Veracode Is A Best Of Bread Code Analysis Tool
In my organization, Veracode is used to address application security issues during the application development life cycle throughout the …
Overview
What is Veracode?
Veracode is an application security platform that performs five types of analysis; static analysis, dynamic analysis, software composition analysis, interactive application security testing, and penetration testing. Veracode offers on-demand expertise and aims to help companies fix security defects.
Recent Reviews
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Reviewer Pros & Cons
Video Reviews
1 video
Veracode Review: Provides Helpful Support When Troubleshooting Security Needs
02:38
Pricing
N/A
Unavailable
What is Veracode?
Veracode is an application security platform that performs five types of analysis; static analysis, dynamic analysis, software composition analysis, interactive application security testing, and penetration testing. Veracode offers on-demand expertise and aims to help companies fix security defects.
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
952 people also want pricing
Alternatives Pricing
What is SonarQube?
SonarQube is a code quality and vulnerability solution for development teams that integrates with CI/CD pipelines to ensure the software you produce is secure, reliable, and maintainable.
What is Indusface WAS?
Indusface Web Application Scanner provides an application security audit to detect a range of high-risk Vulnerabilities, Malware, and Critical CVEs.
Product Details
- About
- Integrations
- Competitors
- Tech Details
- Downloadables
- FAQs
What is Veracode?
The Veracode platform is a software security solution that aims to be pervasive but not invasive, embedded into the environments that developers work in, with recommended fix and in-context learning. Security teams can use Veracode to manage policy, gain a comprehensive view of an organization's security posture though analytics and reporting, mitigate risks, and produce the evidence necessary to meet regulatory requirements.
It is presented as an always-on, continuous orchestration of secure development that gives organizations the confidence that the software being built is secure and meets compliance requirements.
Veracode Features
- Supported: Continuous Scanning to reduce risks at every phase of development - Veracode Static Analysis, Dynamic Analysis, Software Composition Analysis, and Manual Penetration Test throughout SDLC.
- Supported: Developer Experience - Finds and fixes laws in line with security integration into where developers work, automated remediation guidance, and in-context learning.
- Supported: Comprehensive Platform Experience - Streamlined governance, risk and compliance processes through flexible policy management, unified reporting and analytics, and peer benchmarking to mitigate risks fast and deliver a successful DevSecOpsprogram.
- Supported: Market Expansion - To meet data residency needs in EU with cloud-native instance built in Frankfurt, Germany on AWS.
- Supported: Contextual Platform Data - Fine-tuned with nearly 2 decades of scanning and customer learning. Predicts future vulnerabilities with self-healing capabilities through applying machine learning and artificial intelligence to the data.
- Supported: Cloud-native SaaS Architecture - Provides elastic scalability, high performance, and lower costs with cloud-native SaaS architecture.
Veracode Screenshots
Veracode Videos
Veracode Static Analysis Demo
Veracode Software Composition Analysis Demo
Veracode Dynamic Analysis Demo
Watch The Veracode Platform
Veracode Integrations
Veracode Competitors
Veracode Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
| Supported Countries | North America, EMEA, APAC, LATAM |
| Supported Languages | Java, .NET, PHP, Android, iOS, JavaScript, Python |
Veracode Downloadables
Frequently Asked Questions
Veracode is an application security platform that performs five types of analysis; static analysis, dynamic analysis, software composition analysis, interactive application security testing, and penetration testing. Veracode offers on-demand expertise and aims to help companies fix security defects.
Reviewers rate Support Rating highest, with a score of 8.
The most common users of Veracode are from Enterprises (1,001+ employees).
Veracode Customer Size Distribution
| Consumers | 0% |
|---|---|
| Small Businesses (1-50 employees) | 18% |
| Mid-Size Companies (51-500 employees) | 65% |
| Enterprises (more than 500 employees) | 17% |
Comparisons
Compare with
Reviews and Ratings
(199)Attribute Ratings
Reviews
(1-25 of 104)Companies can't remove reviews or game the system. Here's why
May 09, 2024
Veracode Is A Best Of Bread Code Analysis Tool
Veracode is slower with scan results however the flaws discovered and sites crawled are almost the same. Rapid7 InsightAppSec only does dynamic scans. Veracode did find more links on a site crawl. Rapid7 InsightAppSec has more out of the box reports than Veracode. Both integration to DevOps tools were striaghtforward.
March 18, 2024
Veracode, a great security tool for everyone
SonarQube is faster and can be free, but the security scanning capabilities are a joke compared to Veracode.
Unlike SonarQube, Veracode goes deeper into finding a very wide variety of vulnerabilities and best practices that should be applied to software and provides reporting and support to assist in the process.
Unlike SonarQube, Veracode goes deeper into finding a very wide variety of vulnerabilities and best practices that should be applied to software and provides reporting and support to assist in the process.
March 06, 2024
Veracode User Experience
Veracode has been longer on the market and has build the good reputation. We appreciate that they constantly improving the quality of their software and adding new features.
March 03, 2024
Best in Security
Reduced false positives, developers can identify vulnerabilities at early stage -shift left process. The security labs help developers.
March 01, 2024
Sleep Soundly - Use Veracode
Veracode is more thorough and provides a wider variety of tools than the competition. Support is prompt and very eager to make sure we get the help we need as quickly as possible. If Support can't resolve it right away, they will make sure we are connected to one of their consultants. The consultants are awesome.
February 27, 2024
Veracode SAST review
Why you selected Veracode?
Stack coverage.
Integration into our pipeline and ticketing tools.
Good "false positive" rate.
SSO integration and ability to add antinomic.
Competitive pricing, considering the number of our contributors and components.
Stack coverage.
Integration into our pipeline and ticketing tools.
Good "false positive" rate.
SSO integration and ability to add antinomic.
Competitive pricing, considering the number of our contributors and components.
February 27, 2024
Veracode to the Rescue!
Score 10 out of 10
Vetted Review
Verified User
Veracode stands out as the best of breed for all types of AppSec scanners.
February 15, 2024
Great products; + Great price.
Veracode is much cheaper and does more: SAST, SCA, DAST, and now PEN as a service.
January 16, 2024
Great DAST and Penetration Testing Platform.
Veracode was brought in to supplement services previously provided by other vendors. As our org recently acquired another organization, we identified Veracode as a 'go-forward' system needed to consolidate security tooling in the organization.
October 12, 2023
Veracode Security far ahead of competitors
August 23, 2023
Vericode Use for Companies ERP Product offerings
Mend.IO formerly WhiteSource software is a product we used prior to Vericode. It did not have all of the capabilities or depth of Vericode. Additionally, Whitesource did not offer automatic scanning as part of their product and there was no Certification program to speak of.
My experience with Veracode has been the most productive since I started working with enterprise security monitoring systems. The application has efficient set of coding tools that is not available in other software development systems. It has modern data management tools that tracks the software production lifecycle closely to ensure there is excellent end product. The cost is good as and licensing terms are user friendly.
March 27, 2023
A normal review of Veracode
Score 8 out of 10
Vetted Review
Verified User
We used Accunetix as well mainly for web site security testing. We used Veracode for code and third party analysis.
December 29, 2022
Excellent Code Security Scanning Cloud Service
Score 9 out of 10
Vetted Review
Verified User
December 20, 2022
Veracode makes your life easy and safe.
November 09, 2022
Veracode the proven medium fur security and security awareness.
Veracode is much better at uncovering security weaknesses and providing information and consulting. I use Veracode because our company decided for.
November 08, 2022
Veracode - Save software and superb support!
- Black Duck Software Composition Analysis (SCA)
The usage of Veracode is definitely easier going!
October 07, 2022
Veracode helps to improve the security in applications
The maturity of the Veracode and the continuous improvements in its products it's one of the principal characteristics of chosee it, Veracode it's a SaaS platform and was born in the cloud, so this is a great option for our clients to be quick to implement also the easy of their integrations it's some valuable
September 15, 2022
Heathy, bug-free Code brought to you in association with Veracode
Checkmarx and Veracode have a few common points and some features which are different. Checkmarx UI is more user-friendly, but the level of detailing in Veracode reports is better. Veracode is a good choice for static analysis of code. if the user interface can be made smoother that would definitely help.
September 15, 2022
Catch Vulnerabilities before Hackers Do
As the developer, not the business stakeholder, I did not select Veracode specifically. However, after using the application I believe it was the right choice. Veracode is thorough in its analyses, in its database of flaws, in its methodology of uncovering vulnerabilities, and in assisting the end user in resolving those vulnerabilities.
September 09, 2022
One Stop Security Solution for your apps
One Stop solution for security evaluation. Others were not so accurate and covering all the scenarios we were looking to plug.
September 08, 2022
Veracode, our most trusted security partner.
Veracode is the clear choice. We evaluated the other products, but none compared to Veracode as an industry standard.
September 01, 2022
Veracode Stands Tall Among the Leading Application Security Platforms
During the course of our using Veracode, we still do evaluate other platforms to see what they offer, and how they compare to Veracode. I do most of the evaluations myself, and I still come back to Veracode as being the overall best platform. Most every platform, for better or worse, still charges about the same yearly amount as Veracode. Mind you, none of them including Veracode, are inexpensive services. But even though some of their competitors have enticing elements to their services, overall Veracode still offers the best service, turnaround time, and support for the money.
June 27, 2022
Good product, lives up to expectations
More comprehensive.