About CxSAST

Checkmarx Static Application Security Testing (CxSAST) is a static analysis platform that enables businesses to identify security vulnerabilities across source codes. It allows software development teams to automate workflows, define policies to streamline application security operations and mitigate operational risks.

It provides a variety of features such as cookies scoping, process control, command injection, collaboration, data filtration, and analytics. CxSAST helps users conduct security testing and software composition analysis. Additionally, It provides support for various coding and scripting languages such as Visual Basic, TypeScript, Scala, PHP, Cobol, Java, Kotlin and more.

CxSAST facilitates integration with numerous agile planning, bug track...


Read More

Supported Operating System(s):

3 Reviews of CxSAST

Overall rating

4.33 / 5 stars

Filter reviews by:

Sort by: Most Helpful | Most Recent

Showing 1 - 3 of 3 results

Do you use this product?Write a review

January 2021

Tiennot from Cert2Connect

Company Size: 11-50 employees

Industry: Computer & Network Security

Time Used: More than 2 years

Review Source: Capterra


Ease-of-use

4.0

Value for money

4.0

Customer support

5.0

Functionality

5.0

January 2021

CxSAST - A great static software analyzer

Pros

CXSast has several very important advantages. The first is that the code is scanned before it is even compiled, this means that de developers can scan and fix while they are still in the coding process. Second CXSAST fully integrates in any devops proces. Scanning and reporting will be doen from within the screens developers work in, so no unneccesary switching between screens. (see extention CXflow) Nex to that the rules (or queries) are open, every one can see them or a organisation can tailor them to their own need. If needed a FP free setup can be created! V9.3 now enable installation of the engines on Linux, you can dockarize the stuff Last but not least CXSast can be setup with additions such as CX-SCA (opensource analysis) and CX-IAST (passive IAST scanning)

Cons

The installation can sometimes be difficult. However Checkmarx counters this by offering free installation services for their costumers.

April 2021

‍ Sarai from HarperCollins

Verified Reviewer

Company Size: 1,001-5,000 employees

Industry: Publishing

Time Used: Less than 6 months

Review Source: Capterra


Ease-of-use

5.0

Functionality

5.0

April 2021

Intuitive software

Pros

Finding code vulnerabilities is hard. CxSAST makes it easy. Not only does it point out the vulnerability, it explains why the code is vulnerable, which is very valuable for future proofing code.

Cons

Can sometimes include false positives. However this is mitigated by selecting “proposed not exploitable” if necessary.

August 2019

Jayesh from Capita

Company Size: 501-1,000 employees

Industry: Leisure, Travel & Tourism

Time Used: Less than 12 months

Review Source: Capterra


Ease-of-use

3.0

Value for money

3.0

Functionality

3.0

August 2019

Its on OK Product

Pros

We use this tool to check security vulnerabilities Option to configure multiple projects Compare the results between two scans Download the report results

Cons

Not very User-Friendly. Takes time to run the scan Difficult to configure with development studios.