• Home
  • Contrast Security Protect vs. Veracode

Contrast Security Protect vs Veracode comparison

Cancel
You must select at least 2 products to compare!
Contrast Security Logo

Contrast Security Protect

Read 3 Contrast Security Protect reviews
954 views|728 comparisons
100% willing to recommend
Veracode Logo

Veracode

Read 193 Veracode reviews
26,359 views|17,613 comparisons
89% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Contrast Security Protect vs. Veracode
March 2024
Executive Summary

We performed a comparison between Contrast Security Protect and Veracode based on real PeerSpot user reviews.

Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Contrast Security Protect vs. Veracode Report (Updated: March 2024).
Download the complete report
767,667 professionals have used our research since 2012.
Featured Review
ToddMcAlister
It provides us with more in-depth visibility into ongoing attacks.
Evan Gertis
Enables us to provide a certificate showing stakeholders and potential customers the proof that we take security...
My case is different from other individuals. I worked for a startup, so we had to find a way to capitalize on all the resources in Veracode. Larger... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The solution has excellent real-time capabilities.""Protect provides us with more in-depth visibility into ongoing attacks.""The product gives a few false positives. We get 99 percent true positives."

More Contrast Security Protect Pros →

"The most valuable feature of Veracode is the binary scan feature for auditing, which allows us to audit the software without the source code.""The policy reporting for ensuring compliance with industry standards and regulations is pretty comprehensive, especially around PCI. If you do the static analysis, the dynamic analysis, and then a manual penetration test, it aggregates all of these results into one report. And then they create a PCI-specific report around it which helps to illustrate how the application adheres to different standards.""This static analysis helps ensure a secure application rollout across all environments.""Developer Sandboxes help move scanning earlier within the SDLC.""For our rapid, secure DevOps cycle, we have integration of the Vericode API into our build tool, and Greenlight into our IDE.""We have such a wide variety of users for Veracode, including security champions, development leads, developers themselves, that the ease of use is really quite important, because we don't assume anything about what those people might already know, or need to know. It just makes it very useful for anyone who has to engage with it.""The installation was straightforward.""I can have quick results by just uploading compiled components."

More Veracode Pros →

Cons
"There's room for improvement in the initial setup.""Contrast Security Protect needs to improve integration.""Protect's reporting GUI is very basic. To get all statuses from the APIs, we needed to write our own KPI dashboard to provide reports."

More Contrast Security Protect Cons →

"One area for improvement is the navigation in the UI. For junior developers or newcomers to the team, it can be confusing. The UI doesn't clearly bundle together certain elements associated with a scan. While running a scan, there are various aspects linked to it, but in the UI, they appear separate. It would be beneficial if they could redesign the UI to make it more intuitive for users.""There should be more control for administrative users so that we can add and delete any functionality or module within the platform. We should not have to reach out to Veracode's customer support every time. We should be able to customize our modules.""Software developers are always thinking about the next big thing but lose sight of what's happening right now. If you have an idea for a feature request, you must submit it to be voted on by the Veracode community. I don't like this. No one will look at it unless enough people vote for it.""The area with the most room for improvement is the speed and responsiveness of the query, as it is usually very slow.""On-premise implementation is not available.""Security can always be improved.""Straightforward to set up, but the configuration of the rules engine is difficult and complicated.""Maybe the pipeline scanning doesn't support enough languages. It might only support Java and Python only, so that could be improved."

More Veracode Cons →

Pricing and Cost Advice
Information Not Available
  • "Its complexity makes it quite expensive, but it’s all worth it, with all the engineering in the background."
  • "The pricing is pretty high."
  • "The worst part about the product is that it does not scale at all. Also, microservices apps will cost you a fortune."
  • "I think licensing needs to be changed or updated so that it works with adjustments. Pricing is expensive compared to the amount of scanning we perform."
  • "It's worth the value"
  • "Pricing seems fair for what is offered, and licensing has been no problem. All developers are able to get the access they need."
  • "It can be expensive to do this, so I would just make sure that you're getting the proper number of licenses. Do your analysis. Make sure you know exactly what it is you need, going in."
  • "The licensing and prices were upfront and clear. They stand behind everything that is said during the commercial phase and during the onboarding phase. Even the most irrelevant "that can be done" was delivered, no matter how important the request was."

    • More Veracode Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
    See Recommendations
    767,667 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Contrast Security Protect?
    Top Answer:The product gives a few false positives. We get 99 percent true positives.
    Read all 3 answers   →
    What is your experience regarding pricing and costs for Contrast Security...
    Top Answer:Protect costs around $100,000 for a three-year license.
    Read all 2 answers   →
    What needs improvement with Contrast Security Protect?
    Top Answer:Contrast Security Protect needs to improve integration.
    Read all 3 answers   →
    Which gives you more for your money - SonarQube or Veracode?
    Top Answer:SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use… more »
    Read all 6 answers   →
    What do you like most about Veracode?
    Top Answer:The SAST and DAST modules are great.
    Read all 96 answers   →
    What is your experience regarding pricing and costs for Veracode?
    Top Answer:The product’s price is a bit higher compared to other solutions. However, the tool provides good vulnerability and database features. It is worth the money.
    Read all 66 answers   →
    Ranking
    32nd
    out of 74 in Application Security Tools
    Views
    954
    Comparisons
    728
    Reviews
    2
    Average Words per Review
    293
    Rating
    8.0
    2nd
    out of 74 in Application Security Tools
    Views
    26,359
    Comparisons
    17,613
    Reviews
    99
    Average Words per Review
    970
    Rating
    8.1
    Comparisons
    Also Known As
    Contrast Protect
    Crashtest Security , Veracode Detect
    Learn More
    Contrast Security
    Veracode
    Overview

    Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyberattacks, heralding the new era of self-protecting software. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate assessment and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has sensors that work actively inside applications to uncover vulnerabilities, prevent data breaches, and secure the entire enterprise from development, to operations, to production.

    Veracode is a leading application security platform that helps organizations to develop and deliver secure software. Veracode's solution provides comprehensive capabilities for static analysis, dynamic analysis, software composition analysis, and manual penetration testing.

    Veracode's static analysis solution scans source code for various security vulnerabilities, including common web application attack vectors, injection flaws, cross-site scripting, and insecure direct object references. Veracode's dynamic analysis solution simulates real-world attacks to identify vulnerabilities that may not be detectable by static analysis alone. Veracode's software composition analysis solution scans open-source and third-party components for known vulnerabilities. Veracode's manual penetration testing service is performed by experienced security professionals who use a variety of techniques to identify vulnerabilities in software applications.

    Many organizations, including Fortune 500 companies, government agencies, and startups, use Veracode's solution. Veracode's customers rely on Veracode to help them to improve the security of their software applications and to reduce the risk of data breaches and other security incidents.

    Here are some of the benefits of using Veracode:

    • Veracode provides capabilities for static analysis, dynamic analysis, software composition analysis, and manual penetration testing to help organizations identify and fix security vulnerabilities in their software applications early in the development process.
    • Veracode helps organizations reduce the risk of data breaches and other security incidents by identifying and fixing security vulnerabilities in their software application. 
    • Veracode helps organizations to comply with industry regulations. Many industries have regulations that require organizations to implement security measures to protect their customers' data. Veracode's solution can help organizations to comply with these regulations by providing them with the tools and resources they need to identify and fix security vulnerabilities in their software applications.
    Sample Customers
    Williams-Sonoma, Autodesk, HUAWEI, Chromeriver, RingCentral, Demandware.
    Manhattan Associates, Azalea Health, Sabre, QAD, Floor & Decor, Prophecy International, SchoolCNXT, Keap, Rekner, Cox Automotive, Automation Anywhere, State of Missouri and others.
    Top Industries
    VISITORS READING REVIEWS
    Financial Services Firm24%
    Computer Software Company16%
    Manufacturing Company9%
    Healthcare Company8%
    REVIEWERS
    Computer Software Company26%
    Financial Services Firm23%
    Insurance Company9%
    Comms Service Provider6%
    VISITORS READING REVIEWS
    Financial Services Firm18%
    Computer Software Company15%
    Manufacturing Company8%
    Government6%
    Company Size
    VISITORS READING REVIEWS
    Small Business18%
    Midsize Enterprise6%
    Large Enterprise76%
    REVIEWERS
    Small Business31%
    Midsize Enterprise20%
    Large Enterprise49%
    VISITORS READING REVIEWS
    Small Business17%
    Midsize Enterprise13%
    Large Enterprise70%
    Buyer's Guide
    Contrast Security Protect vs. Veracode
    March 2024
    Free Report: Contrast Security Protect vs. Veracode
    Find out what your peers are saying about Contrast Security Protect vs. Veracode and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    767,667 professionals have used our research since 2012.

    Contrast Security Protect is ranked 32nd in Application Security Tools with 3 reviews while Veracode is ranked 2nd in Application Security Tools with 193 reviews. Contrast Security Protect is rated 8.4, while Veracode is rated 8.2. The top reviewer of Contrast Security Protect writes "It provides us with more in-depth visibility into ongoing attacks". On the other hand, the top reviewer of Veracode writes "Helps to reduce false positives and prevent vulnerable code from entering production, but does not support incremental scanning ". Contrast Security Protect is most compared with SonarQube, Fortify on Demand, Snyk, Tenable.io Web Application Scanning and Sonatype Lifecycle, whereas Veracode is most compared with SonarQube, Checkmarx One, Snyk, Fortify on Demand and OWASP Zap. See our Contrast Security Protect vs. Veracode report.

    See our list of best Application Security Tools vendors.

    We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.