Name: Checkmarx SAST
Rating: 4.6 (414 reviews)

Overview

Product Information on Checkmarx SAST

Updated 13th October 2025

What is Checkmarx SAST?

Checkmarx SAST is a software designed to analyze application source code in order to identify security vulnerabilities during the software development process. The software supports multiple programming languages and frameworks, enabling development and security teams to detect issues early in the application life cycle. Checkmarx SAST provides features such as automated code scanning, integration with development environments and CI/CD pipelines, customizable reporting, and support for compliance requirements. The software addresses business problems related to software security by helping organizations manage and reduce risks associated with insecure code, promoting safer software releases, and assisting with regulatory adherence.

Overall experience with Checkmarx SAST

Ing. Safety

250M - 500M USD, Telecommunication

FAVORABLE

“Excelent solution.”

5.0

Jun 18, 2021

It has significantly improved the security of our applications and the internal development process. The development and security areas have more synergy and the final products are more secure and efficient. Checkmarx technical support is excelent.

Director of Mobile and IoT Security

3B - 10B USD, Banking

CRITICAL

“Basic Code Review tool”

2.0

Oct 22, 2018

The tool has several static analysis rules that catch "low-hanging fruit" type of security vulnerabilities, but is overall cumbersome to leverage, hard to update, and not up-to-date with the fast-changing industry changes, notably mobile.

About Company

Company Description

Checkmarx provides agentic application security, delivering enterprise-grade protection while lowering engineering costs and accelerating development velocity. The Checkmarx One platform scans trillions of lines of code each year for companies, cutting vulnerability density by more than half. Its autonomous security agents detect and counter AI-driven threats across the SDLC, providing prevention-first protection for legacy, modern, and AI-generated code at enterprise scale.

Company Details

Company type

Private

Year Founded

2006

Head office location

Paramus, United States

Number of employees

501 - 1000

Website

http://www.checkmarx.com

Do You Manage Peer Insights at Checkmarx?

Access Vendor Portal to update and manage your profile.

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Reviewer Insights for: Checkmarx SAST

Performance of Checkmarx SAST Across Market Features

Checkmarx SAST Likes & Dislikes

It is easy to use, it is understandable. It is fast for developers to adapt throughout the development cicle.

Integration with most commonly used built processes for mobile applications.

The availability to look at the flow of the vulnerability and pinpoint the exact line of code that is causing the problem.

difficult integration with mac computers, compatibility with versions plugins eclipse, much permissions, and some languages don t support.

Support for Swift is lacking. The amount of built-in rules for Mobile is also inferior to competitors and most of them yield a low severity finding, which shows only limited potential to catch more serious issues.

CodeBashing, Checkmarx vulnerability training course has separate licencing than the static scanning tool. It would be nice if we could delete users once courses we complete so other developers could reuse the licenses.

Top Checkmarx SAST Alternatives

4.6

(62 Ratings)

4.9

(16 Ratings)

4.8

(13 Ratings)

View All Alternatives

Peer Discussions

Checkmarx SAST Reviews and Ratings

Showing data for 13 ratings and reviews for Mobile Application Security Testing market. View all 414 ratings and reviews across markets for a complete picture.

4.6

(13 Ratings)

Rating Distribution

5 Star: 62%
4 Star: 15%
3 Star: 15%
2 Star: 8%
1 Star: 0%

Customer Experience

Evaluation & Contracting

4.3

Integration & Deployment

4.2

Service & Support

4.2

Product Capabilities

4.2

Filter Reviews

Sort By:

Most helpful

Last 12 Months

Star Rating

Reviewer Type

Reviewer's Company Size

Reviewer's Industry

Reviewer's Region

Reviewer's Job Function

Ing. Safety
50M-1B USD
Telecommunication
Review Source
Excelent solution.
5.0
Jun 18, 2021
It has significantly improved the security of our applications and the internal development process. The development and security areas have more synergy and the final products are more secure and efficient. Checkmarx technical support is excelent.
IT Security Service Specialist
50M-1B USD
Insurance (except health)
Review Source
Checkmarx - A Product Worth Looking At
5.0
Jun 11, 2020
Checkmarx has been responsive to our needs and requests and the help desk has been great. We have integrated Static scanning into our build process in Jenkins and implemented failing builds for any high vulnerabilities found in the scan. The IDE for self service static scans works well. The product scans most languages that we commonly use with very few false/positives.
Sr. Product Line Manager
1B-10B USD
IT Services
Review Source
CheckMarx Review
5.0
Jun 22, 2020
Overall experience has been pretty smooth from start to end. The renewal process has been very smooth and the keys were provided right away and were upgraded on our servers. Customer Success Manager also setup a call to go over the renewal.
Head Of Application Security
50M-1B USD
Healthcare and Biotech
Review Source
The results were interesting. The quantity was high but the quality is middle.
4.0
Dec 21, 2019
Good product with many features but complicated for customization. Need special people on everyday duty to support it. To get good quality results of a scan to need to spend a lot of time to implement custom checks.
Senior Engineer
50M-1B USD
IT Services
Review Source
CxSAST :Tool for secure code review with latest salient features in security updates.
5.0
Jul 26, 2019
CxSAST is a great tool for secure code review with the key features: Flow of vulnerability in the code. Ease of scanning. Detailed Document of vulnerability with sample code. Reports generated in the required format with latest scan result.

Showing Result 1-5 of 13

Recommended Gartner Insights

Market Guide for Mobile Application Security Testing

This service may contain translations provided by Google. Google disclaims all warranties related to the translations, express or implied, including any warranties of accuracy, reliability, and any implied warranties of merchantability, fitness for a particular purpose and noninfringement. Gartner's use of this provider is for operational purposes and does not constitute an endorsement of its products or services.

Checkmarx SAST

Overview

Product Information on Checkmarx SAST

What is Checkmarx SAST?

Checkmarx SAST Pricing

Overall experience with Checkmarx SAST

“Excelent solution.”

“Basic Code Review tool”

About Company

Company Description

Company Details

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Reviewer Insights for: Checkmarx SAST

Performance of Checkmarx SAST Across Market Features

Checkmarx SAST Likes & Dislikes

Top Checkmarx SAST Alternatives

1. Appknox

2. Ostorlab

3. NowSecure Platform

Peer Discussions

Checkmarx SAST Reviews and Ratings

4.6

(13 Ratings)

Rating Distribution

Customer Experience

Product Capabilities

Excelent solution.

Checkmarx - A Product Worth Looking At

CheckMarx Review

The results were interesting. The quantity was high but the quality is middle.

CxSAST :Tool for secure code review with latest salient features in security updates.

Recommended Gartner Insights

Performance of Checkmarx SAST Across Market Features

Checkmarx SAST Likes & Dislikes

Reviewer Insights for: Checkmarx SAST