Introducing G2.ai, the future of software buying.Try now

Compare Checkmarx and SonarQube

Save
    Log in to your account
    to save comparisons,
    products and more.
Add Product
Checkmarx
Checkmarx
(36)
4.2 out of 5
Checkmarx
By Checkmarx
SonarQube
SonarQube
(126)
4.5 out of 5
SonarQube
By SonarSource Sàrl
At a Glance
Checkmarx
Checkmarx
Star Rating
(36)4.2 out of 5
Market Segments
Enterprise (53.1% of reviews)
Information
Pros & Cons
Entry-Level Pricing
No pricing available
Learn more about Checkmarx
SonarQube
SonarQube
Star Rating
(126)4.5 out of 5
Market Segments
Enterprise (41.6% of reviews)
Information
Pros & Cons
Entry-Level Pricing
Free
Free Trial is available
Browse all 6 pricing plans
AI Generated Summary
AI-generated. Powered by real user reviews.
  • G2 reviewers report that SonarQube excels in overall user satisfaction, reflected in its higher G2 Score. Users appreciate its simple deployment process, especially when integrating with platforms like GitHub, which allows for seamless scanning and code suggestions.
  • Users say Checkmarx offers a user-friendly experience, with many finding it easy to navigate its numerous features. Reviewers highlight its comprehensive scanning tools that effectively identify vulnerabilities across various types of scans, making it a solid choice for security-focused teams.
  • Reviewers mention that SonarQube's code quality suggestions are particularly valuable, helping developers improve their coding practices. This feature is praised for its ability to highlight potential errors and provide actionable insights, enhancing overall code quality.
  • According to verified reviews, Checkmarx faces some challenges with implementation, but users note that once set up, it is relatively straightforward to integrate additional functionalities. This flexibility can be beneficial for teams looking to expand their security capabilities over time.
  • G2 reviewers highlight that while both products have strong support, SonarQube's ease of setup and administration is a notable advantage, with users finding it easier to manage and configure compared to Checkmarx.
  • Users report that Checkmarx's focus on security features, such as its SAST capabilities, is a strong point, but some feel it could improve in areas like false positive rates, where SonarQube tends to perform better, providing a more reliable scanning experience.
Pricing
Entry-Level Pricing
Checkmarx
No pricing available
SonarQube
Cloud - based: Free
Free
Browse all 6 pricing plans
Free Trial
Checkmarx
Free Trial is available
SonarQube
Free Trial is available
Ratings
Meets Requirements
8.6
27
8.8
109
Ease of Use
8.2
27
8.5
112
Ease of Setup
7.7
13
8.1
71
Ease of Admin
7.9
13
8.5
63
Quality of Support
8.3
22
8.2
91
Has the product been a good partner in doing business?
8.3
12
8.4
57
Product Direction (% positive)
7.5
23
8.6
106
Features by Category
Static Application Security Testing (SAST)Hide 14 FeaturesShow 14 Features
7.8
6
7.3
23
Administration
8.3
5
7.8
19
8.3
5
6.0
20
Analysis
8.6
6
7.4
21
8.1
6
8.0
20
8.3
6
9.0
23
8.7
5
9.1
23
Testing
7.7
5
6.6
18
7.3
5
5.9
19
Not enough data
6.0
21
Not enough data
6.9
18
Not enough data
6.8
17
Not enough data
8.2
21
5.3
5
6.8
22
Agentic AI - Static Application Security Testing (SAST)
Not enough data
Not enough data
Dynamic Application Security Testing (DAST)Hide 13 FeaturesShow 13 Features
Not enough data
Not enough data
Administration
Not enough data
Not enough data
Not enough data
Not enough data
Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Software Development Analytics ToolsHide 6 FeaturesShow 6 Features
Not enough data
8.0
33
Functionality
Not enough data
8.1
31
Not enough data
8.4
30
Not enough data
8.2
29
Management
Not enough data
Feature Not Available
Not enough data
7.5
25
Not enough data
7.8
27
Bug TrackingHide 9 FeaturesShow 9 Features
Not enough data
8.1
11
Bug Reporting
Not enough data
7.7
10
Not enough data
8.0
10
Not enough data
8.3
10
Bug Monitoring
Not enough data
7.8
10
Not enough data
8.2
10
Not enough data
8.5
10
Agentic AI - Bug Tracking
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Software Composition AnalysisHide 6 FeaturesShow 6 Features
Not enough data
Not enough data
Functionality - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Effectiveness - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Secure Code ReviewHide 6 FeaturesShow 6 Features
Not enough data
7.5
38
Documentation
Not enough data
7.8
36
Not enough data
7.6
35
Not enough data
8.2
36
Security
Not enough data
6.8
34
Not enough data
7.0
32
Not enough data
7.9
33
Application Security Posture Management (ASPM)Hide 11 FeaturesShow 11 Features
Not enough data
8.5
7
Risk management - Application Security Posture Management (ASPM)
Not enough data
9.3
5
Not enough data
Feature Not Available
Not enough data
9.0
5
Not enough data
8.9
6
Integration and efficiency - Application Security Posture Management (ASPM)
Not enough data
7.8
6
Not enough data
Feature Not Available
Reporting and Analytics - Application Security Posture Management (ASPM)
Not enough data
7.8
6
Not enough data
Not enough data
Not enough data
8.3
5
Agentic AI - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Software Bill of Materials (SBOM)Hide 6 FeaturesShow 6 Features
Not enough data
Not enough data
Functionality - Software Bill of Materials (SBOM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Management - Software Bill of Materials (SBOM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
AI Governance ToolsHide 15 FeaturesShow 15 Features
Not enough data
Not enough data
AI Compliance
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Feature Not Available
Risk Management & Monitoring
Not enough data
Feature Not Available
Not enough data
Not enough data
AI Lifecycle Management
Not enough data
Feature Not Available
Access Control and Security
Not enough data
Not enough data
Collaboration and Communication
Not enough data
Feature Not Available
Agentic AI - AI Governance Tools
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Feature Not Available
Not enough data
Not enough data
Static Code AnalysisHide 3 FeaturesShow 3 Features
Not enough data
6.2
8
Agentic AI - Static Code Analysis
Not enough data
6.3
8
Not enough data
5.7
7
Not enough data
6.7
8
AI AppSec AssistantsHide 6 FeaturesShow 6 Features
Not enough data
Not enough data
Performance - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Integration - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Cloud SecurityHide 9 FeaturesShow 9 Features
Not enough data
Not enough data
Cloud Visibility
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Identity
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Interactive Application Security Testing (IAST)Hide 1 FeatureShow 1 Feature
Not enough data
Not enough data
Agentic AI - Interactive Application Security Testing (IAST)
Not enough data
Not enough data
Categories
Categories
Shared Categories
Checkmarx
Checkmarx
SonarQube
SonarQube
Unique Categories
Checkmarx
SonarQube
Reviews
Reviewers' Company Size
Checkmarx
Checkmarx
Small-Business(50 or fewer emp.)
18.8%
Mid-Market(51-1000 emp.)
28.1%
Enterprise(> 1000 emp.)
53.1%
SonarQube
SonarQube
Small-Business(50 or fewer emp.)
18.4%
Mid-Market(51-1000 emp.)
40.0%
Enterprise(> 1000 emp.)
41.6%
Reviewers' Industry
Checkmarx
Checkmarx
Information Technology and Services
15.6%
Computer Software
15.6%
Computer & Network Security
9.4%
Banking
9.4%
Automotive
6.3%
Other
43.8%
SonarQube
SonarQube
Information Technology and Services
27.2%
Computer Software
21.6%
Financial Services
6.4%
Hospital & Health Care
3.2%
Computer & Network Security
3.2%
Other
38.4%
Alternatives
Checkmarx
Checkmarx Alternatives
Veracode Application Security Platform
Veracode Application Security Platform
Add Veracode Application Security Platform
GitLab
GitLab
Add GitLab
GitHub
GitHub
Add GitHub
HCL AppScan
HCL AppScan
Add HCL AppScan
SonarQube
SonarQube Alternatives
GitHub
GitHub
Add GitHub
GitLab
GitLab
Add GitLab
Mend.io
Mend.io
Add Mend.io
Semgrep
Semgrep
Add Semgrep
Discussions
Checkmarx
Checkmarx Discussions
What is Checkmarx used for?
2 Comments
Sujeet S.
SS
Checkmarx is a static code analysis tool used for SAST (Static application security testing)Read more
Does Checkmarx support DAST?
1 Comment
Soven Kumar R.
SR
You cannot test DAST Testing using CheckmarxRead more
Which testing method does Checkmarx support?
1 Comment
sanjay s.
SS
Checkmarx does support all these testing methodologies -Sast, Dast, IAST, SCA Read more
See all discussions
SonarQube
SonarQube Discussions
Monty the Mongoose crying
SonarQube has no discussions with answers
See all discussions
Ask Checkmarx a QuestionContact Checkmarx
Ask SonarQube a QuestionContact SonarQube

Spotlight Categories

Add Product
Checkmarx
Checkmarx
SonarQube
SonarQube