Veracode Competitors and Alternatives 2019

Get our free report covering SonarQube, Micro Focus, and other competitors of Veracode.
311,143 professionals have used our research since 2012.
Read reviews of Veracode competitors and alternatives
Anonymous User
Real User
Director Of Product Cyber Security at a aerospace/defense firm with 10,001+ employees
Mar 22 2018

What is most valuable?

For me, as a manager, it was the ease of use. Inserting security into the development process is not normally an easy project to do. The ability... more»

How has it helped my organization?

It helps the organization the way we process the entire thing. It has actually helped a little bit with the speed of delivery too, which was... more»

What needs improvement?

I think being able to search across more containers, especially some of the docker elements. We need a little tighter integration there. That's... more»

Which solutions did we use previously?

Here I have an unfair advantage. I came out of a large security company, and because of my experience and the fact that we had a need, I looked... more»

What other advice do I have?

In terms of rating it, because I haven't had it installed long enough, and we haven't finished all the integration because of the Professional... more»
Gustavo_Gonzalez
Real User
Technical Program Manager at a engineering company with 10,001+ employees
Feb 26 2017

What is most valuable?

* The export feature and presentation of the results. * The ability to track the vulnerabilities inside the code... more»

How has it helped my organization?

For manual code testing, Checkmarx has been very helpful discarding false positives, filtering and removing a lot of... more»

What needs improvement?

The lack of ability to review compiled source code. It would then be able to compete with other scanning tools, such as... more»

What's my experience with pricing, setup cost, and licensing?

Checkmarx is not a cheap scanning tool, but none of the security tools are cheap. Checkmarx is a powerful scanning... more»

Which solutions did we use previously?

I used to work mostly on checking the source code manually, and estimated the time of completion counting the lines of... more»

What other advice do I have?

I recommend to have a live session with the marketing team, to have a demo and to track all your doubts before... more»
Jeff Ingalls
Real User
Automation Tool Specialist at a comms service provider with 1,001-5,000 employees
Aug 07 2018

What is most valuable?

* The issues it identifies. * How easily it ties into our continuous integration pipeline. * It is very good at identifying technical debt.

How has it helped my organization?

* Higher code quality. * Faster to market. * Less errors.

What needs improvement?

As far as code quality goes, I like it. It doesn't seem to do well when it comes to vulnerabilities on the security side. It may be that we... more»

What's my experience with pricing, setup cost, and licensing?

The price point on SonarQube is good.

What other advice do I have?

We are looking at using another product to compliment it for security reasons. Most important criteria when selecting a vendor: * Usability of... more»
Anonymous User
Consultant
Technical Lead at a tech services company with 10,001+ employees
May 10 2017

What is most valuable?

* Scan wizard: for configuring large scans * Audit workbench: for on-the-fly defect auditing * CLI: to integrate the... more»

How has it helped my organization?

Security defects are captured early in the lifecycle and fixed quicker. Usage of Fortify has made developers more aware... more»

What needs improvement?

.NET code scanning is still dependent on building the code base before running any scan. Also, it's dependent on an IDE... more»

What's my experience with pricing, setup cost, and licensing?

Buying a license would be feasible for regular use. For intermittent use, the cloud-based option can be used (Fortify... more»

Which solutions did we use previously?

I did not previously use any product for static application security.

What other advice do I have?

If you are already using HPE tools and services such as ALM, then Fortify is a good option, as it provides... more»
Get our free report covering SonarQube, Micro Focus, and other competitors of Veracode.
311,143 professionals have used our research since 2012.

Sign Up with Email