Compare Black Duck vs. Veracode Software Composition Analysis
Black Duck is ranked 3rd in Software Composition Analysis with 2 reviews while Veracode Software Composition Analysis is ranked 7th in Software Composition Analysis. Black Duck is rated 8.0, while Veracode Software Composition Analysis is rated 0. The top reviewer of Black Duck writes "Useful for determining the health of applications that contain open source components". On the other hand, Black Duck is most compared with WhiteSource, Veracode Software Composition Analysis and Sonatype Nexus Lifecycle, whereas Veracode Software Composition Analysis is most compared with Black Duck , Sonatype Nexus Lifecycle and JFrog Xray.
Most Helpful Review | |||
| Use Veracode Software Composition Analysis? Share your opinion. | ||
Quotes From Members
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Pricing and Cost Advice | |
Depending on the use case, the cost could range from $10,000 USD to $70,000 USD. | Information Not Available |
 Use our free recommendation engine to learn which Software Composition Analysis solutions are best for your needs. 390,810 professionals have used our research since 2012. | |
Ranking  | |
Views 8,632 Comparisons 6,555 Reviews 0 Average Words per Review 1,134 Avg. Rating N/A | Views 1,840 Comparisons 1,661 Reviews 0 Average Words per Review 0 Avg. Rating N/A |
Top Comparisons | |
 Compared 25% of the time.  Compared 17% of the time.  Compared 17% of the time. |  Compared 52% of the time. Compared 15% of the time.  Compared 12% of the time. |
Also Known As | |
| Blackduck Hub, Black Duck Protex, Black Duck Security Checker | Veracode SCA |
Learn | |
| Synopsys | Veracode |
Overview | |
Black Duck Hub is the leading platform for automated license compliance and open source security. Black Duck Hub helps security and development teams identify and mitigate open source-related risks across their application portfolio, while incorporating the functionality of Protex license compliance. | CA Veracode Software Composition Analysis (SCA) helps build an inventory of open source components to identify vulnerabilities, covering open source and commercial code. The CA Veracode Application Security Platform analyzes both proprietary and open source code in a single scan, providing visibility across the entire application landscape. CA Veracode helps to identify which applications in the organization are vulnerable. It supports the program's people, processes and technology by coaching engineers on secure coding practices, managing remediation and mitigation process, and discovering known and unknown vulnerabilities through its highly scalable SaaS platform. |
Offer | |
Learn more about Black Duck | Learn more about Veracode Software Composition Analysis |
Sample Customers | |
| CopperLeaf, ScienceLogic, Dynatrace, ClickFox, Siemens, Noser Engineering AG | Information Not Available |
Top Industries | |
Software R&D Company44% Comms Service Provider10% Manufacturing Company9% Financial Services Firm7% | Software R&D Company43% Comms Service Provider11% Government10% Retailer10% |
See also Black Duck Reviews, Veracode Software Composition Analysis Reviews, and our list of Best Software Composition Analysis Companies.
We monitor all Software Composition Analysis reviews to prevent fraudulent reviews and keep review quality high. We do not post
reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference
with LinkedIn, and personal follow-up with the reviewer when necessary.