Introducing G2.ai, the future of software buying.Try now
- Home
- ...
- Static Application Security Testing (SAST) Software
- Checkmarx
- Veracode Application Security Platform
- Checkmarx-vs-Veracode Application Security Platform
Compare Checkmarx and Veracode Application Security Platform 
At a Glance
Market Segments
Enterprise (51.6% of reviews)
Enterprise (52.2% of reviews)
Entry-Level Pricing
No pricing available
No pricing available
Checkmarx
Star Rating
(35)4.2 out of 5
Market Segments
Enterprise (51.6% of reviews)
Entry-Level Pricing
No pricing available
Learn more about CheckmarxVeracode Application Security Platform
Star Rating
(24)3.7 out of 5
Market Segments
Enterprise (52.2% of reviews)
Entry-Level Pricing
No pricing available
Learn more about Veracode Application Security PlatformSummary
AI Generated Summary
AI-generated. Powered by real user reviews.
- Users report that Checkmarx excels in its Static Code Analysis with a score of 9.0, providing comprehensive insights into code vulnerabilities, while Veracode's score of 9.3 indicates a strong performance but with slightly less user satisfaction in this area.
- Reviewers mention that Checkmarx offers superior Ease of Setup with a score of 7.6, making it more user-friendly for new implementations compared to Veracode's lower score of 5.7, which users find cumbersome.
- G2 users highlight Checkmarx's Extensibility with a remarkable score of 9.2, allowing for better customization and integration with existing tools, whereas Veracode's extensibility features are perceived as less flexible.
- Users on G2 report that Checkmarx's Quality of Support is rated at 8.3, with many reviewers praising the responsiveness and helpfulness of the support team, while Veracode's support, rated at 8.0, is seen as adequate but not as proactive.
- Reviewers mention that Checkmarx provides more effective Remediation Suggestions, which helps teams prioritize vulnerabilities effectively, while Veracode's suggestions are noted to be less actionable, leading to some frustration among users.
- Users say that Checkmarx's Reporting and Analytics features, rated at 8.3, are more intuitive and user-friendly, allowing for better visualization of security metrics compared to Veracode's reporting capabilities, which some users find less clear.
Featured Products
Sponsored
Intruder
(182)
Static Code Analysis
Visit Website
Sponsored
OX Security
(51)
Static Code Analysis
Visit Website
Pricing
Entry-Level Pricing
Checkmarx
No pricing availableVeracode Application Security Platform
No pricing availableFree Trial
Checkmarx
Free Trial is available
Veracode Application Security Platform
No trial information availableRatings
Meets Requirements
8.7
26
8.1
19
Ease of Use
8.2
26
7.3
19
Ease of Setup
7.6
12
5.7
7
Ease of Admin
7.9
13
7.4
7
Quality of Support
8.3
22
8.0
18
Has the product been a good partner in doing business?
8.3
12
7.9
7
Product Direction (% positive)
7.9
22
6.3
19
Features by Category
Administration
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Administration
Not enough data
Not enough data
Not enough data
Not enough data
Analysis
8.3
5
Not enough data
8.0
5
Not enough data
9.0
5
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Application Security Testing (SAST)
Not enough data
Not enough data
Administration
Not enough data
7.9
7
Not enough data
9.2
6
Analysis
Not enough data
8.3
7
Not enough data
8.3
5
Not enough data
9.3
7
Not enough data
8.8
7
Not enough data
8.6
6
Testing
Not enough data
Not enough data
Not enough data
9.0
5
Not enough data
Not enough data
Not enough data
8.3
5
Not enough data
8.0
5
Not enough data
7.8
6
Performance
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Network
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Application
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Vulnerability Scanner
Not enough data
Not enough data
Not enough data
Not enough data
Functionality - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Effectiveness - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Documentation
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Code Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Interactive Application Security Testing (IAST)Hide 1 FeatureShow 1 Feature
Not enough data
Not enough data
Agentic AI - Interactive Application Security Testing (IAST)
Not enough data
Not enough data
Categories
Categories
Shared Categories
Checkmarx and Veracode Application Security Platform are categorized as Static Code Analysis, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Secure Code Review, and Interactive Application Security Testing (IAST)
Unique Categories
Checkmarx has no unique categories
Veracode Application Security Platform is categorized as Penetration Testing, Vulnerability Scanner, and Software Composition Analysis
Reviews
Reviewers' Company Size
Checkmarx
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Veracode Application Security Platform
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Information Technology and Services
16.1%
Computer Software
16.1%
Banking
9.7%
Computer & Network Security
6.5%
Automotive
6.5%
Other
45.2%
Information Technology and Services
30.4%
Hospital & Health Care
13.0%
Consumer Goods
8.7%
Computer Software
8.7%
Telecommunications
4.3%
Other
34.8%
Most Helpful Reviews
Checkmarx
Most Helpful Favorable Review
Verified User in Banking
Results are pretty good with CheckMarx. This tool is helpful to build secure source code. CheckMarx scan report gives detailed view of each issue and flowchart is given for the variables which might cause security threat. Code scanning is fast.
Most Helpful Critical Review
Verified User in Food Production
Sometimes when you most need a part to save it is sometimes slow.
Veracode Application Security Platform
Most Helpful Favorable Review
Verified User in Information Technology and Services
Veracode is good static analysis tool to find security flaws. I use this tool to scan my java microservices jar files. it's easy to configure. It does not require source code and accepts binary files and scans them. We can either manually scan files or...
Most Helpful Critical Review
Alex G.
Verified User in Design
Unfortunately, Veracode hasn't actually found the formula for success yet. The interface is clunky and disjointed, the documentation is confusing, and customer support takes literally weeks or months to respond to requests. It's a classic case of an...
Verified User in Banking
Results are pretty good with CheckMarx. This tool is helpful to build secure source code. CheckMarx scan report gives detailed view of each issue and flowchart is given for the variables which might cause security threat. Code scanning is fast.
Verified User in Information Technology and Services
Veracode is good static analysis tool to find security flaws. I use this tool to scan my java microservices jar files. it's easy to configure. It does not require source code and accepts binary files and scans them. We can either manually scan files or...
Verified User in Food Production
Sometimes when you most need a part to save it is sometimes slow.
Alex G.
Verified User in Design
Unfortunately, Veracode hasn't actually found the formula for success yet. The interface is clunky and disjointed, the documentation is confusing, and customer support takes literally weeks or months to respond to requests. It's a classic case of an...
Discussions
What is Checkmarx used for?
2 comments
SS
Checkmarx is a static code analysis tool used for SAST (Static application security testing)Read more
Checkmarx supports Static Application Security Testing (SAST).
1 comment
SS
Checkmarx does support all these testing methodologies -Sast, Dast, IAST, SCA Read more
Veracode Application Security Platform has no discussions with answers
Hunting for software insights?
With over 2.5 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
