GuardLabs

← All website monitoring tools

Checkmarx One logo

Checkmarx One

paid · Founded 2006 · cloud

Unified AppSec platform consolidating SAST/SCA/IAST/API/IaC. Quote-based, public minimums ~$30,000/yr.

What it does well

  • Consolidates SAST, DAST, SCA, and API security into one unified platform.
  • Incremental SAST scans analyze only changed code, providing faster developer feedback.
  • Integrates directly into popular IDEs, source control, and CI/CD pipeline tools.

Where it falls short

  • No free tier or publicly available pricing; requires a sales quote.
  • Minimum annual cost is estimated to be in the tens of thousands.
  • The all-in-one platform can be complex to configure and manage initially.
Visit Checkmarx One See all 50 tools
Tags: web-appsastdastscaiastapienterprisecloud

Alternatives to Checkmarx One

Invicti (formerly Netsparker)

Enterprise DAST + IAST with Proof-Based Scanning — annual contracts, quote-only.

Veracode

Veracode

paid

Enterprise AppSec platform — SAST + DAST + SCA + manual pentest. Public minimum ~$15,000/yr.

Acunetix

Acunetix

paid

Mature commercial DAST scanner from Invicti — quote-based, generally $4,500+/yr per target tier.

Astra Pentest

Continuous DAST + manual pentest hybrid — published pricing $199-$5,999/yr, popular with SaaS startups.