# Semgrep vs Veracode Dynamic Analysis Comparison | | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Star Rating** | 4.6 out of 5 | 4.3 out of 5 | | **Total Reviews** | 55 | 16 | | **Largest Market Segment** | Enterprise (46.3% of reviews) | Enterprise (78.6% of reviews) | | **Entry Level Price** | Starting at $40.00 1 contributor Per Month | No pricing available | --- ## Top Pros & Cons ### Semgrep Pros: - Ease of Use (16 reviews) - Features (14 reviews) Cons: - Not User-Friendly (7 reviews) - Limited Features (6 reviews) ### Veracode Dynamic Analysis **Not enough data** --- ## Ratings Comparison | Rating | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Meets Requirements** | 8.8 (49 reviews) | 9.4 (6 reviews) | | **Ease of Use** | 9.1 (50 reviews) | 8.6 (6 reviews) | | **Ease of Setup** | 9.4 (37 reviews) | 8.3 (5 reviews) | | **Ease of Admin** | 9.1 (22 reviews) | 8.0 (5 reviews) | | **Quality of Support** | 8.8 (44 reviews) | 8.7 (5 reviews) | | **Has the product been a good partner in doing business?** | 9.6 (22 reviews) | 7.3 (5 reviews) | | **Product Direction (% positive)** | 9.2 (45 reviews) | Not enough data | --- ## Pricing ### Semgrep #### Entry-Level Pricing Plan: Semgrep Code, Supply Chain, and Secrets Detection Price: Starting at $40.00 1 contributor Per Month Description: Extensible AppSec for growing teams. Choose from Code (SAST), Supply Chain (SCA), and Secrets Detection to eliminate noise out of the box, streamline developer workflows, and give security teams full visibility. Key Features: - Choose from SAST, SCA, and Secrets Detection - Pro Rules and cross-file analysis - AI Assistant [Learn more about Semgrep](https://www.g2.com/products/semgrep/reviews) #### Free Trial Yes ### Veracode Dynamic Analysis #### Entry-Level Pricing No pricing available #### Free Trial No information available --- ## Features Comparison By Category ### Static Application Security Testing (SAST) | Product | Score | Reviews | |---|---|---| | **Semgrep** | 8.4/10 | 22 | | **Veracode Dynamic Analysis** | N/A | N/A | #### Administration | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **API / Integrations** | 9.0 (18 reviews) | Not enough data | | **Extensibility** | 8.2 (17 reviews) | Not enough data | #### Analysis | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Reporting and Analytics** | 8.4 (19 reviews) | Not enough data | | **Issue Tracking** | 9.2 (22 reviews) | Not enough data | | **Static Code Analysis** | 9.4 (22 reviews) | Not enough data | | **Code Analysis** | 9.2 (22 reviews) | Not enough data | #### Testing | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Command-Line Tools** | 8.7 (20 reviews) | Not enough data | | **Manual Testing** | Feature Not Available | Not enough data | | **Test Automation** | Feature Not Available | Not enough data | | **Compliance Testing** | 7.7 (17 reviews) | Not enough data | | **Black-Box Scanning** | 7.5 (18 reviews) | Not enough data | | **Detection Rate** | 8.1 (19 reviews) | Not enough data | | **False Positives** | 7.3 (21 reviews) | Not enough data | #### Agentic AI - Static Application Security Testing (SAST) | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Autonomous Task Execution** | 7.9 (11 reviews) | Not enough data | ### Dynamic Application Security Testing (DAST) | Product | Score | Reviews | |---|---|---| | **Semgrep** | N/A | N/A | | **Veracode Dynamic Analysis** | N/A | N/A | #### Administration | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **API / Integrations** | Feature Not Available | Not enough data | | **Extensibility** | Feature Not Available | Not enough data | #### Analysis | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Reporting and Analytics** | Not enough data | Not enough data | | **Issue Tracking** | Not enough data | Not enough data | | **Static Code Analysis** | Not enough data | Not enough data | | **Vulnerability Scan** | Not enough data | Not enough data | | **Code Analysis** | Not enough data | Not enough data | #### Testing | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Manual Testing** | Feature Not Available | Not enough data | | **Test Automation** | Feature Not Available | Not enough data | | **Compliance Testing** | Feature Not Available | Not enough data | | **Black-Box Scanning** | Not enough data | Not enough data | | **Detection Rate** | Not enough data | Not enough data | | **False Positives** | Not enough data | Not enough data | ### Vulnerability Scanner | Product | Score | Reviews | |---|---|---| | **Semgrep** | 8.1/10 | 12 | | **Veracode Dynamic Analysis** | N/A | N/A | #### Performance | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Issue Tracking** | 8.2 (12 reviews) | Not enough data | | **Detection Rate** | 8.0 (11 reviews) | Not enough data | | **False Positives** | 8.0 (11 reviews) | Not enough data | | **Automated Scans** | 9.0 (10 reviews) | Not enough data | #### Network | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Compliance Testing** | 8.5 (10 reviews) | Not enough data | | **Perimeter Scanning** | 7.8 (10 reviews) | Not enough data | | **Configuration Monitoring** | 8.0 (10 reviews) | Not enough data | #### Application | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Manual Application Testing** | Feature Not Available | Not enough data | | **Static Code Analysis** | 8.9 (11 reviews) | Not enough data | | **Black Box Testing** | 8.5 (11 reviews) | Not enough data | #### Agentic AI - Vulnerability Scanner | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Autonomous Task Execution** | 6.9 (6 reviews) | Not enough data | | **Proactive Assistance** | 7.5 (6 reviews) | Not enough data | ### Software Composition Analysis | Product | Score | Reviews | |---|---|---| | **Semgrep** | 8.4/10 | 18 | | **Veracode Dynamic Analysis** | N/A | N/A | #### Functionality - Software Composition Analysis | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Language Support** | 8.4 (18 reviews) | Not enough data | | **Integration** | 8.2 (18 reviews) | Not enough data | | **Transparency** | 8.5 (18 reviews) | Not enough data | #### Effectiveness - Software Composition Analysis | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Remediation Suggestions** | 8.5 (18 reviews) | Not enough data | | **Continuous Monitoring** | 8.3 (18 reviews) | Not enough data | | **Thorough Detection** | 8.3 (18 reviews) | Not enough data | ### Secure Code Review | Product | Score | Reviews | |---|---|---| | **Semgrep** | 8.4/10 | 21 | | **Veracode Dynamic Analysis** | N/A | N/A | #### Documentation | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Feedback** | 8.9 (19 reviews) | Not enough data | | **Prioritization** | 9.3 (20 reviews) | Not enough data | | **Remediation Suggestions** | 8.2 (20 reviews) | Not enough data | #### Security | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **False Positives** | 7.4 (21 reviews) | Not enough data | | **Custom Compliance** | 7.9 (17 reviews) | Not enough data | | **Agility** | 8.9 (17 reviews) | Not enough data | ### Static Code Analysis | Product | Score | Reviews | |---|---|---| | **Semgrep** | 7.7/10 | 10 | | **Veracode Dynamic Analysis** | N/A | N/A | #### Agentic AI - Static Code Analysis | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Adaptive Learning** | 7.7 (10 reviews) | Not enough data | | **Natural Language Interaction** | 7.6 (9 reviews) | Not enough data | | **Proactive Assistance** | 7.7 (10 reviews) | Not enough data | ### AI AppSec Assistants | Product | Score | Reviews | |---|---|---| | **Semgrep** | N/A | N/A | | **Veracode Dynamic Analysis** | N/A | N/A | #### Performance - AI AppSec Assistants | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Remediation** | Not enough data | Not enough data | | **Real-time Vulnerability Detection** | Not enough data | Not enough data | | **Accuracy** | Not enough data | Not enough data | #### Integration - AI AppSec Assistants | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Stack Integration** | Not enough data | Not enough data | | **Workflow Integration** | Not enough data | Not enough data | | **Codebase Contextual Awareness** | Not enough data | Not enough data | ### Interactive Application Security Testing (IAST) | Product | Score | Reviews | |---|---|---| | **Semgrep** | N/A | N/A | | **Veracode Dynamic Analysis** | N/A | N/A | #### Agentic AI - Interactive Application Security Testing (IAST) | Feature | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | --- ## Categories **Shared Categories (1):** [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast) **Unique to Semgrep (7):** [AI AppSec Assistants](https://www.g2.com/categories/ai-appsec-assistants), [Software Composition Analysis Tools](https://www.g2.com/categories/software-composition-analysis), [Static Application Security Testing (SAST) Software](https://www.g2.com/categories/static-application-security-testing-sast), [Static Code Analysis Tools](https://www.g2.com/categories/static-code-analysis), [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner), [Secure Code Review Software](https://www.g2.com/categories/secure-code-review), [Interactive Application Security Testing (IAST) Software](https://www.g2.com/categories/interactive-application-security-testing-iast) --- ## Reviewer Demographics ### By Company Size | Segment | Semgrep | Veracode Dynamic Analysis | |---|---|---| | **Small-Business** | 11.1% | 7.1% | | **Mid-Market** | 42.6% | 14.3% | | **Enterprise** | 46.3% | 78.6% | ### By Industry #### Semgrep - **Information Technology and Services:** 24.1% - **Computer Software:** 20.4% - **Financial Services:** 16.7% - **Computer & Network Security:** 5.6% - **Semiconductors:** 5.6% - **Manufacturing:** 5.6% - **Insurance:** 3.7% - **International Affairs:** 1.9% - **Information Services:** 1.9% - **Hospital & Health Care:** 1.9% - **Other:** 13.0% #### Veracode Dynamic Analysis - **Telecommunications:** 14.3% - **Insurance:** 14.3% - **Information Technology and Services:** 14.3% - **Financial Services:** 14.3% - **Banking:** 14.3% - **Marketing and Advertising:** 7.1% - **Food Production:** 7.1% - **Computer Software:** 7.1% - **Automotive:** 7.1% --- ## Alternatives ### Alternatives to Semgrep - [SonarQube](https://www.g2.com/products/sonarqube/reviews) — 4.4/5 stars (146 reviews) - [Snyk](https://www.g2.com/products/snyk/reviews) — 4.5/5 stars (133 reviews) - [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2366 reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (896 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (813 reviews) - [Red Hat Ansible Automation Platform](https://www.g2.com/products/red-hat-ansible-automation-platform/reviews) — 4.6/5 stars (377 reviews) - [Replit](https://www.g2.com/products/replit/reviews) — 4.5/5 stars (361 reviews) - [GitHub Copilot](https://www.g2.com/products/github-copilot/reviews) — 4.5/5 stars (332 reviews) - [Microsoft Defender for Cloud](https://www.g2.com/products/microsoft-defender-for-cloud/reviews) — 4.4/5 stars (314 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (302 reviews) ### Alternatives to Veracode Dynamic Analysis - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (896 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (302 reviews) - [Intruder](https://www.g2.com/products/intruder/reviews) — 4.8/5 stars (206 reviews) - [Astra Pentest](https://www.g2.com/products/astra-pentest/reviews) — 4.6/5 stars (189 reviews) - [Cobalt](https://www.g2.com/products/cobalt-io-cobalt/reviews) — 4.5/5 stars (177 reviews) - [Acunetix by Invicti](https://www.g2.com/products/acunetix-by-invicti/reviews) — 4.1/5 stars (105 reviews) - [Aikido Security](https://www.g2.com/products/aikido-security/reviews) — 4.6/5 stars (141 reviews) - [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews) — 4.6/5 stars (69 reviews) - [Burp Suite](https://www.g2.com/products/burp-suite/reviews) — 4.8/5 stars (129 reviews) - [HCL AppScan](https://www.g2.com/products/hcl-appscan/reviews) — 4.1/5 stars (76 reviews) --- ## Top Discussions ### Semgrep No discussions available for this product. ### Veracode Dynamic Analysis No discussions available for this product. --- **Source:** [G2.com](https://www.g2.com) | [Comparison Page](https://www.g2.com/compare/semgrep-vs-veracode-dynamic-analysis)