Snyk vs. Veracode

Snyk

Veracode

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Snyk	Score 8.6 out of 10	N/A	Snyk’s Developer Security Platform automatically integrates with a developer’s workflow and helps security teams to collaborate with their development teams. It boasts a developer-first approach that ensures organizations can secure all of the critical components of their applications from code to cloud, driving developer productivity, revenue growth, customer satisfaction, cost savings and an improved security posture. The vendor states Snyk is used by 1,200 customers worldwide today, including…	$0
Veracode	Score 8.3 out of 10	Small Businesses (1-50 employees)	Veracode is an application security platform that performs five types of analysis; static analysis, dynamic analysis, software composition analysis, interactive application security testing, and penetration testing. Veracode offers on-demand expertise and aims to help companies fix security defects.	N/A

Pricing

Snyk

Veracode

Editions & Modules

Free: $0
Team (Snyk Open Source or Snyk Container or Snyk Infrastructure as Code): $23
per month per user
Business (Snyk Open Source or Snyk Container or Snyk Infrastructure as Code): $42
per month per user
Team (Snyk Open Source + Snyk Container + Snyk Code + Snyk Infrastructure as Code): $98
per month per user
Business (Snyk Open Source + Snyk Container + Snyk Code + Snyk Infrastructure as Code): $178
per month per user
Enterprise: Contact Sales

No answers on this topic

Offerings

Pricing Offerings
Snyk	Veracode
Free Trial
Yes	Yes
Free/Freemium Version
Yes	Yes
Premium Consulting/Integration Services
No	Yes

Entry-level Setup Fee

No setup fee

Additional Details

Pricing is dependent on the number of developers selected, the number of products selected, and the payment term selected. Please visit the Snyk plans page for an interactive pricing calculator.

Developer pricing options available

More Pricing Information

Pricing Info

Community Pulse
	Snyk	Veracode
Considered Both Products	Snyk No answer on this topic	Veracode Verified User Engineer Chose Veracode Snyk has a much better and more intuitive UI, but as far as I know does not provide DAST and SAST like Veracode does. When it comes to SCA, you might be better off going with Snyk. Incentivized Helpful? Verified User Engineer Chose Veracode Snyk and WhiteSource have fewer features. WhiteSource UI is as bad as Veracode; Snyk is integrated better in GitHub but provides decent results only for JavaScript. The best one for reporting and quality of results across languages is Meterian, which does not appear in this … Incentivized Helpful? Verified User C-Level Executive Chose Veracode The maturity of the Veracode and the continuous improvements in its products it's one of the principal characteristics of chosee it, Veracode it's a SaaS platform and was born in the cloud, so this is a great option for our clients to be quick to implement also the easy of … Incentivized Helpful? Verified User Engineer Chose Veracode Better all-round with the right balance for features vs cost. Incentivized Helpful?
Top Pros	Pro Dependency management Pro Application security	Pro Ci cd Pro Easy to use Pro Code analysis
Top Cons	Minus Customizable dashboard Minus Leaves room	Minus User interface Minus Integration tools Minus Learning curve

Best Alternatives
	Snyk	Veracode
Small Businesses	No answers on this topic	GitLab Score 8.9 out of 10
Medium-sized Companies	Palo Alto Networks Prisma Cloud Score 8.4 out of 10	GitLab Score 8.9 out of 10
Enterprises	Palo Alto Networks Prisma Cloud Score 8.4 out of 10	GitLab Score 8.9 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Snyk	Veracode
Likelihood to Recommend	8.5 (4 ratings)	8.8 (118 ratings)
Likelihood to Renew	- (0 ratings)	7.8 (4 ratings)
Usability	- (0 ratings)	7.6 (26 ratings)
Availability	- (0 ratings)	9.1 (1 ratings)
Performance	- (0 ratings)	6.4 (1 ratings)
Support Rating	- (0 ratings)	8.2 (63 ratings)
Implementation Rating	- (0 ratings)	7.3 (2 ratings)
Configurability	- (0 ratings)	6.4 (1 ratings)
Ease of integration	- (0 ratings)	5.5 (1 ratings)
Product Scalability	- (0 ratings)	7.3 (1 ratings)
Vendor post-sale	- (0 ratings)	7.9 (2 ratings)
Vendor pre-sale	- (0 ratings)	8.2 (1 ratings)

User Testimonials
	Snyk	Veracode
Likelihood to Recommend	Snyk 1) SAST Code Scan 2) Infra Code Scan 3) Docker Image Scan 4) SAS solution and provides good integration with various SCMS Incentivized MS Manas Singh IT Architect Read full review	Veracode I will say it is a nine because the aggregated score of all the modules in an application is not shown anywhere in the Veracode. Otherwise, it's good for the easiness and stability of the application that a developer and an organization are keen to see in a penetration application, respectively. Incentivized Verified User Anonymous Read full review
Pros	Snyk Identify potential security issues. Analyse library dependencies. Secure code as it is written close to development. Incentivized AC Alex Campos Head of Engineering Read full review	Veracode The pipeline scan is a very fast way to scan code and inform developers if a new flaw is introduced by their pull requests. Upload & Scan provides an in-depth analysis of the codebase, which features like reporting being made easy. SCA Scans help us not only identify the vulnerabilities but also in helping fix them and in identifying if our application is using that part of the vulnerable library or not. Veracode is very easy to integrate into the CI/CD pipelines (especially Jenkins) Incentivized Verified User Anonymous Read full review
Cons	Snyk Its a bit costly Incentivized Verified User Anonymous Read full review	Veracode Build a ticket management screen into the platform Easier integrations to SSO/SAML A different method of having API users, they should be either integrated into the team (an API key as part of the team) or at least separate from the regular user area. Incentivized Robert Hood Information Security Architect Read full review
Likelihood to Renew	Snyk No answers on this topic	Veracode At this time, and we just renewed a month ago, I dont see any products out there overall that can offer what Veracode does. Yes, its not cheap by any means, but for the money its the best application security scanning tool out there. Incentivized Verified User Anonymous Read full review
Usability	Snyk No answers on this topic	Veracode - Almost no setup required and easy to configure - Very easy to use, intuitive UI with integrated analytics and learning portals. - Seamless to review the results, triage them, generate reports. - Security progression of the product/application is tracked via successive scans. - Privileges/Roles nicely fine grained and tightly controlled to let teams "view" only their products. Incentivized Śrinivāsa Rao Kuruba Manager, Information Technology Read full review
Reliability and Availability	Snyk No answers on this topic	Veracode Veracode has always been up and available to us. Incentivized Verified User Anonymous Read full review
Performance	Snyk No answers on this topic	Veracode At this point, it runs well and mostly in a timely fashion. Dynamic scans take days but this may be a config issue still to be resolved. Incentivized Verified User Anonymous Read full review
Support Rating	Snyk No answers on this topic	Veracode Secure code training it's a great option to enable developers in the security world, it's a dynamic platform that helps to understand the vulnerabilities and how to fix them in a real environment, and the documentation contains all the information you need to understand all the functions of the Veracode platform. Incentivized Verified User Anonymous Read full review
Implementation Rating	Snyk No answers on this topic	Veracode We use it as a SAS service, so really just getting our teams to mold the use of Veracode into their SDLC has been a process of years in the making. It comes down to what your teams are ready and willing to accept and change. Management is key in getting their groups on board with using it regularly. If it doesnt have management backing, your security teams have little to no influence in getting this process off the ground fully. Incentivized Verified User Anonymous Read full review
Alternatives Considered	Snyk Better Vulnerability research and GUI and usability Incentivized MS Manas Singh IT Architect Read full review	Veracode I have used SonarQube for code quality and security analysis in the past, but Veracode's Software Composition Analysis analysis makes a big difference in terms of identifying vulnerabilities in dependencies. It would make it a lot easier if the IDE plugin could show the transitive dependency the introduces the vulnerabilities. I'm very pleased [in] Veracode reporting so far. Incentivized Verified User Anonymous Read full review
Scalability	Snyk No answers on this topic	Veracode It meets our needs. Incentivized Verified User Anonymous Read full review
Return on Investment	Snyk Nothing big on our specific projects. Verified User Anonymous Read full review	Veracode Veracode's tools can perform in a couple of hours what would take us weeks to do. Our customers--rightfully--expect a high degree of security from us. It's easy to integrate Veracode into a CI pipeline allowing you to catch flaws while the code changes are fresh in your mind. Incentivized Teresa Kosinski Senior Configuration Manager Read full review
ScreenShots		Veracode Screenshots