# OpenText Core Application Security, OpenText Static Application Security Testing vs Veracode Application Security Platform Comparison | | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Star Rating** | 4.1 out of 5 | 4.5 out of 5 | 3.8 out of 5 | | **Total Reviews** | 34 | 24 | 25 | | **Largest Market Segment** | Enterprise (41.2% of reviews) | Enterprise (47.6% of reviews) | Enterprise (52.2% of reviews) | | **Entry Level Price** | No pricing available | No pricing available | No pricing available | --- ## Top Pros & Cons ### OpenText Core Application Security **Not enough data** ### OpenText Static Application Security Testing Pros: - Easy Integrations (1 reviews) - Integrations (1 reviews) Cons: - False Positives (1 reviews) ### Veracode Application Security Platform Pros: - Security (5 reviews) - Vulnerability Detection (5 reviews) Cons: - Expensive (2 reviews) - Lack of Information (2 reviews) --- ## Ratings Comparison | Rating | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Meets Requirements** | 8.1 (31 reviews) | 8.3 (15 reviews) | 8.1 (19 reviews) | | **Ease of Use** | 8.2 (31 reviews) | 8.7 (15 reviews) | 7.3 (19 reviews) | | **Ease of Setup** | 8.2 (12 reviews) | 8.3 (9 reviews) | 5.7 (7 reviews) | | **Ease of Admin** | 8.9 (12 reviews) | 8.1 (9 reviews) | 7.4 (7 reviews) | | **Quality of Support** | 7.9 (30 reviews) | 8.7 (15 reviews) | 8.0 (18 reviews) | | **Has the product been a good partner in doing business?** | 9.0 (12 reviews) | 8.5 (9 reviews) | 7.9 (7 reviews) | | **Product Direction (% positive)** | 8.8 (30 reviews) | 9.1 (13 reviews) | 6.3 (19 reviews) | --- ## Pricing ### OpenText Core Application Security #### Entry-Level Pricing No pricing available #### Free Trial Yes ### OpenText Static Application Security Testing #### Entry-Level Pricing No pricing available #### Free Trial No information available ### Veracode Application Security Platform #### Entry-Level Pricing No pricing available #### Free Trial No information available --- ## Features Comparison By Category ### Penetration Testing | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Administration | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **API / Integrations** | Not enough data | Not enough data | Not enough data | | **Extensibility** | Not enough data | Not enough data | Not enough data | | **Reporting and Analytics** | Not enough data | Not enough data | Not enough data | #### Analysis | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Issue Tracking** | Not enough data | Not enough data | Not enough data | | **Reconnaissance** | Not enough data | Not enough data | Not enough data | | **Vulnerability Scan** | Not enough data | Not enough data | Not enough data | #### Testing | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Command-Line Tools** | Not enough data | Not enough data | Not enough data | | **Manual Testing** | Not enough data | Not enough data | Not enough data | | **Test Automation** | Not enough data | Not enough data | Not enough data | | **Performance and Reliability** | Not enough data | Not enough data | Not enough data | ### Static Application Security Testing (SAST) | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | 8.1/10 | 13 | | **Veracode Application Security Platform** | N/A | N/A | #### Administration | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **API / Integrations** | Not enough data | 8.9 (9 reviews) | Not enough data | | **Extensibility** | Not enough data | 8.7 (10 reviews) | Not enough data | #### Analysis | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Reporting and Analytics** | Not enough data | 8.3 (11 reviews) | Not enough data | | **Issue Tracking** | Not enough data | 8.0 (11 reviews) | Not enough data | | **Static Code Analysis** | Not enough data | 8.8 (11 reviews) | Not enough data | | **Code Analysis** | Not enough data | 8.5 (10 reviews) | Not enough data | #### Testing | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Command-Line Tools** | Not enough data | 8.1 (9 reviews) | Not enough data | | **Manual Testing** | Not enough data | 6.9 (9 reviews) | Not enough data | | **Test Automation** | Not enough data | 8.7 (10 reviews) | Not enough data | | **Compliance Testing** | Not enough data | 8.5 (8 reviews) | Not enough data | | **Black-Box Scanning** | Not enough data | 7.0 (9 reviews) | Not enough data | | **Detection Rate** | Not enough data | 8.3 (9 reviews) | Not enough data | | **False Positives** | Not enough data | 6.2 (11 reviews) | Not enough data | #### Agentic AI - Static Application Security Testing (SAST) | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | ### Dynamic Application Security Testing (DAST) | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | 8.5/10 | 7 | #### Administration | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **API / Integrations** | Not enough data | Not enough data | 7.9 (7 reviews) | | **Extensibility** | Not enough data | Not enough data | 9.2 (6 reviews) | #### Analysis | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Reporting and Analytics** | Not enough data | Not enough data | 8.3 (7 reviews) | | **Issue Tracking** | Not enough data | Not enough data | 8.3 (5 reviews) | | **Static Code Analysis** | Not enough data | Not enough data | 9.3 (7 reviews) | | **Vulnerability Scan** | Not enough data | Not enough data | 8.8 (7 reviews) | | **Code Analysis** | Not enough data | Not enough data | 8.6 (6 reviews) | #### Testing | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Manual Testing** | Not enough data | Not enough data | Not enough data | | **Test Automation** | Not enough data | Not enough data | 9.0 (5 reviews) | | **Compliance Testing** | Not enough data | Not enough data | Not enough data | | **Black-Box Scanning** | Not enough data | Not enough data | 8.3 (5 reviews) | | **Detection Rate** | Not enough data | Not enough data | 8.0 (5 reviews) | | **False Positives** | Not enough data | Not enough data | 7.8 (6 reviews) | ### Vulnerability Scanner | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Performance | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Issue Tracking** | Not enough data | Not enough data | Not enough data | | **Detection Rate** | Not enough data | Not enough data | Not enough data | | **False Positives** | Not enough data | Not enough data | Not enough data | | **Automated Scans** | Not enough data | Not enough data | Not enough data | #### Network | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Compliance Testing** | Not enough data | Not enough data | Not enough data | | **Perimeter Scanning** | Not enough data | Not enough data | Not enough data | | **Configuration Monitoring** | Not enough data | Not enough data | Not enough data | #### Application | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Manual Application Testing** | Not enough data | Not enough data | Not enough data | | **Static Code Analysis** | Not enough data | Not enough data | Not enough data | | **Black Box Testing** | Not enough data | Not enough data | Not enough data | #### Agentic AI - Vulnerability Scanner | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | | **Proactive Assistance** | Not enough data | Not enough data | Not enough data | ### Software Composition Analysis | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Functionality - Software Composition Analysis | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Language Support** | Not enough data | Not enough data | Not enough data | | **Integration** | Not enough data | Not enough data | Not enough data | | **Transparency** | Not enough data | Not enough data | Not enough data | #### Effectiveness - Software Composition Analysis | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Remediation Suggestions** | Not enough data | Not enough data | Not enough data | | **Continuous Monitoring** | Not enough data | Not enough data | Not enough data | | **Thorough Detection** | Not enough data | Not enough data | Not enough data | ### Secure Code Review | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Documentation | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Feedback** | Not enough data | Not enough data | Not enough data | | **Prioritization** | Not enough data | Not enough data | Not enough data | | **Remediation Suggestions** | Not enough data | Not enough data | Not enough data | #### Security | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **False Positives** | Not enough data | Not enough data | Not enough data | | **Custom Compliance** | Not enough data | Not enough data | Not enough data | | **Agility** | Not enough data | Not enough data | Not enough data | ### Software Supply Chain Security Tools | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Security | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Tampering** | Not enough data | Not enough data | Not enough data | | **Malicious Code** | Not enough data | Not enough data | Not enough data | | **Verification** | Not enough data | Not enough data | Not enough data | | **Security Risks** | Not enough data | Not enough data | Not enough data | #### Tracking | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Bill of Materials** | Not enough data | Not enough data | Not enough data | | **Audit Trails** | Not enough data | Not enough data | Not enough data | | **Monitoring** | Not enough data | Not enough data | Not enough data | ### Application Security | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Generative AI | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **AI Text Summarization** | Not enough data | Not enough data | Not enough data | ### Software Bill of Materials (SBOM) | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Functionality - Software Bill of Materials (SBOM) | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Format Support** | Not enough data | Not enough data | Not enough data | | **Annotations** | Not enough data | Not enough data | Not enough data | | **Attestation** | Not enough data | Not enough data | Not enough data | #### Management - Software Bill of Materials (SBOM) | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Monitoring** | Not enough data | Not enough data | Not enough data | | **Dashboards** | Not enough data | Not enough data | Not enough data | | **User Provisioning** | Not enough data | Not enough data | Not enough data | ### Runtime Application Self-Protection (RASP) Tools | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Threat Detection & Response - Runtime Application Self-Protection (RASP) | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Threat Remediation** | Not enough data | Not enough data | Not enough data | | **Threat Detection** | Not enough data | Not enough data | Not enough data | | **Application Behavior Monitoring** | Not enough data | Not enough data | Not enough data | | **Intelligence and Reporting** | Not enough data | Not enough data | Not enough data | ### Static Code Analysis | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Agentic AI - Static Code Analysis | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Adaptive Learning** | Not enough data | Not enough data | Not enough data | | **Natural Language Interaction** | Not enough data | Not enough data | Not enough data | | **Proactive Assistance** | Not enough data | Not enough data | Not enough data | ### AI AppSec Assistants | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Performance - AI AppSec Assistants | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Remediation** | Not enough data | Not enough data | Not enough data | | **Real-time Vulnerability Detection** | Not enough data | Not enough data | Not enough data | | **Accuracy** | Not enough data | Not enough data | Not enough data | #### Integration - AI AppSec Assistants | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Stack Integration** | Not enough data | Not enough data | Not enough data | | **Workflow Integration** | Not enough data | Not enough data | Not enough data | | **Codebase Contextual Awareness** | Not enough data | Not enough data | Not enough data | ### Interactive Application Security Testing (IAST) | Product | Score | Reviews | |---|---|---| | **OpenText Core Application Security** | N/A | N/A | | **OpenText Static Application Security Testing** | N/A | N/A | | **Veracode Application Security Platform** | N/A | N/A | #### Agentic AI - Interactive Application Security Testing (IAST) | Feature | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | --- ## Categories **Shared Categories (1):** [Static Code Analysis Tools](https://www.g2.com/categories/static-code-analysis) **Unique to OpenText Core Application Security (3):** [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast), [Interactive Application Security Testing (IAST) Software](https://www.g2.com/categories/interactive-application-security-testing-iast), [Runtime Application Self-Protection (RASP) Tools ](https://www.g2.com/categories/runtime-application-self-protection-rasp-tools) **Unique to OpenText Static Application Security Testing (1):** [Static Application Security Testing (SAST) Software](https://www.g2.com/categories/static-application-security-testing-sast) **Unique to Veracode Application Security Platform (10):** [Secure Code Review Software](https://www.g2.com/categories/secure-code-review), [AI AppSec Assistants](https://www.g2.com/categories/ai-appsec-assistants), [Static Application Security Testing (SAST) Software](https://www.g2.com/categories/static-application-security-testing-sast), [Penetration Testing Tools](https://www.g2.com/categories/penetration-testing-tools), [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner), [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast), [Software Composition Analysis Tools](https://www.g2.com/categories/software-composition-analysis), [Interactive Application Security Testing (IAST) Software](https://www.g2.com/categories/interactive-application-security-testing-iast), [Software Bill of Materials (SBOM) Software](https://www.g2.com/categories/software-bill-of-materials-sbom), [Software Supply Chain Security Solutions](https://www.g2.com/categories/software-supply-chain-security-tools) --- ## Reviewer Demographics ### By Company Size | Segment | OpenText Core Application Security | OpenText Static Application Security Testing | Veracode Application Security Platform | |---|---|---|---| | **Small-Business** | 32.4% | 28.6% | 17.4% | | **Mid-Market** | 26.5% | 23.8% | 30.4% | | **Enterprise** | 41.2% | 47.6% | 52.2% | ### By Industry #### OpenText Core Application Security - **Information Technology and Services:** 26.5% - **Computer & Network Security:** 8.8% - **Computer Software:** 8.8% - **Airlines/Aviation:** 5.9% - **Construction:** 5.9% - **Banking:** 2.9% - **Education Management:** 2.9% - **Financial Services:** 2.9% - **Health, Wellness and Fitness:** 2.9% - **Higher Education:** 2.9% - **Other:** 29.4% #### OpenText Static Application Security Testing - **Financial Services:** 23.8% - **Banking:** 19.0% - **Information Technology and Services:** 14.3% - **Computer Software:** 14.3% - **Computer & Network Security:** 9.5% - **Consulting:** 4.8% - **Hospital & Health Care:** 4.8% - **Higher Education:** 4.8% - **Automotive:** 4.8% #### Veracode Application Security Platform - **Information Technology and Services:** 30.4% - **Hospital & Health Care:** 13.0% - **Consumer Goods:** 8.7% - **Computer Software:** 8.7% - **Telecommunications:** 4.3% - **Retail:** 4.3% - **Research:** 4.3% - **Media Production:** 4.3% - **Logistics and Supply Chain:** 4.3% - **Insurance:** 4.3% - **Other:** 13.0% --- ## Alternatives ### Alternatives to OpenText Core Application Security - [Checkmarx](https://www.g2.com/products/checkmarx/reviews) — 4.2/5 stars (38 reviews) - [HCL AppScan](https://www.g2.com/products/hcl-appscan/reviews) — 4.1/5 stars (76 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (301 reviews) - [SonarQube](https://www.g2.com/products/sonarqube/reviews) — 4.4/5 stars (141 reviews) - [Burp Suite](https://www.g2.com/products/burp-suite/reviews) — 4.8/5 stars (129 reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (891 reviews) - [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews) — 4.6/5 stars (69 reviews) - [Dynatrace](https://www.g2.com/products/dynatrace/reviews) — 4.5/5 stars (1363 reviews) - [Coverity](https://www.g2.com/products/coverity/reviews) — 4.2/5 stars (55 reviews) - [Gearset DevOps](https://www.g2.com/products/gearset-devops/reviews) — 4.7/5 stars (292 reviews) ### Alternatives to OpenText Static Application Security Testing - [SonarQube](https://www.g2.com/products/sonarqube/reviews) — 4.4/5 stars (141 reviews) - [Coverity](https://www.g2.com/products/coverity/reviews) — 4.2/5 stars (55 reviews) - [Checkmarx](https://www.g2.com/products/checkmarx/reviews) — 4.2/5 stars (38 reviews) - [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2353 reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (891 reviews) - [Mend.io](https://www.g2.com/products/mend-io/reviews) — 4.3/5 stars (112 reviews) - [Semgrep](https://www.g2.com/products/semgrep/reviews) — 4.6/5 stars (55 reviews) - [Snyk](https://www.g2.com/products/snyk/reviews) — 4.5/5 stars (132 reviews) - [Klocwork](https://www.g2.com/products/klocwork/reviews) — 4.4/5 stars (23 reviews) - [HCL AppScan](https://www.g2.com/products/hcl-appscan/reviews) — 4.1/5 stars (76 reviews) ### Alternatives to Veracode Application Security Platform - [Checkmarx](https://www.g2.com/products/checkmarx/reviews) — 4.2/5 stars (38 reviews) - [SonarQube](https://www.g2.com/products/sonarqube/reviews) — 4.4/5 stars (141 reviews) - [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews) — 4.6/5 stars (69 reviews) - [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2353 reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (891 reviews) - [Snyk](https://www.g2.com/products/snyk/reviews) — 4.5/5 stars (132 reviews) - [Mend.io](https://www.g2.com/products/mend-io/reviews) — 4.3/5 stars (112 reviews) - [HCL AppScan](https://www.g2.com/products/hcl-appscan/reviews) — 4.1/5 stars (76 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (301 reviews) - [Burp Suite](https://www.g2.com/products/burp-suite/reviews) — 4.8/5 stars (129 reviews) --- ## Top Discussions ### OpenText Core Application Security No discussions available for this product. ### OpenText Static Application Security Testing - Title: [What are the main components of Fortify?](https://www.g2.com/discussions/fortify-static-code-analyzer-what-are-the-main-components-of-fortify) — 1 comment > **Top comment:** "Fortify SSC server Fortify scan software for windows or Linux " - Title: [will provide Video training course for this tool?](https://www.g2.com/discussions/49959-will-provide-video-training-course-for-this-tool) — 1 comment, 1 upvote > **Top comment:** "Micro Focus has a comprehensive set of free training tools! Check out this one on SCA..." ### Veracode Application Security Platform No discussions available for this product. --- **Source:** [G2.com](https://www.g2.com) | [Comparison Page](https://www.g2.com/compare/opentext-core-application-security-vs-opentext-static-application-security-testing-vs-veracode-application-security-platform)