Introducing G2.ai, the future of software buying.Try now
Compare Checkmarx and HCL AppScan 
Featured Products
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
Aikido Security
Visit Website
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
OX Security
Visit Website
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
Intruder
Visit Website
At a Glance
Market Segments
Enterprise (53.1% of reviews)
Enterprise (53.4% of reviews)
Entry-Level Pricing
No pricing available
Free
Checkmarx
Star Rating
(36)4.2 out of 5
Market Segments
Enterprise (53.1% of reviews)
Pros & Cons
Entry-Level Pricing
No pricing available
Learn more about CheckmarxHCL AppScan
Star Rating
(76)4.1 out of 5
Market Segments
Enterprise (53.4% of reviews)
Pros & Cons
Not enough data
Entry-Level Pricing
Free
Browse all 3 pricing plansSummary
AI Generated Summary
AI-generated. Powered by real user reviews.
- Users report that Checkmarx excels in Static Code Analysis with a score of 9.0, highlighting its thorough detection capabilities and effectiveness in identifying vulnerabilities early in the development process. In contrast, HCL AppScan's Static Code Analysis scored 8.3, which some reviewers feel may not be as robust in comparison.
- Reviewers mention that HCL AppScan offers a more user-friendly experience with an Ease of Use score of 8.5, making it easier for teams to adopt and integrate into their workflows. Checkmarx, while still effective, received a slightly lower score of 8.2, indicating that some users find it less intuitive.
- G2 users highlight Checkmarx's strong API and integration capabilities with a score of 8.2, allowing for seamless integration into existing CI/CD pipelines. HCL AppScan, while also capable, scored slightly lower at 8.1, suggesting that users may encounter more challenges when integrating with other tools.
- Users on G2 report that HCL AppScan shines in Reporting and Analytics with a score of 8.6, providing detailed insights and actionable data for security teams. Checkmarx's Reporting and Analytics score of 8.3 is still commendable but may not offer the same depth of analysis as HCL AppScan.
- Reviewers mention that Checkmarx's remediation suggestions are particularly strong, helping teams prioritize vulnerabilities effectively. This is reflected in its overall effectiveness in Software Composition Analysis, where it scored higher than HCL AppScan, which some users feel could improve in this area.
- Users say that HCL AppScan's Test Automation capabilities are impressive, scoring 8.4, which allows for efficient testing processes. Checkmarx's Test Automation score of 8.4 is on par, but some users feel that HCL AppScan provides a more streamlined experience in this regard.
Pricing
Entry-Level Pricing
Checkmarx
No pricing availableHCL AppScan
HCL AppScan CodeSweep
Free
Free-to-use security tool for developers alike who need to "spell check" and fix their code, as they write it, in multiple IDEs.
- Ideal for Developers
Free Trial
Checkmarx
Free Trial is available
HCL AppScan
Free Trial is available
Ratings
Meets Requirements
8.6
27
8.8
59
Ease of Use
8.2
27
8.5
62
Ease of Setup
7.7
13
8.5
31
Ease of Admin
7.9
13
8.7
31
Quality of Support
8.3
22
8.5
60
Has the product been a good partner in doing business?
8.3
12
8.8
30
Product Direction (% positive)
7.5
23
8.4
58
Features by Category
Administration
8.3
5
8.2
21
8.3
5
8.5
21
Analysis
8.6
6
8.6
22
8.1
6
7.8
22
8.3
6
8.3
22
8.7
5
8.0
22
Testing
7.7
5
7.6
21
7.3
5
7.8
21
Not enough data
8.4
20
Not enough data
7.9
21
Not enough data
8.3
20
Not enough data
8.3
21
5.3
5
7.5
21
Agentic AI - Static Application Security Testing (SAST)
Not enough data
Not enough data
Administration
Not enough data
8.1
26
Not enough data
8.2
28
Analysis
Not enough data
8.5
29
Not enough data
8.0
27
Not enough data
8.2
28
Not enough data
8.5
27
Not enough data
8.3
27
Testing
Not enough data
7.7
28
Not enough data
7.9
24
Not enough data
8.4
26
Not enough data
8.2
29
Not enough data
8.2
29
Not enough data
7.1
29
Functionality - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Effectiveness - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Documentation
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Code Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Performance - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Integration - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Interactive Application Security Testing (IAST)Hide 1 FeatureShow 1 Feature
Not enough data
Not enough data
Agentic AI - Interactive Application Security Testing (IAST)
Not enough data
Not enough data
Categories
Categories
Shared Categories
Checkmarx and HCL AppScan are categorized as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Interactive Application Security Testing (IAST)
Reviews
Reviewers' Company Size
Checkmarx
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
HCL AppScan
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Information Technology and Services
15.6%
Computer Software
15.6%
Computer & Network Security
9.4%
Banking
9.4%
Automotive
6.3%
Other
43.8%
Information Technology and Services
24.3%
Computer & Network Security
13.5%
Computer Software
9.5%
Automotive
8.1%
Banking
6.8%
Other
37.8%
Alternatives
Discussions
What is Checkmarx used for?
2 Comments
SS
Checkmarx is a static code analysis tool used for SAST (Static application security testing)Read more
Which testing method does Checkmarx support?
1 Comment
SS
Checkmarx does support all these testing methodologies -Sast, Dast, IAST, SCA Read more
Who owns AppScan?
1 Comment
Official Response from HCL AppScan
HCL AppScan is owned by HCL Software.Read more
HCL AppScan has no more discussions with answers
Hunting for software insights?
With over 3 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
