Good security platform, but run trial first.
October 02, 2020
Good security platform, but run trial first.
Score 6 out of 10
Vetted Review
Verified User
Modules Used
- Static Analysis (SAST)
- Software Composition Analysis (SCA)
- Dynamic Analysis (DAST)
Overall Satisfaction with Veracode
We use it to have all our security scanning tools under one platform (DAST, SAST, and SCA). We use it for our main software product. The issue it addresses is keeping all of the security scans under one platform, so it's easy to see at a glance where we stand.
Pros
- SCA - Very simple to run and results are actionable
Cons
- DAST - We are in the process of trying to switch from Acunetix, but have yet to run a successful DAST scan as there are 'technical issues' each time.
- SAST - While it has been boasted as being fast, it does take quite a while for our codebase to be scanned (roughly 1 day). Otherwise, the results seem OK.
- Currently, neutral until we get the DAST scanning working well. The pricing model is also very confusing and doesn't make much sense to us.
Do you think Veracode delivers good value for the price?
Not sure
Are you happy with Veracode's feature set?
Yes
Did Veracode live up to sales and marketing promises?
Yes
Did implementation of Veracode go as expected?
No
Would you buy Veracode again?
Yes
Comments
Please log in to join the conversation