Among the most powerful static source code analysis tools available today, CxSAST offers unique features that make it stand out from other enterprise class products:
Feature Type | Force.com Scanner | Checkmarx |
---|---|---|
Price | Free | Call for pricing! |
Subscription Period | Per Scan | 1 year, 3 year terms |
Implementation Options | Service Provider | On-Premise or Private Cloud |
Max Lines of Code (LoC)/Scan | 30,000 LoC | Unlimited |
Number of Projects | 1 Project | Call |
Salesforce Languages: Apex, VisualForce, Javascript, HTML5 | TRUE | TRUE |
Technical Support | FALSE | TRUE |
Best Fix Location (Remediation Optimization) [?] | FALSE | TRUE |
Salesforce direct support for Apex scan queries and scan results | FALSE | TRUE |
On-Demand Scanning and Immediate Results [?] | FALSE | TRUE |
IDE & Source Repository Integration [?] | FALSE | TRUE |
Standards Support (e.g. PCI-DSS, HIPAA, etc.) [?] | FALSE | TRUE |
Additional Supported Language Packages [?] | FALSE | TRUE |
Build Process Integration [?] | FALSE | TRUE |
API Access | FALSE | TRUE |
Checkmarx is the global leader in software security solutions for modern enterprise software development. Checkmarx delivers the industry’s most comprehensive Software Security Platform that unifies with DevOps and provides static and interactive application security testing, software composition analysis and developer AppSec awareness and training programs to reduce and remediate risk from software vulnerabilities. Checkmarx is trusted by more than 40 percent of the Fortune 100 and half of the Fortune 50, including leading organizations such as SAP, Samsung and Salesforce.com.