It's been two months since this profile received a new review
Leave a Review
Compare this with other toolsSave it to your board and evaluate your options side by side.
Save to board

Black Duck Reviews & Product Details

Profile Status

This profile is currently managed by Black Duck but has limited features.

Are you part of the Black Duck team? Upgrade your plan to enhance your branding and engage with visitors to your profile!

Value at a Glance

Averages based on real user reviews.

Time to Implement

8 months

View More Pricing Information

Black Duck Media

Black Duck Demo - Screen+Shot+2017-03-03+at+11.27.57+AM.png
Screen+Shot+2017-03-03+at+11.27.57+AM.png
Black Duck Demo - Screen+Shot+2017-03-03+at+11.26.59+AM.png
Screen+Shot+2017-03-03+at+11.26.59+AM.png
Black Duck Demo - Screen+Shot+2017-03-07+at+3.50.54+PM.png
Screen+Shot+2017-03-07+at+3.50.54+PM.png
Black Duck Demo - Screen+Shot+2017-03-07+at+3.57.26+PM.png
Screen+Shot+2017-03-07+at+3.57.26+PM.png
Product Avatar Image

Have you used Black Duck before?

Answer a few questions to help the Black Duck community

Yes
Yes

Black Duck Reviews (26)

Reviews

Black Duck Reviews (26)

4.0
27 reviews

Review Summary

Generated using AI from real user reviews
Users consistently praise the product for its comprehensive analysis and ability to identify open source vulnerabilities effectively. Many appreciate its extensive knowledge base and integration capabilities, which enhance security management. However, some users note that it can be resource-heavy during on-prem deployment.

Pros & Cons

Generated from real user reviews
View All Pros and Cons
Search reviews
Filter Reviews
Clear Results
G2 reviews are authentic and verified.
Here's how.
LT
Sr. Security Engineer
Mid-Market (51-1000 emp.)
More Options
"Powerful SCA Tool with Extensive Knowledge, but Resource-Heavy On-Prem Deployment"
What do you like best about Black Duck?

I found it as a best SCA tool, where its engine is very powerful in identifying Open source issues, And the main thing is that its Black Duck Knowledge is very huge Review collected by and hosted on G2.com.

What do you dislike about Black Duck?

The only drawback is it require huge resource to deploy in on-prem Review collected by and hosted on G2.com.

Neri Rafael C.
NC
Developer TI
Small-Business (50 or fewer emp.)
More Options
Business partner of the seller or seller's competitor, not included in G2 scores.
"good service and excellent support"
What do you like best about Black Duck?

my position within the organization as DevSecOps and developer can be quite complicated without the use of services or tools such as those provided by the whitehat sentinel team, we have used it for more than 4 years and the development support is always elementary, the The issue of security is something serious and it is something that must be studied permanently, they help you to have what you need Review collected by and hosted on G2.com.

What do you dislike about Black Duck?

This is very complex since for the niche that they offer service, in my opinion, if they meet the expectations, so I could say that I do not find a specific point to suggest any improvement at the moment. Review collected by and hosted on G2.com.

OR
Consultant
Mid-Market (51-1000 emp.)
More Options
"Whitehat sentinel"
What do you like best about Black Duck?

Security Experts analyse potential vulnerabilities.

Minimal false positives.

Alerts for newly discovered vulnerabilities.tracking all records previous as well as present. Review collected by and hosted on G2.com.

What do you dislike about Black Duck?

The vendor provides scanning, identification, engineering support and risked based reporting of security vulnerabilities. It is little bit slow other wise it is very good. Review collected by and hosted on G2.com.

Shreyans M.
SM
Scrum Master
Mid-Market (51-1000 emp.)
More Options
"Benchmark in software composition analysis"
What do you like best about Black Duck?

One of the top solution providers to help manage security vulnerabilities, code quality, code smells, bugs and compliance risk associated with third-party open source code in an effective way. It supports wide range of languages some of which include Java, Cobol, Javascript, C#, C and C++. This software is the benchmark solution to elevate the continuous inspection element in CI/CD model Review collected by and hosted on G2.com.

What do you dislike about Black Duck?

The cost is relatively higher than the other solutions in the market which makes it a difficult choice for organisations Review collected by and hosted on G2.com.

Pratik H.
PH
IT Project Coordinator
Mid-Market (51-1000 emp.)
More Options
"Legal and Operational risks management tool."
What do you like best about Black Duck?

It has impressive features for both legal & security 3rd party software compliance. UI is easy to understand. It helps us to analyze the code in a timely and accurate manner. Review collected by and hosted on G2.com.

What do you dislike about Black Duck?

According to me it has all the features required. It is fast and easy to use. Review collected by and hosted on G2.com.

Verified User in Information Technology and Services
II
Enterprise (> 1000 emp.)
More Options
"What's there in your code?"
What do you like best about Black Duck?

Blackduck is part of Devonshire which provides us automatic scanning. Black duck is not just for devops but also Secops. Blackduck has the most extensive open source KB in the industry Review collected by and hosted on G2.com.

What do you dislike about Black Duck?

I am expecting better governance of teams. I have various teams using the capacity and I need to know which team is using how much. Black duck can come up with tenancy. Review collected by and hosted on G2.com.

SAILEE J.
SJ
Scrum Master [Associate]
Small-Business (50 or fewer emp.)
More Options
"Need of today’s market"
What do you like best about Black Duck?

Black duck is certainly an industry leader in open source scanning primarily due to the fact that it is simpler to use and hence eliminate majority open source vulnerabilities and bugs and licensing issues. Should there be any enhancement request Blackduck is fairly adaptive and responsive towards implementing the same. Review collected by and hosted on G2.com.

What do you dislike about Black Duck?

The reporting could be enhanced as it does not provide the output the way one would expect it to be owing to which, it adds additional overhead to present the result in a better way Review collected by and hosted on G2.com.

Ali s.
AS
Customer Service Representative
Mid-Market (51-1000 emp.)
More Options
"Good security, Stable and feature rich."
What do you like best about Black Duck?

Black duck software composition analysis works amazing on Mac, It has a good security and excellent features that protects and examines our source code from compliance issues. Review collected by and hosted on G2.com.

What do you dislike about Black Duck?

Black duck should add features like packet analysis and binary analysis for better performance. Review collected by and hosted on G2.com.

Shayna A.
SA
Academic Specialist
Mid-Market (51-1000 emp.)
More Options
"SecOps made easy"
What do you like best about Black Duck?

Quick inventory scan, Security and License risk management, integration for automatic scanning. Review collected by and hosted on G2.com.

What do you dislike about Black Duck?

It is slow, outdated design and is to expensive. Review collected by and hosted on G2.com.

Verified User in Computer Software
AC
Enterprise (> 1000 emp.)
More Options
"Black duck is an excellent and reliable software to detect vulnerablities and security risks."
What do you like best about Black Duck?

Black duck serves as a good platform to identify third party software risk factors. It can be easily integrated as of part of CI/CD tools to scan security, license risk etc. It shows the exact break up of all the risky components of the binaries. Review collected by and hosted on G2.com.

What do you dislike about Black Duck?

It's very strict in compliance check so during upgradation of third party software it is diffcult to ignore some of the risks. But that shows how efficient Black duck software is. Also, using open source software creates license risks. Review collected by and hosted on G2.com.

Questions about Black Duck? Ask real users or explore answers from the community

Get practical answers, real workflows, and honest pros and cons from the G2 community or share your insights.

Ask about Black Duck
Verified User
G2
Verified User

What languages does Black Duck support?

0 Upvotes
0
Join the conversation
Verified User
G2
Verified User

What is software composition analysis?

0 Upvotes
0
Join the conversation
View all Discussions
Pricing

Pricing details for this product isn’t currently available. Visit the vendor’s website to learn more.

Black Duck Comparisons
Product Avatar Image
Mend.io
Compare Now
Product Avatar Image
SonarQube
Compare Now
Product Avatar Image
Checkmarx
Compare Now
Categories on G2
Software Composition Analysis
AI AppSec Assistants
Explore More
What platform integrates visitor management with access control systems?
Top-rated loyalty program apps for customer retention
Which absence management solution best integrates with payroll systems?
What platform integrates visitor management with access control systems?
Top-rated loyalty program apps for customer retention
Which absence management solution best integrates with payroll systems?
Which HCM software integrates with recruiting tools?
Which analytics platform is best for in-app purchase tracking?
Pros and Cons Details
Product Avatar Image
Black Duck
Save to Research Board