Veracode review
October 02, 2020

Veracode review

Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Modules Used

  • Static Analysis (SAST)
  • Software Composition Analysis (SCA)

Overall Satisfaction with Veracode

Being used for application security purposes across the our next gen development organization. Solves risk problems.
  • Good interface
  • Easy to use
  • Good scan times
  • Analysis takes increased time due to not storing vulnerable code snippets
Veracode tiers offer more support and program building than other vendors in the space while I believe their product stands up well against the others from a technology standpoint. The only downside is the analysis time takes significantly longer than other platforms due to their security decision to not store code snippets (which is a good security decision, just takes me longer to analyze findings when I have to drag in code for every finding).
Had nothing but out standing support from Veracode for every problem that we face as an organization.
The analysis just takes longer. I think all other aspects from scan time, to reporting, to compliance checking are all great. But when I go to do analysis of the findings, I have to dig through my project to find each file with findings and drag it into the browser. Just takes a lot longer sadly.

Do you think Veracode delivers good value for the price?

Yes

Are you happy with Veracode's feature set?

Yes

Did Veracode live up to sales and marketing promises?

Yes

Did implementation of Veracode go as expected?

Yes

Would you buy Veracode again?

Yes

Veracode is a good solution for any application security purposes, their product offerings are good in a variety of scenarios. Due to the cloud nature of the offerings, very high volume throughput isn't necessarily advised and should be architected accordingly.