Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Snyk
Score 8.2 out of 10
N/A
Snyk’s Developer Security Platform automatically integrates with a developer’s workflow and helps security teams to collaborate with their development teams. It boasts a developer-first approach that ensures organizations can secure all of the critical components of their applications from code to cloud, driving developer productivity, revenue growth, customer satisfaction, cost savings and an improved security posture. The vendor states Snyk is used by 1,200 customers worldwide today, including…
$0
Veracode
Score 8.9 out of 10
Mid-Size Companies (51-1,000 employees)
Veracode is a software security firm that identifies flaws and vulnerabilities across the software development lifecycle. Veracode’s Software Security Platform uses advanced AI algorithms trained on vast datasets of code, for more precise identification and rectification of security flaws.N/A
Pricing
SnykVeracode
Editions & Modules
Free
$0
Team (Snyk Open Source or Snyk Container or Snyk Infrastructure as Code)
$23
per month per user
Business (Snyk Open Source or Snyk Container or Snyk Infrastructure as Code)
$42
per month per user
Team (Snyk Open Source + Snyk Container + Snyk Code + Snyk Infrastructure as Code)
$98
per month per user
Business (Snyk Open Source + Snyk Container + Snyk Code + Snyk Infrastructure as Code)
$178
per month per user
Enterprise
Contact Sales
No answers on this topic
Offerings
Pricing Offerings
SnykVeracode
Free Trial
YesYes
Free/Freemium Version
YesYes
Premium Consulting/Integration Services
NoYes
Entry-level Setup FeeNo setup feeNo setup fee
Additional DetailsPricing is dependent on the number of developers selected, the number of products selected, and the payment term selected. Please visit the Snyk plans page for an interactive pricing calculator.Developer pricing options available
More Pricing Information
Community Pulse
SnykVeracode
Considered Both Products
Snyk

No answer on this topic

Veracode
Chose Veracode
Snyk has a much better and more intuitive UI, but as far as I know does not provide DAST and SAST like Veracode does. When it comes to SCA, you might be better off going with Snyk.
Chose Veracode
Snyk and WhiteSource have fewer features. WhiteSource UI is as bad as Veracode; Snyk is integrated better in GitHub but provides decent results only for JavaScript. The best one for reporting and quality of results across languages is Meterian, which does not appear in this …
Chose Veracode
I found SonarQube to have some decent data for code quality checks but it underperformed for code security.

Snyk is a decent product and strong competitor to Veracode for SCA. Snyk's SAST offering is not as good as Veracode and does not support as many languages.
Chose Veracode
We have tested and implemented other security tools with Veracode, such as Snyk and Checkmarx. Snyk has alerted us to open-source dependency vulnerabilities through its excellent Software Composition Analysis capabilities. Checkmarx also gave us robust Static Application …
Chose Veracode
The maturity of the Veracode and the continuous improvements in its products it's one of the principal characteristics of chosee it, Veracode it's a SaaS platform and was born in the cloud, so this is a great option for our clients to be quick to implement also the easy of …
Chose Veracode
Better all-round with the right balance for features vs cost.
Top Pros
Top Cons
Best Alternatives
SnykVeracode
Small Businesses

No answers on this topic

GitLab
GitLab
Score 8.6 out of 10
Medium-sized Companies
Veracode
Veracode
Score 8.9 out of 10
GitLab
GitLab
Score 8.6 out of 10
Enterprises
Checkmarx
Checkmarx
Score 9.1 out of 10
Checkmarx
Checkmarx
Score 9.1 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
SnykVeracode
Likelihood to Recommend
8.0
(4 ratings)
8.9
(138 ratings)
Likelihood to Renew
-
(0 ratings)
8.4
(8 ratings)
Usability
-
(0 ratings)
7.3
(27 ratings)
Availability
-
(0 ratings)
9.1
(1 ratings)
Performance
-
(0 ratings)
6.4
(1 ratings)
Support Rating
-
(0 ratings)
8.1
(67 ratings)
Implementation Rating
-
(0 ratings)
9.1
(3 ratings)
Configurability
-
(0 ratings)
6.4
(1 ratings)
Ease of integration
-
(0 ratings)
5.5
(1 ratings)
Product Scalability
-
(0 ratings)
7.3
(1 ratings)
Vendor post-sale
-
(0 ratings)
8.9
(2 ratings)
Vendor pre-sale
-
(0 ratings)
8.2
(1 ratings)
User Testimonials
SnykVeracode
Likelihood to Recommend
Snyk
1) SAST Code Scan 2) Infra Code Scan 3) Docker Image Scan 4) SAS solution and provides good integration with various SCMS
Read full review
Veracode
It is a strong and reliable application security platform that helps to cover all aspects throughout the software development lifecycle of an application, making it a good fit for use in enterprise-scale applications. Its integration with CI/CD tools, multiple options for security scanning, and compliance reporting make it quite valuable in keeping a safe codebase. However, the learning curve is steep, and at times, false positives can prove to be very time-consuming and more effortful.
Read full review
Pros
Snyk
  • Identify potential security issues.
  • Analyse library dependencies.
  • Secure code as it is written close to development.
Read full review
Veracode
  • It is good at recommending fixing issues with third-party dependencies used in application code with detailed version information and knowing which version fixes what.
  • It has a very nice interface for triaging flaws. One can sort the vulnerabilities found in code from Very Likely to be exploited to least likely to be exploited.
  • There is a collections feature that allows us to group together groups of application profiles belonging to the same suite of applications.
Read full review
Cons
Snyk
  • Its a bit costly
Read full review
Veracode
  • Scan results stability: from one scan to another, additional flaws appear whereas code did not change.
  • Entry points selection: hard to be sure selection is optimal, should be automatized or hidden.
  • Branches management: we currently use sandboxes to scan different branches of our software. Would be good to have real branches management.
Read full review
Likelihood to Renew
Snyk
No answers on this topic
Veracode
At this time, and we just renewed a month ago, I dont see any products out there overall that can offer what Veracode does. Yes, its not cheap by any means, but for the money its the best application security scanning tool out there.
Read full review
Usability
Snyk
No answers on this topic
Veracode
- Almost no setup required and easy to configure - Very easy to use, intuitive UI with integrated analytics and learning portals. - Seamless to review the results, triage them, generate reports. - Security progression of the product/application is tracked via successive scans. - Privileges/Roles nicely fine grained and tightly controlled to let teams "view" only their products.
Read full review
Reliability and Availability
Snyk
No answers on this topic
Veracode
Veracode has always been up and available to us.
Read full review
Performance
Snyk
No answers on this topic
Veracode
At this point, it runs well and mostly in a timely fashion. Dynamic scans take days but this may be a config issue still to be resolved.
Read full review
Support Rating
Snyk
No answers on this topic
Veracode
Overall, Veracode support is helpful, community support is great, and documentation is available for self-service. Our Customer Success Manager is very helpful and reaches out regularly to see if we need assistance. We have not utilized many of the other resources offered by Veracode, however, in the future we would like to leverage secure coding training for our Development teams.
Read full review
Implementation Rating
Snyk
No answers on this topic
Veracode
We use it as a SAS service, so really just getting our teams to mold the use of Veracode into their SDLC has been a process of years in the making. It comes down to what your teams are ready and willing to accept and change. Management is key in getting their groups on board with using it regularly. If it doesnt have management backing, your security teams have little to no influence in getting this process off the ground fully.
Read full review
Alternatives Considered
Snyk
Better Vulnerability research and GUI and usability
Read full review
Veracode
Veracode is slower with scan results however the flaws discovered and sites crawled are almost the same. Rapid7 InsightAppSec only does dynamic scans. Veracode did find more links on a site crawl. Rapid7 InsightAppSec has more out of the box reports than Veracode. Both integration to DevOps tools were striaghtforward.
Read full review
Scalability
Snyk
No answers on this topic
Veracode
It meets our needs.
Read full review
Return on Investment
Snyk
  • Nothing big on our specific projects.
Read full review
Veracode
  • Positive: Scanning all our applications on Veracode provides us an overview of our cyber security posture for the organization as a whole.
  • Positive: Performing the SAST, SCA and DAST scanning for all the applications at the early stages of the SDLC helps us identify and mitigate security vulnerabilities early, reducing the risk of data breaches and cyber-attacks.
  • Negative: Sometimes Veracode SAST scanner closed and reopens some findings, leading to reliability issues on the scanner itself.
Read full review
ScreenShots

Veracode Screenshots

Screenshot of the Veracode Platform HomepageScreenshot of Static Analysis ScansScreenshot of Findings Status and History DashboardScreenshot of the Veracode Platform