Klocwork 2026: Benefits, Features & Pricing

Name: Klocwork
Rating: 4.6 (8 reviews)

On this page

Overview
Pricing and Plans
Features
Integrations
User Reviews

Overview

Klocwork

4.6

(8)

Pricing

Pricing available upon request

About Klocwork

Klocwork is a web-based static application security testing (SAST software designed to help businesses identify and fix software security issues in compliance with security standards such as OWASP, CWE, PCI DSS, CERT and ISO/IEC TS 17961 and DISA STIG. It offers differential analysis, which lets IT professionals analyze files using system context data through the Klocwork Server.

DevOps teams using Klocwork can control access permissions, manage approval workflows, generate compliance and security reports, display metrics and trending data and prioritize defects on the basis of severity, lifecycle and location. Containerized builds enable managers to use internal or external cloud services to streamline code analysis. Additionally, businesses can integrate the system with various architectural enforcement and visualization tools.

Klocwork offers plugins for a variety of IDEs including Eclipse, Microsoft Visual Studio, IntelliJ and more. Custom rules can be implemented using the graphical custom checker creation tool.

Klocwork Screenshots

Klocwork Pricing and Plans

Starting price: Pricing available upon request

Free Trial

Free Version

Basic

Pricing available upon request

No plan information available

Klocwork Features

Popular features found in Application Development
API
Collaboration Tools
Compatibility Testing
Debugging
Deployment Management
Drag & Drop
Pre-built Templates
Source Control
Third-Party Integrations
Version Control
More features of Klocwork
Access Controls/Permissions
Activity Dashboard
Activity Tracking
Alerts/Notifications
Application Security
Audit Trail
Backlog Management
Bug/Issue Capture
Bug Tracking
Custom Development
Dashboard
Data Visualization
For Developers
Integrated Development Environment
Issue Management
Issue Tracking
Mobile Development
Monitoring
Multi-Language Scanning
Prioritization
Project Management
Real-Time Analytics
Real-Time Notifications
Real-Time Updates
Reporting/Analytics
Reporting & Statistics
Software Development
Source-Code Scanning
Status Tracking
Task Planning
Vulnerability Scanning
Web App Development
Workflow Management

Klocwork Integrations

Microsoft Visual Studio

Incredibuild

Jenkins

Perforce ALM

Klocwork User Reviews

Overall Rating

4.6

Ratings Breakdown

63%

38%

Secondary Ratings

Ease of Use

3.9

Value for money

4.5

Customer support

4.4

Functionality

4.5

Have you used Klocwork and would like to share your experience with others?

Fred B.

Verified reviewer

51-200 employees

Used monthly for less than 12 months

Review source

Reviewed February 2018

It's a source code analysis tool. You can feed it either a piece of code up to a full build with tho

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

Klocwork is great at finding software defects such as array and buffer out of bounds violations, Null pointer dereferences, unreachable code, memory leaks, unused variables, etc. If the build is setup correctly, the tool often produces accurate results. Customers have complimented us with our findings as we were able to point out significant issues in their software. Klocwork can be used on incremental builds and it will determine which warnings are new, unchanged, or fixed since the last run. The tool has very descriptive warnings and great documentation with examples to use. Their website also contains mappings from their checker warnings to industry coding standards such as MISRA and others.

Cons:

It doesn't have a user friendly interface for running the tool. Although it won't prevent you from running it on any piece of code or software build, the tool produces much less false positives when the input build is setup properly, which often requires some effort. Klocwork is run via command line, so the user must have knowledge of the necessary commands, command line arguments, and configuration setup. Although the results can be viewed through the Klocwork Insight Review web interface, there is no easy way for the user to export the data to a spreadsheet for offline viewing and analysis.

Randall H.

Verified reviewer

11-50 employees

Used monthly for more than 2 years

Review source

Reviewed January 2018

Great at finding true positive issues in source code without needing to compile

This tool provided my company an easy means to find code defects on partial and full source code builds. The results of the tool have been very good. Although manual analysis is still required to determine which issues the customer are interested in, the time invested in setting up, running the tool, and manually analyzing the results, is well worth it.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

Klocwork works great with source code whether a complete or partial build. Easy to run the tool with minimal setup work. Tool has a higher chance of producing true positives vs false positives if setup right. Checker warnings are easy to understand and there is decent documentation explaining what each checker does. Klocwork Insight's web interface is easy to work with and provides a little help for tracing issues. Klocwork's Checker Studio enables users to create their own custom checkers, which are easy to deploy. The tool is great at finding critical issues in code, especially for buffer overflows, array out of bounds, null pointer dereferences, and dead code. The tool also maintains history of builds run and does build comparisons on each run for it to flag what warnings are new or not.

Cons:

Running the tool for us is usually done on a Unix server via command line, which users have expressed they would not prefer to a GUI. There is no easy way to extract the results from the tool to an Excel spreadsheet, but there are ways around it via scripting. There is no good documentation on Checker Studio, on how to create checkers, especially on how to program in KAST, even more so for Path checkers.

Verified

Reviewer

Computer & Network Security

10000+ employees

Used monthly for more than 2 years

Review source

Reviewed May 2020

Powerful tool, but...

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

Klocwork is a powerful static code checker. It helps to improve code global quality and to early detect errors.

Cons:

But it is a litte bit tricky to customize. Learning curve is not so short.

akash s.

Verified reviewer

Information Services

11-50 employees

Used daily for more than 2 years

Review source

Reviewed January 2023

Klocwork SAST REVIEW

very good

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

less false positive and on the fly analysis

Cons:

interface of the dashboard and few extra added features

Devendra P.

Information Technology and Services

501-1000 employees

Used daily for more than 2 years

Review source

Reviewed December 2018

Very good in checking run time problems !!

As our main case is to detect some run time issues and using Klocwork we are getting these issues.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

For our project we would like check run time issues like Divided by Zero, Array out of Bounds, Null pointer issues and so on. Klocwork is very good in this and has some good number of checkers for these problems. In addition to this Klocwork has direct plugin availability to lot of IDE's which will be helpful for all the developers.

Cons:

I would say that Klocwork has almost all good features as per my experience.

Raviteja A.

Information Technology and Services

201-500 employees

Used daily for less than 2 years

Review source

Reviewed December 2018

Good Tool for On the fly Analysis!!

Before using Klocwork we used to check our Internal Standards manually but now Klocwork has completely removed this manual process.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

I most loved feature in Klocwork as per my experience would be its on the fly analysis feature. This feature will help us in checking our code while developing, which will reduce the time in delivering our product. One more best thing would be Custom Checkers which are very important for us where we will be checking our internal Standards without Manual Intrevention.

Cons:

The entire process of creating custom checkers is bit lengthy which I feel bit uncomfortable.

Dinesh M.

Information Technology and Services

501-1000 employees

Used daily for less than 2 years

Review source

Reviewed January 2019

Good and User Friendly Static Code Analyzer

My Company has completely eliminated the manual process of checking the internal Standards. We can get the reports of the project in a very easy way and we can even customize this according to our requirements.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

It has very good Checker List and also it is having very decent documentation for each and every Checker. Setting up the tool is very easy and straightforward. It is very easy to create one's own Internal Checkers.

Cons:

AS per my view creating custom checkers would be lengthy. Except this Klocwork has almost all the good features.

Verified

Reviewer

Oil & Energy

10000+ employees

Used monthly for less than 2 years

Review source

Reviewed January 2019

A solid static code analyzer.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

All the common bugs are easily handled and the tool has surprised me in finding very well hidden and unusual bugs producing accurate results even when the code was only partially built. The availability of IDEs plugin is a plus.

Cons:

The user interface could be improved a lot as well as the output format. Creating custom checkers could be simplified as it is, in my opinion, the Achilles' heel of the product.

Showing 1 - 8 of 8 Reviews