height="0" width="0" style="display:none;visibility:hidden">
Try our
new research platform
with insights from 80,000+ expert users
Research Reports
Categories
Cybersecurity
Endpoint Detection and Response (EDR)
Cloud Security Posture Management (CSPM)
Security Information and Event Management (SIEM)
Vulnerability Management
Endpoint Protection Platform (EPP)
Extended Detection and Response (XDR)
Firewalls
Container Security
Intrusion Detection and Prevention Software (IDPS)
ZTNA
Advanced Threat Protection (ATP)
Anti-Malware Tools
Unified Threat Management (UTM)
Cloud-Native Application Protection Platforms (CNAPP)
Domain Name System (DNS) Security
Cloud Workload Protection Platforms (CWPP)
Threat Intelligence Platforms (TIP)
Distributed Denial-of-Service (DDoS) Protection
Data Loss Prevention (DLP)
Attack Surface Management (ASM)
IT Management
Log Management
IT Infrastructure Monitoring
Remote Access
Server Monitoring
Managed DNS
Configuration Management
Operating Systems (OS) for Business
IT Service Management (ITSM)
Container Monitoring
Workload Automation
Container Management
Server Virtualization Software
IT Asset Management
Virtualization Management Tools
Virtual Desktop Infrastructure (VDI)
User Provisioning Software
Managed File Transfer (MFT)
IT Alerting and Incident Management
Remote Monitoring and Management (RMM)
SaaS Management Platforms
Cloud Computing
Microsoft Security Suite
Cloud Monitoring Software
Cloud Backup
AWS Marketplace
Cloud Management
Cisco Security Portfolio
PaaS Clouds
Infrastructure as a Service Clouds (IaaS)
Cloud Migration
Cloud Storage
Cloud Cost Management
Hybrid Cloud Computing Platforms
Public Cloud Storage Services
MSP Backup
Cloud Analytics
Software Defined Data Center (SDDC)
Compute Service
Cloud Storage Gateways
OpenStack
Hadoop
Data Management
Data Integration
Compliance Management
Data Governance
Cloud Data Integration
Data Warehouse
Relational Databases Tools
Cloud Data Warehouse
Vector Databases
Open Source Databases
Database Management Systems (DBMS)
Data Quality
Deduplication Software
Metadata Management
Database as a Service (DBaaS)
Database Development and Management
NoSQL Databases
Cloud Master Data Management (MDM)
Data Masking
Managed NoSQL Databases
Data Observability
Application Development Software
Application Performance Monitoring (APM) and Observability
Application Security Tools
Static Application Security Testing (SAST)
Rapid Application Development Software
IT Operations Analytics
DevSecOps
Application Security Posture Management (ASPM)
Functional Testing Tools
Test Automation Tools
Application Lifecycle Management (ALM) Suites
Patch Management
API Testing Tools
Software Supply Chain Security
Dynamic Application Security Testing (DAST)
Mobile APM
Software Development Analytics
Build Automation
Regression Testing Tools
Release Automation
Enterprise Agile Planning Tools
Enterprise Communications and Networking
Network Monitoring Software
Secure Web Gateways (SWG)
Software Defined WAN (SD-WAN) Solutions
WAN Edge
AIOps
WAN Optimization
CDN
Ethernet Switches
Network Traffic Analysis (NTA)
Network Management Applications
Wireless LAN
Network Automation
Application Delivery Controllers (ADC)
Network Troubleshooting
Rack Servers
Blade Servers
Routers
LAN Switching
Wireless WAN
AV Over IP Switching
Data Protection and Storage
Backup and Recovery
All-Flash Storage
Disaster Recovery (DR) Software
File and Object Storage
NVMe All-Flash Storage Arrays
Software Defined Storage (SDS)
NAS
SaaS Backup
HCI
Modular SAN (Storage Area Network)
Enterprise SAN
File Archiving
Data Replication
Converged Infrastructure
Disk Based Backup Systems
Container Backup Software
Application Server
File System Software
Cloud Software Defined Storage
Frame-Based Disk Arrays
Enterprise Architecture and Integration
API Management
Integration Platform as a Service (iPaaS)
Streaming Analytics
Business-to-Business Middleware
Event Monitoring
Application Infrastructure
Message Queue (MQ) Software
Enterprise Service Bus (ESB)
Data Migration Appliances
Message Oriented Middleware (MOM)
Migration Tools
General Purpose HSM
SOA Governance
SOA Application Gateways
Web Access Management
Payment HSM
Complex Event Processing (CEP)
Code Signing Management
Enterprise Applications
AI Observability
AI Software Development
Business Orchestration and Automation Technologies
Business Process Management (BPM)
Email Security
AI-Powered Cybersecurity Platforms
BI (Business Intelligence) Tools
Process Automation
AI Data Analysis
AI Security
Robotic Process Automation (RPA)
Low-Code Development Platforms
Reporting
AI IT Support
Data Visualization
Business Process Design
Project Management Software
ERP
Data Science Platforms
GRC
Customer Care
CRM
Help Desk Software
Data Management Platforms (DMP)
Customer Experience Management
Digital Experience Monitoring (DEM)
CRM Customer Engagement Centers
AI-Powered Chatbots
Contact Center Platforms
Field Service Management
Contact Center as a Service (CCaaS)
Workforce Engagement Management
Social CRM
Digital Experience Platforms (DXP)
Social Media Management Solutions
Live Chat
Customer Communications Management (CCM)
Partner Relationship Management (PRM)
Contact Center Infrastructure
IVR Systems
Customer Feedback Management
Data Center and Facilities Management
Data Center Networking
Enterprise Asset Management (EAM)
Data Center Infrastructure Management
Data Center Power Solutions
Workplace Management Software
Facility Maintenance Management Software
Data Center Cooling Systems
Computerized Maintenance Management Software (CMMS)
Data Center Monitoring
Workplace Analytics Software
Wiring and Cabling Solutions
Sales and Marketing
Marketing Management
Sales Force Automation
Opportunity Management
Marketing Automation
eCommerce Platforms
Product Configuration and Quoting
Marketing Intelligence
Web Analytics
Payment Processing Software
Personalization Engines
Marketing Resource Management
Product Management Software
Sales and Market Intelligence
Sales Performance Management
App Monetization Platforms
Advertisement Technology Platforms
Digital Marketing Service Providers
Channel Marketing Automation Software
Predictive Sales Intelligence
Content Marketing Software
All categories
Comparisons
Top comparisons
Cloudflare vs. Quad9
Netgate pfSense vs. OPNsense
Fortinet FortiGate vs. Sophos XG
Amazon API Gateway vs. Microsoft Azure API Management
Checkmarx One vs. SonarQube
GitLab vs. Microsoft Azure DevOps
Hyper-V vs. VMware vSphere
MinIO vs. Red Hat Ceph Storage
AWS Secrets Manager vs. Azure Key Vault
Figma vs. Miro Business - Enterprise
Amazon Web Services (AWS)
Amazon API Gateway vs. Microsoft Azure API Management
AWS Secrets Manager vs. Azure Key Vault
AWS GuardDuty vs. Microsoft Defender for Cloud
Amazon Route 53 vs. Azure DNS
Akamai Connected Cloud (Linode) vs. Amazon AWS
Amazon EKS vs. Red Hat OpenShift Container Platform
Amazon EFS (Elastic File System) vs. Microsoft Azure File Storage
AWS Security Hub vs. Microsoft Sentinel
Amazon QuickSight vs. Microsoft Power BI
AWS Database Migration Service vs. AWS Glue
Cisco
Cisco Secure Firewall vs. Fortinet FortiGate
Aruba Wireless vs. Cisco Meraki Wireless LAN
Aruba ClearPass vs. Cisco Identity Services Engine (ISE)
Cisco Umbrella vs. Zscaler Internet Access
Aruba Switches vs. Cisco Ethernet Switches
Cisco Wireless vs. Ruckus Wireless
Cisco Linksys Ethernet Switches vs. NETGEAR Switches
Cisco Intersight vs. Cisco UCS Manager
Cisco Meraki MX vs. Palo Alto Networks NG Firewalls
Cisco Secure Email vs. Trellix Collaboration Security
Dell Technologies
Dell PowerEdge R-Series vs. HPE ProLiant DL Servers
Dell PowerFlex vs. VxRail
Dell PowerStore vs. Dell Unity XT
Dell PowerProtect Data Domain vs. HPE StoreOnce
Dell PowerEdge T-Series vs. HPE Proliant ML
Dell Avamar vs. Dell PowerProtect Data Manager
Dell PowerScale (Isilon) vs. NetApp FAS Series
Dell APEX vs. HPE GreenLake
Dell RecoverPoint for Virtual Machines vs. VMware Live Recovery
Amazon AWS vs. Dell ObjectScale
Fortinet
Fortinet FortiGate vs. Sophos XG
Fortinet FortiGate Cloud vs. Fortinet FortiManager
Cisco Identity Services Engine (ISE) vs. Fortinet FortiNAC
Fortinet FortiClient vs. OpenVPN Access Server
Cisco Ethernet Switches vs. Fortinet FortiSwitch - Secure Access
F5 Advanced WAF vs. Fortinet FortiWeb
Azure Firewall vs. Fortinet FortiGate-VM
CrowdStrike Falcon vs. Fortinet FortiEDR
F5 BIG-IP Local Traffic Manager (LTM) vs. Fortinet FortiADC
FortiSASE vs. Prisma Access by Palo Alto Networks
Hewlett Packard Enterprise
Dell PowerEdge R-Series vs. HPE ProLiant DL Servers
Aruba Wireless vs. Cisco Meraki Wireless LAN
Aruba ClearPass vs. Cisco Identity Services Engine (ISE)
Aruba Switches vs. Cisco Ethernet Switches
Dell PowerProtect Data Domain vs. HPE StoreOnce
Dell PowerStore vs. HPE Alletra Storage
Dell PowerEdge T-Series vs. HPE Proliant ML
HPE SimpliVity vs. VxRail
HPE Zerto Software vs. Veeam Data Platform
Dell APEX vs. HPE GreenLake
IBM
IBM Security QRadar vs. Splunk Enterprise Security
ActiveMQ vs. IBM MQ
IBM DOORS vs. Polarion Requirements
IBM Security Guardium Data Protection vs. Imperva Data Security Fabric
IBM API Connect vs. IBM DataPower Gateway
Camunda vs. IBM BPM
IBM MaaS360 vs. Microsoft Intune
IBM Db2 Database vs. SQL Server
IBM Maximo vs. ServiceNow
IBM Integration Bus vs. Mule ESB
Microsoft
Amazon API Gateway vs. Microsoft Azure API Management
GitLab vs. Microsoft Azure DevOps
Hyper-V vs. VMware vSphere
AWS Secrets Manager vs. Azure Key Vault
AWS GuardDuty vs. Microsoft Defender for Cloud
Amazon Route 53 vs. Azure DNS
Windows 11 vs. Windows Server
Jamf Pro vs. Microsoft Intune
Google Cloud Identity vs. Microsoft Entra ID
Microsoft Power BI vs. Tableau Enterprise
Oracle
Oracle VM VirtualBox vs. Proxmox VE
Oracle VM vs. VMware vSphere
Oracle Linux vs. Ubuntu Linux
Firebird SQL vs. MySQL
Oracle Database vs. SAP HANA
Microsoft Power Apps vs. Oracle Application Express (APEX)
Oracle HCM Cloud vs. SAP SuccessFactors
Oracle Data Integrator (ODI) vs. Oracle Integration Cloud Service
NetSuite ERP vs. Oracle Fusion Cloud ERP
Oracle WMS vs. SAP Warehouse Management
SAP
Celonis vs. SAP Signavio Process Manager
SAP ERP vs. SAP S/4HANA
SAP SuccessFactors vs. Workday
Amazon AWS vs. SAP Cloud Platform
Oracle Database vs. SAP HANA
Microsoft Dynamics CRM vs. SAP CRM
Kinaxis vs. SAP Integrated Business Planning for Supply Chain
SAP PowerDesigner vs. erwin Data Modeler
SAP Analytics Cloud vs. SAP BusinessObjects Business Intelligence Platform
Oracle WMS vs. SAP Warehouse Management
Broadcom
Hyper-V vs. VMware vSphere
VMware Fusion Pro vs. VMware Workstation
VMware vSAN vs. VxRail
Jakarta EE vs. Spring Boot
AutoSys Workload Automation vs. Control-M
Microsoft Defender for Endpoint vs. Symantec Endpoint Security
Microsoft Azure vs. Pivotal Cloud Foundry
Nutanix Flow Network Security vs. VMware NSX
Red Hat Ansible Automation Platform vs. VMware Aria Automation
Microsoft Azure DevOps vs. Rally Software
More comparisons
For Vendors
For Vendors
Learn More
AWS + PeerSpot
Get Listed
Sign In
Home
Static Application Security Testing (SAST)
Semgrep
Pros & Cons
Semgrep pros and cons
Vendor:
Semgrep
4.0
out of 5
2 reviews
100% willing to recommend
Leave a review
Overview
Reviews
Pros & Cons
Alternatives
Semgrep Pros review quotes
Henry Mwawai
Security Consultant | Application Security at Jowatechs
Sep 23, 2024
The most valuable feature is the ability to write our custom rules.
Read full review
Manjunath Maneppagol
Cloud & Application Security at Sixt SE
Nov 29, 2025
Compared to other competitors in the market, the AI-backed capability is the biggest strength of Semgrep.
Read full review
Semgrep Cons review quotes
Henry Mwawai
Security Consultant | Application Security at Jowatechs
Sep 23, 2024
There should be more information on how to acquire the system, catering to beginners in application security, to make it more user-friendly.
Read full review
Manjunath Maneppagol
Cloud & Application Security at Sixt SE
Nov 29, 2025
I have consistently observed that their scan time is an issue; sometimes with their AI-based scanning, when you triage that scan, the scan never completes or finishes, which makes it difficult.
Read full review
Product Categories
Product Categories
Static Application Security Testing (SAST)
Supply Chain Management Software
Software Composition Analysis (SCA)
Static Code Analysis
Popular Comparisons
Popular Comparisons
SonarQube
vs Semgrep
Snyk
vs Semgrep
GitLab
vs Semgrep
Checkmarx One
vs Semgrep
Veracode
vs Semgrep
Coverity Static
vs Semgrep
Black Duck SCA
vs Semgrep
JFrog Xray
vs Semgrep
OWASP Zap
vs Semgrep
OpenText Core Application Security
vs Semgrep
Mend.io
vs Semgrep
OpenText Static Application Security Testing
vs Semgrep
Klocwork
vs Semgrep
CodeSonar
vs Semgrep
Aikido Security
vs Semgrep
See all alternatives
Product Categories
Product Categories
Static Application Security Testing (SAST)
Supply Chain Management Software
Software Composition Analysis (SCA)
Static Code Analysis
Popular Comparisons
Popular Comparisons
SonarQube
vs Semgrep
Snyk
vs Semgrep
GitLab
vs Semgrep
Checkmarx One
vs Semgrep
Veracode
vs Semgrep
Coverity Static
vs Semgrep
Black Duck SCA
vs Semgrep
JFrog Xray
vs Semgrep
OWASP Zap
vs Semgrep
OpenText Core Application Security
vs Semgrep
Mend.io
vs Semgrep
OpenText Static Application Security Testing
vs Semgrep
Klocwork
vs Semgrep
CodeSonar
vs Semgrep
Aikido Security
vs Semgrep
See all alternatives
Related questions
100
What Application Security Solution Do You Use That Is DevOps Friendly?
12
Which is the most comprehensive open source Web Security Testing tool?
41
What is the best Application Security Testing platform?
12
When evaluating Application Security Testing, what aspect do you think is the most important to look for?
39
SAST vs. DAST: Which is better for application security testing?
31
What tools do you rely on for building a DevSecOps pipeline?
45
What does the Log4j/Log4Shell vulnerability mean for your company?
39
Checkmarx or Veracode. Which should we choose?
61
What are your recommended automated penetration testing tools?
23
What are the OWASP top 10 in 2020?
Overview
Reviews
Pros & Cons
Alternatives
© 2026 PeerSpot, All Rights Reserved.
