It's been two months since this profile received a new review

Veracode Application Security Platform Reviews & Product Details

Veracode helps companies that innovate through software deliver secure code on time. Unlike on-premise solutions that are hard to scale and focused on finding rather than fixing, Veracode comprises a unique combination of SaaS technology and on-demand expertise that enables DevSecOps through integration with your pipeline,empower developers to fix security defects, and scales your program through best practices to achieve your desired outcomes. Veracode covers your all your AppSec needs in one solution through a combination of five analysis types available for 24 programming languages, 77 frameworks, and application types as varied as microservices, mainframe and mobile apps.

Seller

VERACODE

Product Description

Veracode is the world's best automated, on-demand application security testing and code review solution.

Overview by

Kerin Sikorski (Principal Marketing Program Manager at ProcessUnity)

Value at a Glance

Averages based on real user reviews.

Perceived Cost

$$$$$

View More Pricing Information

Top-Rated Alternatives

Invicti (formerly Netsparker)

4.6/5

(65)

View All Alternatives

Veracode Application Security Platform Reviews (25)

G2 reviews are authentic and verified.

Here's how.

GJ

Glenn J.

Sr. Systems and Security Architect

Enterprise (> 1000 emp.)

11/20/2017

"Veracode is a good strong source vulnerability scanner"

4.5/5

What do you like best about Veracode Application Security Platform?

I like that Veracode has a tool that allows a programmer to use Visual Studio to run the tool. I also allows the programmer to view vulnerabilities in the source code reported by Veracode within Visual Studio. This make it very well integrated with Visual Studio. Review collected by and hosted on G2.com.

What do you dislike about Veracode Application Security Platform?

Veracode can take quite a bit of time to run a source code analysis. This can be discouraging to the programmers and sometimes they do not run Veracode because of this slowness. Review collected by and hosted on G2.com.

Recommendations to others considering Veracode Application Security Platform:

If you need static code security analysis, and who doesn't, this is the product for you. Review collected by and hosted on G2.com.

What problems is Veracode Application Security Platform solving and how is that benefiting you?

My company is using Veracode as the first item to be run before a Application Security Review. It shows the items that are the possible problems before running a dynamic vulnerability scan. Review collected by and hosted on G2.com.

AH

Verified User in Human Resources

Mid-Market (51-1000 emp.)

6/26/2018

"Lots of work for little gain"

1/5

What do you like best about Veracode Application Security Platform?

Was required by some of our customers, allowed us to scan code and develop higher confidence in security robustness Review collected by and hosted on G2.com.

What do you dislike about Veracode Application Security Platform?

Huge number of false positives that needed to be explained away, did not deal well with 3rd party libraries Review collected by and hosted on G2.com.

AG

Alex G.

Owner

Design

Small-Business (50 or fewer emp.)

2/19/2017

"Great idea, mediocre execution, terrible customer support"

1/5

What do you like best about Veracode Application Security Platform?

The world needs something like Veracode. Cyberthreats are too complex and are changing too fast for average software developers to keep up with all the necessary expertise and techniques. Separating cybersecurity testing into a standalone, purpose-built service simply makes sense. I appreciate that Veracode is, at least in theory, attempting to be that platform. Review collected by and hosted on G2.com.

What do you dislike about Veracode Application Security Platform?

Unfortunately, Veracode hasn't actually found the formula for success yet. The interface is clunky and disjointed, the documentation is confusing, and customer support takes literally weeks or months to respond to requests. It's a classic case of an excellent idea with lackluster execution. Review collected by and hosted on G2.com.

Recommendations to others considering Veracode Application Security Platform:

Press their sales people hard for details about whether the platform actually covers your security needs. Despite claiming broad coverage, there are some large holes. Review collected by and hosted on G2.com.

What problems is Veracode Application Security Platform solving and how is that benefiting you?

So far, despite quite a bit of money and effort on my part as an independent developer, Veracode has not helped me make any meaningful improvements in the security of my software products. I can't say I've realized any benefits. Review collected by and hosted on G2.com.

AC

Verified User in Computer Software

Mid-Market (51-1000 emp.)

12/28/2017

"Great, In Depth Scanned with Limited Experience Support"

4/5

What do you like best about Veracode Application Security Platform?

Veracode combines human and automated scanning to offer a really robust report. Reports are actionable, remediation is automated, and executive summaries are available on demand. Review collected by and hosted on G2.com.

What do you dislike about Veracode Application Security Platform?

Veracode today is robust for static scans, but limited to specific mobile builds and Firefox for dynamic scans. This makes analyzing Saas apps that do not support Firefox particularly challenging. Review collected by and hosted on G2.com.

UR

Verified User in Retail

Mid-Market (51-1000 emp.)

3/30/2017

"Good concept, terrible implementation"

0.5/5

What do you like best about Veracode Application Security Platform?

The idea. I'm a big evangelist of clean code and standards. Review collected by and hosted on G2.com.

What do you dislike about Veracode Application Security Platform?

Everything:

- Scans inaccurate

- Slow

- Outdated UI

- Not user friendly

- Terrible HTTP API for automation

- Bad customer support

- One of our applications, only 1 out of hundreds issues turns out to be true. Review collected by and hosted on G2.com.

Recommendations to others considering Veracode Application Security Platform:

If you want your developers frustrated, go ahead and impose veracode. SonarQube together with Findbugs provides more useful feedback. Review collected by and hosted on G2.com.

What problems is Veracode Application Security Platform solving and how is that benefiting you?

No benefits. I only use Veracode because it is enforced by company policies Review collected by and hosted on G2.com.