# Black Duck vs ThreatWorx Comparison | | Black Duck | ThreatWorx | |---|---|---| | **Star Rating** | 4.0 out of 5 | 4.7 out of 5 | | **Total Reviews** | 29 | 10 | | **Largest Market Segment** | Enterprise (46.4% of reviews) | Small-Business (44.4% of reviews) | | **Entry Level Price** | No pricing available | Contact us 1 dedicated instance of ThreatWatch, annual subscription | --- ## Top Pros & Cons ### Black Duck Pros: - Accuracy of Findings (1 reviews) - Open Source (1 reviews) Cons: - Resource Constraints (1 reviews) ### ThreatWorx **Not enough data** --- ## Ratings Comparison | Rating | Black Duck | ThreatWorx | |---|---|---| | **Meets Requirements** | 7.8 (17 reviews) | 9.2 (8 reviews) | | **Ease of Use** | 7.8 (17 reviews) | 9.2 (8 reviews) | | **Ease of Setup** | 7.9 (11 reviews) | 8.6 (6 reviews) | | **Ease of Admin** | 8.3 (10 reviews) | 9.2 (6 reviews) | | **Quality of Support** | 7.9 (14 reviews) | 9.8 (8 reviews) | | **Has the product been a good partner in doing business?** | 8.3 (12 reviews) | 9.7 (6 reviews) | | **Product Direction (% positive)** | 6.8 (18 reviews) | 10.0 (8 reviews) | --- ## Pricing ### Black Duck #### Entry-Level Pricing No pricing available #### Free Trial Yes ### ThreatWorx #### Entry-Level Pricing Plan: Small Business Price: Contact us 1 dedicated instance of ThreatWatch, annual subscription Description: Unlimited user signups, unlimited vulnerability scans, customized virtual asset support Key Features: - Unlimited users - Unlimited scans - Agentless asset discovery [Browse all 3 editions](https://www.g2.com/products/threatworx/pricing) #### Free Trial Yes --- ## Features Comparison By Category ### Container Security | Product | Score | Reviews | |---|---|---| | **Black Duck** | N/A | N/A | | **ThreatWorx** | N/A | N/A | #### Administration | Feature | Black Duck | ThreatWorx | |---|---|---| | **Risk Scoring** | Not enough data | Not enough data | | **Secrets Management** | Not enough data | Not enough data | | **Security Auditing** | Not enough data | Not enough data | | **Configuration Management** | Not enough data | Not enough data | #### Monitoring | Feature | Black Duck | ThreatWorx | |---|---|---| | **Continuous Image Assurance** | Not enough data | Not enough data | | **Behavior Monitoring** | Not enough data | Not enough data | | **Observability** | Not enough data | Not enough data | #### Protection | Feature | Black Duck | ThreatWorx | |---|---|---| | **Dynamic Image Scanning** | Not enough data | Not enough data | | **Runtime Protection** | Not enough data | Not enough data | | **Workload Protection** | Not enough data | Not enough data | | **Network Segmentation** | Not enough data | Not enough data | ### Software Composition Analysis | Product | Score | Reviews | |---|---|---| | **Black Duck** | 8.6/10 | 8 | | **ThreatWorx** | N/A | N/A | #### Functionality - Software Composition Analysis | Feature | Black Duck | ThreatWorx | |---|---|---| | **Language Support** | Not enough data | Not enough data | | **Integration** | 8.0 (5 reviews) | Not enough data | | **Transparency** | 9.2 (6 reviews) | Not enough data | #### Effectiveness - Software Composition Analysis | Feature | Black Duck | ThreatWorx | |---|---|---| | **Remediation Suggestions** | 8.3 (5 reviews) | Not enough data | | **Continuous Monitoring** | 8.3 (6 reviews) | Not enough data | | **Thorough Detection** | 9.3 (5 reviews) | Not enough data | ### Vendor Security and Privacy Assessment | Product | Score | Reviews | |---|---|---| | **Black Duck** | N/A | N/A | | **ThreatWorx** | N/A | N/A | #### Functionality | Feature | Black Duck | ThreatWorx | |---|---|---| | **Customized Vendor Pages** | Not enough data | Not enough data | | **Centralized Vendor Catalog** | Not enough data | Not enough data | | **Questionnaire Templates** | Not enough data | Not enough data | | **User Access Control** | Not enough data | Not enough data | #### Risk assessment | Feature | Black Duck | ThreatWorx | |---|---|---| | **Risk Scoring** | Not enough data | Not enough data | | **4th Party Assessments** | Not enough data | Not enough data | | **Monitoring And Alerts** | Not enough data | Not enough data | | **AI Monitoring** | Not enough data | Not enough data | #### Generative AI - Vendor Security and Privacy Assessment | Feature | Black Duck | ThreatWorx | |---|---|---| | **Text Summarization** | Not enough data | Not enough data | | **Text Generation** | Not enough data | Not enough data | ### AI AppSec Assistants | Product | Score | Reviews | |---|---|---| | **Black Duck** | N/A | N/A | | **ThreatWorx** | N/A | N/A | #### Performance - AI AppSec Assistants | Feature | Black Duck | ThreatWorx | |---|---|---| | **Remediation** | Not enough data | Not enough data | | **Real-time Vulnerability Detection** | Not enough data | Not enough data | | **Accuracy** | Not enough data | Not enough data | #### Integration - AI AppSec Assistants | Feature | Black Duck | ThreatWorx | |---|---|---| | **Stack Integration** | Not enough data | Not enough data | | **Workflow Integration** | Not enough data | Not enough data | | **Codebase Contextual Awareness** | Not enough data | Not enough data | ### Threat Intelligence | Product | Score | Reviews | |---|---|---| | **Black Duck** | N/A | N/A | | **ThreatWorx** | N/A | N/A | #### Orchestration | Feature | Black Duck | ThreatWorx | |---|---|---| | **Asset Management** | Not enough data | Not enough data | | **Security Workflow Automation** | Not enough data | Not enough data | | **Deployment** | Not enough data | Not enough data | | **Sandboxing** | Not enough data | Not enough data | #### Information | Feature | Black Duck | ThreatWorx | |---|---|---| | **Proactive Alerts** | Not enough data | Not enough data | | **Malware Detection** | Not enough data | Not enough data | | **Intelligence Reports** | Not enough data | Not enough data | #### Personalization | Feature | Black Duck | ThreatWorx | |---|---|---| | **Endpoint Intelligence** | Not enough data | Not enough data | | **Security Validation** | Not enough data | Not enough data | | **Dynamic/Code Analysis** | Not enough data | Not enough data | #### Generative AI | Feature | Black Duck | ThreatWorx | |---|---|---| | **AI Text Summarization** | Not enough data | Not enough data | | **Generate Attack Scenarios** | Not enough data | Not enough data | | **Generate Threat Detection Rules** | Not enough data | Not enough data | | **Generate Threat Summaries** | Not enough data | Not enough data | #### Agentic AI - Threat Intelligence | Feature | Black Duck | ThreatWorx | |---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | | **Multi-step Planning** | Not enough data | Not enough data | | **Proactive Assistance** | Not enough data | Not enough data | | **Decision Making** | Not enough data | Not enough data | --- ## Categories **Shared Categories (1):** [Software Composition Analysis Tools](https://www.g2.com/categories/software-composition-analysis) **Unique to Black Duck (1):** [AI AppSec Assistants](https://www.g2.com/categories/ai-appsec-assistants) **Unique to ThreatWorx (3):** [Container Security Tools](https://www.g2.com/categories/container-security-tools), [Threat Intelligence Software](https://www.g2.com/categories/threat-intelligence), [Vendor Security and Privacy Assessment Software](https://www.g2.com/categories/vendor-security-and-privacy-assessment) --- ## Reviewer Demographics ### By Company Size | Segment | Black Duck | ThreatWorx | |---|---|---| | **Small-Business** | 17.9% | 44.4% | | **Mid-Market** | 35.7% | 44.4% | | **Enterprise** | 46.4% | 11.1% | ### By Industry #### Black Duck - **Information Technology and Services:** 28.6% - **Computer Software:** 28.6% - **Computer & Network Security:** 7.1% - **Utilities:** 3.6% - **Telecommunications:** 3.6% - **Printing:** 3.6% - **Food Production:** 3.6% - **Financial Services:** 3.6% - **Entertainment:** 3.6% - **Computer Hardware:** 3.6% - **Other:** 10.7% #### ThreatWorx - **Hospital & Health Care:** 22.2% - **Computer Software:** 22.2% - **Telecommunications:** 11.1% - **Online Media:** 11.1% - **Information Services:** 11.1% - **Health, Wellness and Fitness:** 11.1% - **Financial Services:** 11.1% --- ## Alternatives ### Alternatives to Black Duck - [SonarQube](https://www.g2.com/products/sonarqube/reviews) — 4.4/5 stars (141 reviews) - [Snyk](https://www.g2.com/products/snyk/reviews) — 4.5/5 stars (132 reviews) - [Veracode Application Security Platform](https://www.g2.com/products/veracode-application-security-platform/reviews) — 3.8/5 stars (26 reviews) - [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2363 reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (893 reviews) - [Mend.io](https://www.g2.com/products/mend-io/reviews) — 4.3/5 stars (112 reviews) - [Checkmarx](https://www.g2.com/products/checkmarx/reviews) — 4.2/5 stars (40 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (795 reviews) - [Semgrep](https://www.g2.com/products/semgrep/reviews) — 4.6/5 stars (55 reviews) - [Replit](https://www.g2.com/products/replit/reviews) — 4.5/5 stars (356 reviews) ### Alternatives to ThreatWorx - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (893 reviews) - [FortiCNAPP](https://www.g2.com/products/forticnapp/reviews) — 4.4/5 stars (386 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (795 reviews) - [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2363 reviews) - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) — 4.6/5 stars (427 reviews) - [Vanta](https://www.g2.com/products/vanta/reviews) — 4.6/5 stars (2450 reviews) - [Sprinto](https://www.g2.com/products/sprinto-inc/reviews) — 4.8/5 stars (1653 reviews) - [Drata](https://www.g2.com/products/drata/reviews) — 4.7/5 stars (1329 reviews) - [Scrut Automation](https://www.g2.com/products/scrut-automation/reviews) — 4.9/5 stars (1311 reviews) - [Responsive, formerly RFPIO](https://www.g2.com/products/responsive-formerly-rfpio/reviews) — 4.5/5 stars (1288 reviews) --- ## Top Discussions ### Black Duck No discussions available for this product. ### ThreatWorx No discussions available for this product. --- **Source:** [G2.com](https://www.g2.com) | [Comparison Page](https://www.g2.com/compare/black-duck-vs-threatworx)