# Veracode Application Security Platform Reviews **Vendor:** VERACODE **Category:** [Static Application Security Testing (SAST) Software](https://www.g2.com/categories/static-application-security-testing-sast) **Average Rating:** 3.8/5.0 **Total Reviews:** 25 ## About Veracode Application Security Platform Veracode helps companies that innovate through software deliver secure code on time. Unlike on-premise solutions that are hard to scale and focused on finding rather than fixing, Veracode comprises a unique combination of SaaS technology and on-demand expertise that enables DevSecOps through integration with your pipeline,empower developers to fix security defects, and scales your program through best practices to achieve your desired outcomes. Veracode covers your all your AppSec needs in one solution through a combination of five analysis types available for 24 programming languages, 77 frameworks, and application types as varied as microservices, mainframe and mobile apps. ## Veracode Application Security Platform Pros & Cons **What users like:** - Users value the **effective identification of security vulnerabilities** through Veracode's comprehensive code analysis features. (2 reviews) - Users value the **effective vulnerability detection** of Veracode, enhancing security and streamlining the development process. (2 reviews) - Users value the **accuracy of results** from Veracode, enabling effective identification and remediation of various security vulnerabilities. (1 reviews) - Users value the **automated scanning features** of Veracode, which effectively identify vulnerabilities and streamline secure development processes. (1 reviews) - Users value the **comprehensive code analysis** of Veracode, ensuring robust security and best practices in development. (1 reviews) - Users value the **proactive support** of Veracode, which enhances code review and adapts to changing security needs. (1 reviews) - Comprehensive Security (1 reviews) - Users value the **comprehensive solutions** of Veracode, effectively identifying vulnerabilities and enhancing application security. (1 reviews) - Customer Support (1 reviews) - Cybersecurity (1 reviews) **What users dislike:** - Users find Veracode Application Security Platform to be **expensive** due to rising costs and licensing per application. (1 reviews) - Users are frustrated with the **increasing licensing costs** and the need for dedicated licenses for each application. (1 reviews) - Users are frustrated by **pricing issues** , as costs rise rapidly and each application requires a separate license. (1 reviews) ## Veracode Application Security Platform Reviews ### 1. Streamlined Security, Effortless Integration **Rating:** 5.0/5.0 stars **Reviewed by:** Bhanu Prakash M. | Senior Software Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** October 02, 2025 **What do you like best about Veracode Application Security Platform?** I find the Veracode Application Security Platform incredibly useful for identifying social injections and providing static code analysis, which helps in addressing all security vulnerabilities effectively. The ease of integrating with GitHub and cloud-based repositories streamlines our development process. The platform's PR static analysis feature is invaluable for maintaining best code practices, especially in preventing SQL injections and cross-site scripting attacks. I also appreciate the comprehensive code analysis capabilities that ensure our applications maintain high security standards. **What do you dislike about Veracode Application Security Platform?** i don't any issues with this security **What problems is Veracode Application Security Platform solving and how is that benefiting you?** I use Veracode to detect security vulnerabilities like SQL injections and cross-site scripting, ensuring robust code practices. It integrates easily with GitHub, providing detailed security analyses that guide us in fixing vulnerabilities effectively. ### 2. Complete Code review platform **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** December 13, 2024 **What do you like best about Veracode Application Security Platform?** We perform SAST and DAST code review on internal developed software in order to grant secure platform and accountability to our customers. We use 2 licecense since 2018 The support teams is really propositive and contact you before renewal, a specific session is performed in order to understand if the needs changed during years **What do you dislike about Veracode Application Security Platform?** During the years the costs increased faster and each application request a dedicated licence **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Security of applications in order to granting Accountability and compliance, ### 3. Good product and vision **Rating:** 3.0/5.0 stars **Reviewed by:** Verified User in Consumer Goods | Enterprise (> 1000 emp.) **Reviewed Date:** July 16, 2024 **What do you like best about Veracode Application Security Platform?** Serves great as a single entry point for all our applications portfolio, allowing to have both a general overview and to go in details on the security findings. **What do you dislike about Veracode Application Security Platform?** Account executive way too pushy and creates unneeded pressure. The company delivers way more features to the US market than EU, and the features are never delivered as promised. There are mismatches between what is described in the docs and what is actually delivered. Overly complex license model. The investment on the customer success package is hard to justify and its services are not measurable. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Veracode allows us to ensure that our digital products are secure and compliant with security standards, without sacrificing productivity. ### 4. Best security tool to have in the organization **Rating:** 4.5/5.0 stars **Reviewed by:** Sunil B. | Senior Manager, Enterprise (> 1000 emp.) **Reviewed Date:** August 23, 2023 **What do you like best about Veracode Application Security Platform?** security scanning which can conduct on our sdk'd , ipa's , jar files is something whoich one should appreciate . Because it gives back the exact report with correction required and suggestions . **What do you dislike about Veracode Application Security Platform?** Fro scanning as we upload sdk'd , ipa's ,jar files . When upload is not successfull ,user is not intimated immediately. This causes little confusion for a new comer. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Instead of relying on free tools , we have adopted Verqacode for static and dynamic scans and we were able to get good results . Which helped us in identifying things in the right time. ### 5. Code Scanning over Veracode **Rating:** 5.0/5.0 stars **Reviewed by:** Neha B. | Product Manager, Consumer Goods, Enterprise (> 1000 emp.) **Reviewed Date:** March 31, 2023 **What do you like best about Veracode Application Security Platform?** It's a tool to make a static code scan and detect the exposed secrets or passwords before the application is released. We can create multiple sandboxes and run various parts of the code individually. Veracode can be easily integrated with CI/CD pipelines, making it easy to trigger the scan. **What do you dislike about Veracode Application Security Platform?** Any meditation of false positive flaws is not straightforward or internal to the team. There is always dependency on the Veracode admin team to mitigate the flows, interrupting the overall workflow. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** We use Veracode for static code scanning to identify the vulnerabilities. It helps us identify the same and fix the code as per the action plan. We even conduct secure code review end to end for better code processing. ### 6. Best tool to analyse or found security threats in code **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** August 03, 2022 **What do you like best about Veracode Application Security Platform?** Help to analyse or found security threats in code. Performing Security testing get easy **What do you dislike about Veracode Application Security Platform?** Bit complex to implement and understand the threats. Description is to less for many errors. Scaning take more time to complete the result or report **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Security testing to easy by implementing veracode. It helps to do Vulnerability scanning. Source code review can also do ### 7. Veracode Application Security Platform - Best Security Platform **Rating:** 5.0/5.0 stars **Reviewed by:** Supriya T. | SAP Functional Tester, Enterprise (> 1000 emp.) **Reviewed Date:** December 02, 2020 **What do you like best about Veracode Application Security Platform?** We can conduct security testing (both static and dynamic) on any given application . For penetration testing this is the best tool. - In web application scanning we can conduct a) Website discovery b) Dynamic DS c) Dynamic MP d) Dynamic Analysis - Manual Penetration testing - Code scanning a) Static analysis b) Source clear software composite analysis And top of all its scan reporting features **What do you dislike about Veracode Application Security Platform?** Scanning progress is highly dependent on speed of internet as a result it creates confusion on the completion **What problems is Veracode Application Security Platform solving and how is that benefiting you?** We used other tools for scanning our application . But the scan reports were generated in specific formats. This problem got solved with Veracode because , different clients associated with us prefer different kinds of reports for automation purpose. Veracode is helping us in getting scan reports in desired formats ### 8. Security Platform **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** August 15, 2021 **What do you like best about Veracode Application Security Platform?** The ease of finding the CVE and possible libraries that needs to be upgrade for security compliance **What do you dislike about Veracode Application Security Platform?** Ease of console usage is a little challenging **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Dynamic Analysis, Penetration testings and Software composition analysis ### 9. was good overall but back end support was not as effective as expected **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Telecommunications | Mid-Market (51-1000 emp.) **Reviewed Date:** June 24, 2020 **What do you like best about Veracode Application Security Platform?** individual code scanning which helps to scan individual code. which is written by each individual and can be scan at the same time **What do you dislike about Veracode Application Security Platform?** backend support isnt good . there should be a proepr backend support that is needed from the veracode support team **What problems is Veracode Application Security Platform solving and how is that benefiting you?** scanning individual code which helps to secure the code in the initial level which decrease the cost of the scanning and security risk ### 10. A must-have tool for your security arsenal. **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Enterprise (> 1000 emp.) **Reviewed Date:** October 18, 2019 **What do you like best about Veracode Application Security Platform?** Over the years, Veracode has made the tools much faster and more thorough. Their Support group is very good, too. It's great to be able to schedule a consultation, and most of their consultants have been fantastic. **What do you dislike about Veracode Application Security Platform?** On the static scan, sometimes a flaw is detected during one scan, not detected during the next, and subsequently detected on a third. The inconsistency makes it hard to track. Also, they do not make it easy to mitigate flaws other than those for a static scan. **Recommendations to others considering Veracode Application Security Platform:** I've been very pleased with the Veracode Application Security Platform. It's very easy to use, it's quick, and their support if very good. I highly recommend checking it out. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** The platform helps identify any security flaws you have in your code. Also keeps developers on their toes with regard to making sure they don't introduce any *new* flaws. ### 11. Great platform for static code analysis **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** September 06, 2019 **What do you like best about Veracode Application Security Platform?** Easy to scan a new application and view results of previous scans, generate reports etc. **What do you dislike about Veracode Application Security Platform?** Nothing, it's really good. We only use it for static code analysis at the moment. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Providing users with self-service access to high quality automated testing. ### 12. Great tool to find security flaws **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** January 29, 2019 **What do you like best about Veracode Application Security Platform?** Veracode is good static analysis tool to find security flaws. I use this tool to scan my java microservices jar files. it's easy to configure. It does not require source code and accepts binary files and scans them. We can either manually scan files or integrate with jenkin so jars are auto scanned on every build. **What do you dislike about Veracode Application Security Platform?** can takes some time . It could be better if scanning time is improved. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** We use veracode to identify flaws and malicious code in applications before they are bought or deployed. It helps to build more secure application. ### 13. Feature rich **Rating:** 3.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Enterprise (> 1000 emp.) **Reviewed Date:** February 10, 2019 **What do you like best about Veracode Application Security Platform?** Sast and DAST feautures are good. Risk rating of the apps are decent. Ability to provide built in reports are good **What do you dislike about Veracode Application Security Platform?** Nothing that I can think of. Perhaps ability to commect with other industry products and scanning engine. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Exposing risks from our enterprise apps is a major benefit. Challenge is the volume but at lease we have visibility now. ### 14. Great Platform **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Media Production | Small-Business (50 or fewer emp.) **Reviewed Date:** February 11, 2019 **What do you like best about Veracode Application Security Platform?** I like how easy it is to learn, and how much time it saves in your process **What do you dislike about Veracode Application Security Platform?** I am fairly new to this program, so I will update if I find anything I dislike **Recommendations to others considering Veracode Application Security Platform:** Just give it a try and see how much better you will operate! **What problems is Veracode Application Security Platform solving and how is that benefiting you?** I am saving time and having more protection for my business ### 15. Comprehensive code Security Reporting **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Insurance | Enterprise (> 1000 emp.) **Reviewed Date:** January 30, 2019 **What do you like best about Veracode Application Security Platform?** It is easy to integrate with code build tools and produces comprehensive reports about the code quality and security vulnerabilities. **What do you dislike about Veracode Application Security Platform?** Nothing much to consider but it needs little bit of tweaks in order to tailor to your needs and to suit multiple technologies. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** It serves multiple purposes like static code analysis and security vulnerabilities at one shot and produces good reports. ### 16. Veracode Does It’s Job **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Enterprise (> 1000 emp.) **Reviewed Date:** February 19, 2019 **What do you like best about Veracode Application Security Platform?** Veracode gives detailed analysis and supports “ignoring of previously reviewed findings”. You can mark findings as “already reviewed”. **What do you dislike about Veracode Application Security Platform?** User interface is a little clumsy. The UI needs a face lift with more modern technology and widgets. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** It “checks the box” for Java code scanning. Security teams love that. ### 17. Secured Apps using veracode **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** February 11, 2019 **What do you like best about Veracode Application Security Platform?** its provides an automated cloud-based service for securing web, mobile and third-party enterprise applications **What do you dislike about Veracode Application Security Platform?** Its bit cost cost compare to competitors, But I like all the features **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Veracode makes writing secure code just one more aspect of writing great code. With our designed-for-developer tools, API and workflow integrations ### 18. Veracode App **Rating:** 3.0/5.0 stars **Reviewed by:** Verified User in Biotechnology | Enterprise (> 1000 emp.) **Reviewed Date:** February 05, 2019 **What do you like best about Veracode Application Security Platform?** It provides a fair amount of security but has some quirks. **What do you dislike about Veracode Application Security Platform?** Not as user friendly as I would like it to be **What problems is Veracode Application Security Platform solving and how is that benefiting you?** My experience is using Peer reviews. ### 19. Fun learning experience **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Small-Business (50 or fewer emp.) **Reviewed Date:** February 11, 2019 **What do you like best about Veracode Application Security Platform?** Very user friendlyand easy to navigate.. response time for assistance is great **What do you dislike about Veracode Application Security Platform?** Nothing to report at this time working well **Recommendations to others considering Veracode Application Security Platform:** N/A **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Risk management ### 20. The leader in application vulnerability scanning **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Logistics and Supply Chain | Mid-Market (51-1000 emp.) **Reviewed Date:** February 05, 2019 **What do you like best about Veracode Application Security Platform?** Single solution for both static and dynamic scans. **What do you dislike about Veracode Application Security Platform?** There's a little bit of a learning curve. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Developing secure software. ### 21. Veracode is a good strong source vulnerability scanner **Rating:** 4.5/5.0 stars **Reviewed by:** Glenn J. | Sr. Systems and Security Architect, Enterprise (> 1000 emp.) **Reviewed Date:** November 20, 2017 **What do you like best about Veracode Application Security Platform?** I like that Veracode has a tool that allows a programmer to use Visual Studio to run the tool. I also allows the programmer to view vulnerabilities in the source code reported by Veracode within Visual Studio. This make it very well integrated with Visual Studio. **What do you dislike about Veracode Application Security Platform?** Veracode can take quite a bit of time to run a source code analysis. This can be discouraging to the programmers and sometimes they do not run Veracode because of this slowness. **Recommendations to others considering Veracode Application Security Platform:** If you need static code security analysis, and who doesn't, this is the product for you. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** My company is using Veracode as the first item to be run before a Application Security Review. It shows the items that are the possible problems before running a dynamic vulnerability scan. ### 22. Lots of work for little gain **Rating:** 1.0/5.0 stars **Reviewed by:** Verified User in Human Resources | Mid-Market (51-1000 emp.) **Reviewed Date:** June 26, 2018 **What do you like best about Veracode Application Security Platform?** Was required by some of our customers, allowed us to scan code and develop higher confidence in security robustness **What do you dislike about Veracode Application Security Platform?** Huge number of false positives that needed to be explained away, did not deal well with 3rd party libraries **Recommendations to others considering Veracode Application Security Platform:** try it once, and you will run away **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Static code analysis for security ### 23. Great idea, mediocre execution, terrible customer support **Rating:** 1.0/5.0 stars **Reviewed by:** Alex G. | Owner, Design, Small-Business (50 or fewer emp.) **Reviewed Date:** February 19, 2017 **What do you like best about Veracode Application Security Platform?** The world needs something like Veracode. Cyberthreats are too complex and are changing too fast for average software developers to keep up with all the necessary expertise and techniques. Separating cybersecurity testing into a standalone, purpose-built service simply makes sense. I appreciate that Veracode is, at least in theory, attempting to be that platform. **What do you dislike about Veracode Application Security Platform?** Unfortunately, Veracode hasn't actually found the formula for success yet. The interface is clunky and disjointed, the documentation is confusing, and customer support takes literally weeks or months to respond to requests. It's a classic case of an excellent idea with lackluster execution. **Recommendations to others considering Veracode Application Security Platform:** Press their sales people hard for details about whether the platform actually covers your security needs. Despite claiming broad coverage, there are some large holes. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** So far, despite quite a bit of money and effort on my part as an independent developer, Veracode has not helped me make any meaningful improvements in the security of my software products. I can't say I've realized any benefits. ### 24. Great, In Depth Scanned with Limited Experience Support **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** December 28, 2017 **What do you like best about Veracode Application Security Platform?** Veracode combines human and automated scanning to offer a really robust report. Reports are actionable, remediation is automated, and executive summaries are available on demand. **What do you dislike about Veracode Application Security Platform?** Veracode today is robust for static scans, but limited to specific mobile builds and Firefox for dynamic scans. This makes analyzing Saas apps that do not support Firefox particularly challenging. **Recommendations to others considering Veracode Application Security Platform:** If your app supports Firefox, this is the best tool on the market! **What problems is Veracode Application Security Platform solving and how is that benefiting you?** Application security, vulnerability assessment. ### 25. Good concept, terrible implementation **Rating:** 0.5/5.0 stars **Reviewed by:** Verified User in Retail | Mid-Market (51-1000 emp.) **Reviewed Date:** March 30, 2017 **What do you like best about Veracode Application Security Platform?** The idea. I'm a big evangelist of clean code and standards. **What do you dislike about Veracode Application Security Platform?** Everything: - Scans inaccurate - Slow - Outdated UI - Not user friendly - Terrible HTTP API for automation - Bad customer support - One of our applications, only 1 out of hundreds issues turns out to be true. **Recommendations to others considering Veracode Application Security Platform:** If you want your developers frustrated, go ahead and impose veracode. SonarQube together with Findbugs provides more useful feedback. **What problems is Veracode Application Security Platform solving and how is that benefiting you?** No benefits. I only use Veracode because it is enforced by company policies ## Veracode Application Security Platform Discussions - [What is difference between veracode and SonarQube?](https://www.g2.com/discussions/what-is-difference-between-veracode-and-sonarqube) - [What is veracode software composition analysis?](https://www.g2.com/discussions/what-is-veracode-software-composition-analysis) - [What is veracode used for?](https://www.g2.com/discussions/what-is-veracode-used-for) - [What is the veracode application security platform?](https://www.g2.com/discussions/what-is-the-veracode-application-security-platform) - [View Veracode Application Security Platform pricing details and edition comparison](https://www.g2.com/products/veracode-application-security-platform/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-15+17%3A32%3A15+-0500&secure%5Bsession_id%5D=4b8c76b4-410e-403a-b2f4-643f1ad1370d&secure%5Btoken%5D=d91438e8642d2960aa7c16e311c1db3d4a151783e8424414271563e5e0832c66&format=llm_user) ## Veracode Application Security Platform Features **Administration** - API / Integrations - Extensibility - Reporting and Analytics **Administration** - API / Integrations - Extensibility **Administration** - API / Integrations - Extensibility **Performance** - Issue Tracking - Detection Rate - False Positives - Automated Scans **Functionality - Software Composition Analysis ** - Language Support - Integration - Transparency **Documentation** - Feedback - Prioritization - Remediation Suggestions **Agentic AI - Static Code Analysis** - Adaptive Learning - Natural Language Interaction - Proactive Assistance **Performance - AI AppSec Assistants** - Remediation - Real-time Vulnerability Detection - Accuracy **Analysis** - Issue Tracking - Reconnaissance - Vulnerability Scan **Analysis** - Reporting and Analytics - Issue Tracking - Static Code Analysis - Code Analysis **Analysis** - Reporting and Analytics - Issue Tracking - Static Code Analysis - Vulnerability Scan - Code Analysis **Network** - Compliance Testing - Perimeter Scanning - Configuration Monitoring **Effectiveness - Software Composition Analysis** - Remediation Suggestions - Continuous Monitoring - Thorough Detection **Security** - False Positives - Custom Compliance - Agility **Integration - AI AppSec Assistants** - Stack Integration - Workflow Integration - Codebase Contextual Awareness **Testing** - Command-Line Tools - Manual Testing - Test Automation - Performance and Reliability **Testing** - Command-Line Tools - Manual Testing - Test Automation - Compliance Testing - Black-Box Scanning - Detection Rate - False Positives **Testing** - Manual Testing - Test Automation - Compliance Testing - Black-Box Scanning - Detection Rate - False Positives **Application** - Manual Application Testing - Static Code Analysis - Black Box Testing **Agentic AI - Interactive Application Security Testing (IAST)** - Autonomous Task Execution **Agentic AI - Vulnerability Scanner** - Autonomous Task Execution - Proactive Assistance **Agentic AI - Static Application Security Testing (SAST)** - Autonomous Task Execution ## Top Veracode Application Security Platform Alternatives - [Checkmarx](https://www.g2.com/products/checkmarx/reviews) - 4.2/5.0 (32 reviews) - [SonarQube](https://www.g2.com/products/sonarqube/reviews) - 4.4/5.0 (139 reviews) - [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews) - 4.6/5.0 (66 reviews)