Veracode Competitors and Alternatives

The top Veracode competitors are
  • SonarQube
  • Fortify on Demand
  • Checkmarx
  • IBM Security AppScan
  • OWASP Zap
  • Kiuwan
  • Coverity
  • Qualys Web Application Scanning
Read reviews of Veracode competitors and alternatives
SonarQube Logo
SonarQube
Technicae22f
Real User
Technical Architect and Software Engineer at a tech services company
Sep 12 2017

What is most valuable?

SonarQube is not valuable because of the information it gives it. We can gather that same information from several other tools as well. It is the way the information is presented... more»

How has it helped my organization?

Individual developers are more concerned about the quality of their work when they see their results in the big picture.

What's my experience with pricing, setup cost, and licensing?

Price is high and only worth it if your organization has hundreds of developers.

Which other solutions did I evaluate?

We used the same tests, but with every developer running them individually. Now management can also get a picture of the quality assurance.
Racardo Perez
Real User
Chief information with 5,001-10,000 employees
Apr 20 2017

What is most valuable?

We are currently using it in the integration of our agile process so we can find any breaches in the apps while they're in the development process. We can then fix breaches before... more»

How has it helped my organization?

Before we had this solution, our security team was doing manual reviews with the scripts. This would take us a lot of work hours and a lot of people were involved in the process.... more»

What needs improvement?

We are moving a lot into mobile. While the solution does have a lot of functionalities in mobile, we are trying to expand it more aggressively. We would like to see a check in the... more»

What other advice do I have?

At the beginning, you need to know the reach and what you are expecting. The solution is not going to be a silver bullet that will fix everything in your app. You have to have a... more»
srdirect395523
Vendor
Sr. Director, Cloud Platform Engineering at a tech vendor with 5,001-10,000 employees
Jun 30 2017

What is most valuable?

We’re a Linux shop and Qualys gave us good Linux vulnerability scanning; no experience with it on MSFT products. It... more»

How has it helped my organization?

The biggest benefit was integrating Qualys scanning into our CI/CD pipeline to vulnerability-scan new custom machine... more»

What needs improvement?

The licensing and user permissions are a little wonky for a DevOps team to use, probably because it’s traditionally an... more»

What's my experience with pricing, setup cost, and licensing?

The “bring your own licenses” model for the virtual appliance isn’t what you might think, so get a clear explanation up... more»

Which other solutions did I evaluate?

Don’t know what, if anything, preceded Qualys at Symantec.

What other advice do I have?

My team was responsible for operating the Symantec development hybrid cloud (about 6K servers in four DCs and multiple... more»

Sign Up with Email