TrustRadius

Mandiant Advantage Security Validation vs. Veracode

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Mandiant Advantage Security Validation
Score 8.3 out of 10
Enterprise companies (1,001+ employees)
Since 2004, Mandiant has been a partner to security-conscious organizations. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.N/A
Veracode
Score 9.2 out of 10
Mid-Size Companies (51-1,000 employees)
Veracode is a software security firm that identifies flaws and vulnerabilities across the software development lifecycle. Veracode’s Software Security Platform uses advanced AI algorithms trained on vast datasets of code, for more precise identification and rectification of security flaws.N/A
Pricing
Mandiant Advantage Security ValidationVeracode
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Mandiant Advantage Security ValidationVeracode
Free Trial
YesYes
Free/Freemium Version
NoYes
Premium Consulting/Integration Services
YesYes
Entry-level Setup FeeNo setup feeNo setup fee
Additional DetailsDeveloper pricing options available
More Pricing Information
Community Pulse
Mandiant Advantage Security ValidationVeracode
Best Alternatives
Mandiant Advantage Security ValidationVeracode
Small Businesses

No answers on this topic

GitLab
GitLab
Score 8.6 out of 10
Medium-sized Companies
Microsoft Defender for Cloud
Microsoft Defender for Cloud
Score 8.4 out of 10
GitLab
GitLab
Score 8.6 out of 10
Enterprises
Microsoft Defender for Cloud
Microsoft Defender for Cloud
Score 8.4 out of 10
Checkmarx
Checkmarx
Score 9.2 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Mandiant Advantage Security ValidationVeracode
Likelihood to Recommend
8.2
(3 ratings)
9.2
(138 ratings)
Likelihood to Renew
-
(0 ratings)
8.5
(8 ratings)
Usability
8.2
(3 ratings)
7.3
(27 ratings)
Availability
-
(0 ratings)
9.1
(1 ratings)
Performance
-
(0 ratings)
6.4
(1 ratings)
Support Rating
-
(0 ratings)
8.4
(67 ratings)
Implementation Rating
-
(0 ratings)
9.1
(3 ratings)
Configurability
-
(0 ratings)
6.4
(1 ratings)
Ease of integration
9.1
(2 ratings)
5.5
(1 ratings)
Product Scalability
-
(0 ratings)
7.3
(1 ratings)
Vendor post-sale
-
(0 ratings)
8.9
(2 ratings)
Vendor pre-sale
-
(0 ratings)
8.2
(1 ratings)
User Testimonials
Mandiant Advantage Security ValidationVeracode
Likelihood to Recommend
Mandiant
Mandiant Advantage Security Validation, designed by Mandiant company, can automate a testing program to give us authetic and real world data on how our security controls are effectively working / performing. This solution provides trusted evidence on how well our security controls work against threats targeting our organization. This enables security teams to emulate real attack behaviors against security controls authentically throughout the attack lifecycle and the entire security stack.
Piyush Mittal | TrustRadius Reviewer
Piyush Mittal
Senior Manager
Read full review
Veracode
Veracode is well suited for development applications that can be made more secure right from the beginning. There is an excellent extension in Visual Studio that scans code from the IDE. However, it is less appropriate or incompatible with scanning SOAP or WSDL APIs. It supports only REST APIs.
Verified User
Anonymous
Read full review
Pros
Mandiant
  • Network visibility
  • Scaling
  • Threat Intel
  • Monitoring
Verified User
Anonymous
Read full review
Veracode
  • Veracode performs Static Application Security Testing (SAST) very well by finding flaws in the code using entry points so that it tests for everything a user can interact with in the application. This approach is very helpful for avoiding a lot of false positives early on.
  • Veracode performs SCA automatically on every SAST scan, so that we don't have to manually scan the application again for SCA scans.
  • Veracode integrates very well with the ticketing tools, so that it becomes very easy to track every finding and its status within our ticketing tool.
Verified User
Anonymous
Read full review
Cons
Mandiant
  • We had some software confliction issue during install.
Verified User
Anonymous
Read full review
Veracode
  • Scan results stability: from one scan to another, additional flaws appear whereas code did not change.
  • Entry points selection: hard to be sure selection is optimal, should be automatized or hidden.
  • Branches management: we currently use sandboxes to scan different branches of our software. Would be good to have real branches management.
Nicolas Garcin | TrustRadius Reviewer
Nicolas Garcin
R&D manager
Read full review
Likelihood to Renew
Mandiant
No answers on this topic
Veracode
At this time, and we just renewed a month ago, I dont see any products out there overall that can offer what Veracode does. Yes, its not cheap by any means, but for the money its the best application security scanning tool out there.
Verified User
Anonymous
Read full review
Usability
Mandiant
The Mandiant Threat Modeling Security Service evaluates our organization’s security controls and ethically uncovers attacker behaviors to reveal unknown risks and vulnerabilities within existing and proposed network and information systems including software applications, business processes and operational networks. Also, they helps in achieving our compliance objectives for internal and external regulations
Piyush Mittal | TrustRadius Reviewer
Piyush Mittal
Senior Manager
Read full review
Veracode
- Almost no setup required and easy to configure - Very easy to use, intuitive UI with integrated analytics and learning portals. - Seamless to review the results, triage them, generate reports. - Security progression of the product/application is tracked via successive scans. - Privileges/Roles nicely fine grained and tightly controlled to let teams "view" only their products.
Śrinivāsa Rao Kuruba | TrustRadius Reviewer
Śrinivāsa Rao Kuruba
Manager, Information Technology
Read full review
Reliability and Availability
Mandiant
No answers on this topic
Veracode
Veracode has always been up and available to us.
Verified User
Anonymous
Read full review
Performance
Mandiant
No answers on this topic
Veracode
At this point, it runs well and mostly in a timely fashion. Dynamic scans take days but this may be a config issue still to be resolved.
Verified User
Anonymous
Read full review
Support Rating
Mandiant
No answers on this topic
Veracode
Overall, Veracode support is helpful, community support is great, and documentation is available for self-service. Our Customer Success Manager is very helpful and reaches out regularly to see if we need assistance. We have not utilized many of the other resources offered by Veracode, however, in the future we would like to leverage secure coding training for our Development teams.
Verified User
Anonymous
Read full review
Implementation Rating
Mandiant
No answers on this topic
Veracode
We use it as a SAS service, so really just getting our teams to mold the use of Veracode into their SDLC has been a process of years in the making. It comes down to what your teams are ready and willing to accept and change. Management is key in getting their groups on board with using it regularly. If it doesnt have management backing, your security teams have little to no influence in getting this process off the ground fully.
Verified User
Anonymous
Read full review
Alternatives Considered
Mandiant
Mandiant is focused on a clear view of the environment, vulnerabilities, and threats. Palo Alto is a great tool for some of this, but was not mature enough at the time of our initial eval. The new version of Palo Alto looks much more robust and capable and we will definitely re-evaluate it before renewal with Mandiant. If you already have Palo in your environment, it's an even more compelling case.
Verified User
Anonymous
Read full review
Veracode
Veracode is slower with scan results however the flaws discovered and sites crawled are almost the same. Rapid7 InsightAppSec only does dynamic scans. Veracode did find more links on a site crawl. Rapid7 InsightAppSec has more out of the box reports than Veracode. Both integration to DevOps tools were striaghtforward.
Verified User
Anonymous
Read full review
Scalability
Mandiant
No answers on this topic
Veracode
It meets our needs.
Verified User
Anonymous
Read full review
Return on Investment
Mandiant
  • Helps achieving compliance objectives
  • Increase in stakeholders trust on their personal data security
  • Compliance with internal policies and external regulations
  • Increase return on investment
Piyush Mittal | TrustRadius Reviewer
Piyush Mittal
Senior Manager
Read full review
Veracode
  • Veracode's platform has had a very positive impact on our security posture, paving the path towards having coverage monitored automatically on hundreds of internal applications throughout the development lifecycle.
  • Veracode's platform has also had a very positive impact on improving the security knowledge of our development team, providing meaningful feedback as well as training options to reduce mitigation time and help to prevent flaws before they are created.
Verified User
Anonymous
Read full review
ScreenShots

Mandiant Advantage Security Validation Screenshots

Screenshot of SECURITY VALIDATION PLATFORM - Visualize and generate performance data on how security controls across people, process and technologies respond to active adversary attacksScreenshot of Threat Actor Assurance Dashboard- Visualize how your security controls perform against real threat actor TTPs by operationalizing threat intelligence source.

Veracode Screenshots

Screenshot of the Veracode Platform HomepageScreenshot of Static Analysis ScansScreenshot of Findings Status and History DashboardScreenshot of the Veracode Platform