Black Duck Software Composition Analysis (SCA) vs. Indusface Web Application Scanning vs. ManageEngine Patch Manager Plus

Black Duck Software Composition Analysis (SCA)

13 Reviews and Ratings

Indusface Web Application Scanning

1 Reviews and Ratings

ManageEngine Patch Manager Plus

33 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Black Duck Software Composition Analysis (SCA)	Score 10.0 out of 10	N/A	Black Duck is a software composition analysis tool acquired and now supported by Synopsys since 2017.	N/A
Indusface WAS	Score 9.0 out of 10	N/A	Indusface Web Application Scanner provides an application security audit to detect a range of high-risk Vulnerabilities, Malware, and Critical CVEs.	$59 per month
ManageEngine Patch Manager Plus	Score 8.4 out of 10	N/A	Patch Manager Plus is an automated patch management software that provides enterprises with a single interface for all patch management tasks. The vendor claims it works across platforms, helping users patch Windows, Mac, Linux & 300+ third-party applications. With Automated Patch Deployments, users can automate the entire process of patch management:…	$245 50 endpoints

Pricing

Black Duck Software Composition Analysis (SCA)

Indusface Web Application Scanning

ManageEngine Patch Manager Plus

Editions & Modules

No answers on this topic

Advance - Comprehensive Risk Detection: $59
per month
Premium - Managed Risk Detection: $2388
per month
Basic Risk Detection: Free

Professional: $245.00
50 endpoints
Enterprise: $345.00
50 endpoints
Professional: $345.00
50 endpoints
Enterprise: $445.00
50 endpoints

Offerings

Pricing Offerings
Black Duck Software Composition Analysis (SCA)	Indusface WAS	ManageEngine Patch Manager Plus
Free Trial
No	Yes	Yes
Free/Freemium Version
No	Yes	Yes
Premium Consulting/Integration Services
Yes	Yes	Yes

Entry-level Setup Fee

Optional

No setup fee

Optional

Additional Details

Contact the Synopsys Software Integrity Group (SIG) Sales team at https://www.synopsys.com/software-integrity/contact-sales.html for more detailed pricing information.

—

More Pricing Information

Community Pulse
	Black Duck Software Composition Analysis (SCA)	Indusface Web Application Scanning	ManageEngine Patch Manager Plus

Best Alternatives
	Black Duck Software Composition Analysis (SCA)	Indusface Web Application Scanning	ManageEngine Patch Manager Plus
Small Businesses	No answers on this topic	GitLab Score 8.7 out of 10	Action1 Score 9.5 out of 10
Medium-sized Companies	Veracode Score 8.8 out of 10	Veracode Score 8.8 out of 10	Action1 Score 9.5 out of 10
Enterprises	Veracode Score 8.8 out of 10	Veracode Score 8.8 out of 10	CrowdStrike Falcon Score 9.1 out of 10
All Alternatives	View all alternatives	View all alternatives	View all alternatives

User Ratings
	Black Duck Software Composition Analysis (SCA)	Indusface Web Application Scanning	ManageEngine Patch Manager Plus
Likelihood to Recommend	10.0 (5 ratings)	9.0 (1 ratings)	8.6 (15 ratings)
Usability	8.0 (1 ratings)	- (0 ratings)	8.8 (9 ratings)
Support Rating	8.2 (2 ratings)	- (0 ratings)	9.0 (1 ratings)

User Testimonials
	Black Duck Software Composition Analysis (SCA)	Indusface Web Application Scanning	ManageEngine Patch Manager Plus
Likelihood to Recommend	Synopsys If you are using a lot of open-source libraries, which is most likely, this is a must-have to ensure no known vulnerabilities slip into production Incentivized Verified User Anonymous Read full review	Indusface Pvt. Ltd. I like to know what digital assets I have, where I have them and what the status is at any given time. detecting state changes in real-time is a critical security challenge. Traditional EDR/XDR products are not suitable for the intended purpose due to signature-based methodologies' inability to detect or prevent malicious activity. I like the presentation of the product, it's very effective and engaging. Not having to respond to countless false positives is worth it's weight in gold. Verified User Anonymous Read full review	ManageEngine, A Div of Zoho Corporation Pvt Ltd If you are managing a very large number of computers, I would say 1000+, the standard patching tools provided by Microsoft will fail to do their job properly. This is where you will benefit from ManageEngine PATCH MANAGER Plus, being agent-based it is fast, easy to manage, and reliable. If you require functionality more than just patching, like security auditing, you have to look elsewhere. Incentivized Alexei Karam Senior Systems Analyst Read full review
Pros	Synopsys Quick inventory scan: Black Duck helps us scan the code repositories in no time. And quickly list the components and I now really know what is in my code. Security and License risk management: Black Duck being rich in its knowledge base about the vulnerabilities and license issues of open source components, quickly compares the identified inventory to the Black Duck knowledge base and lists all the vulnerabilities and license issues in the code. Integration for automatic scanning: Black Duck is part of devops which provides us automatic scanning. Black Duck is not just for devops but also SecOps. Incentivized Rajiv Aradhyula Sr. Specialist Cloud Architect Read full review	Indusface Pvt. Ltd. No answers on this topic	ManageEngine, A Div of Zoho Corporation Pvt Ltd 3rd-party application updates: since WSUS didn't allow us to do that, Patch Manager made updating software like Adobe and Chrome so easy. The ability to schedule patches after working hours is very nice. The dashboards that we can easily show to top management. Verified User Anonymous Read full review
Cons	Synopsys License model based on usage is costly. Documentation is extensive, but often confusing. Black Duck Hub could use some feature improvements for more robust governance capabilities Incentivized Emmanuel Canaan Project Manager, Technology Operations Read full review	Indusface Pvt. Ltd. No answers on this topic	ManageEngine, A Div of Zoho Corporation Pvt Ltd If this tool can fetch serial numbers of the devices on which this is deployed This tool should collect all application installed at client machine which is not available as of now. Intergate more application which can be patch using this tool. Incentivized LG Lalit Goel Deputy Manager Read full review
Usability	Synopsys If you don’t know how to scan for the language, it isn’t entirely user friendly Incentivized Suzanne Desmond Cloud DevOps Engineer Read full review	Indusface Pvt. Ltd. No answers on this topic	ManageEngine, A Div of Zoho Corporation Pvt Ltd The overall usability for the application is great precisely for the ease of use the application provides, if i would go in a different organisation, i would suggest implementing ManageEngine Patch Manager Plus or Endpoint Central due to its features, and productivity. Incentivized Verified User Anonymous Read full review
Support Rating	Synopsys Support seems very responsive. Incentivized Verified User Anonymous Read full review	Indusface Pvt. Ltd. No answers on this topic	ManageEngine, A Div of Zoho Corporation Pvt Ltd The support team at Patch Manager Plus has been awesome. Very responsive and knowledgeable. There are times when there is confusion between different tickets but there is still good service. Incentivized DN David Nada IT Analyst Read full review
Alternatives Considered	Synopsys Black Duck is an obvious choice, with its versatility, integration, best enterprise support and on top of the list the knowledge base Black Duck has. Vega or Grabber also scans the application and tells about vulnerabilities. But it can never be compared with the feature set of Black Duck. Black Duck can also generate reports. Incentivized Rajiv Aradhyula Sr. Specialist Cloud Architect Read full review	Indusface Pvt. Ltd. The report you send the format and detailing the report , easily identify the vulnerability of the website, executive report is also the proper formatted it very useful Verified User Anonymous Read full review	ManageEngine, A Div of Zoho Corporation Pvt Ltd We were talking to Action1 and Adaptiva about their solutions of patch management. The main factor of choosing ManageEngine was pricing, which was considerably lower compared to these tools. Also, for Action1, it didn't featured some important features (like Linux patching), and it looked like a solution that is getting started in the market, even being more expensive than Patch Manager Plus. Incentivized Adriano Pereira Junior Infosec Analyst Read full review
Return on Investment	Synopsys It is hard to measure ROI since Black Duck Hub saves us from costly legal battles that have thankfully never had to happen. Incentivized Emmanuel Canaan Project Manager, Technology Operations Read full review	Indusface Pvt. Ltd. No answers on this topic	ManageEngine, A Div of Zoho Corporation Pvt Ltd ManageEngine Patch Manager Plus provides an excellent return on investment. We were able to get our systems fully patched, which we'd never been able to complete before. This provided excellent security to our organization. ManageEngine Patch Manager Plus saved us a lot of time as most of our patching was fully automated. ManageEngine took any issues we found and looked for solutions to further improve their product. Incentivized Verified User Anonymous Read full review
ScreenShots	Black Duck Software Composition Analysis (SCA) Screenshots	Indusface WAS Screenshots	ManageEngine Patch Manager Plus Screenshots