source code
We integrate Checkmarx into our software development cycle using GitLab's CI/CD pipeline. Checkmark has been the most helpful for us in the development stage. The solution's incremental scanning feature has impacted our development speed. The solution's vulnerability detection is around 80% to 90% accurate. I would recommend Checkmarx to other users because it is one of the good tools for doing security analysis and security identification within the source code. Overall, I rate Checkmarx a nine out of ten.
SubhajitAich - PeerSpot reviewer
A stable solution that can be used for infrastructure vulnerability scanning and web application scanning
Qualys Web Application Scanning is very complex to use, and its graphical interface is not very user-friendly. Compared to other solutions like Tenable and Rapid7, you need to navigate a lot to get the actual results out of Qualys Web Application Scanning. If I have to search for one thing within the entire console, I have to look for it randomly. It's not very easy and very comfortable to find something. Overall, it's a very good solution, but it will be very good if the tool is more user-friendly.
report
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
844,944 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
21%
Computer Software Company
15%
Manufacturing Company
10%
Government
5%
Computer Software Company
17%
Financial Services Firm
15%
Manufacturing Company
11%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What alternatives are there for Fortify WebInspect and Fortify SCA?
I would like to recommend Checkmarx. With Checkmarx, you are able to have an all in one solution for SAST and SCA as well. Veracode is only a cloud solution. Hope this helps.
What do you like most about Checkmarx?
Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%.
What is your experience regarding pricing and costs for Checkmarx?
The pricing is relatively expensive due to the product's quality and performance, but it is worth it.
What do you like most about Qualys Web Application Scanning?
The vulnerability management feature is a strong one. And also the patch management feature.
What needs improvement with Qualys Web Application Scanning?
I would like it to be cheaper because it is a bit expensive compared to competitors like Tenable Nessus ( /products/tenable-nessus-reviews ). After using the product for a year, I might have more s...
 

Also Known As

No data available
Qualys WAS
 

Overview

 

Sample Customers

YIT, Salesforce, Coca-Cola, SAP, U.S. Army, Liveperson, Playtech Case Study: Liveperson Implements Innovative Secure SDLC
BskyB, Cartagena, ClearPoint Learning Systems, Connect Group, du, Fortrex Technologies, HBOR, HDI, Highlights for Children, The Lithuanian State Enterprise Centre of Registers, City of Miami Beach, Microsoft, MidlandHR, MSCI Inc., Northern Arizona University, Ofgem, Olympus Europa, PhoneFactor, RTL Nederland, ThousandEyes, VGZ Organisatie B.V.
Find out what your peers are saying about Checkmarx One vs. Qualys Web Application Scanning and other solutions. Updated: March 2025.
844,944 professionals have used our research since 2012.