2017-11-26 07:43:00 UTC

What is your primary use case for Veracode?


Hi Everyone,

What is your primary use case for Veracode?

Thanks for sharing your thoughts with the community!

Guest
3636 Answers

author avatar
Top 5LeaderboardReal User

We used it for performing security checks. We have many Java applications and Android applications. Essentially it was used for checking the security validations for compliance purposes.

2019-06-16 07:23:00 UTC
author avatar
Top 5Consultant

Our primary use case for this solution is application security.

2019-06-11 11:10:00 UTC
author avatar
Top 5LeaderboardReal User

I have used this solution in multiple projects for vulnerability testing and finding security leaks within the code.

2019-06-11 11:10:00 UTC
author avatar
Consultant

Our primary use case of this solution is for static and dynamic analysis along with the source gear for the third party dependency (not IDM). We were looking into actually moving towards IDM, but that's the extent of my knowledge. They are licensed as two separate products. They're part of the same platform, but they are licensed separately. We have Veracode, Veracode Developer Training, Veracode Software Composition Analysis, and SourceClear. SourceClear and SDA are pretty much the same. They just support different languages. Veracode as a whole, the top option, is the one that includes everything.

2019-05-23 06:10:00 UTC
author avatar
Real User

We use Veracode to scan custom-developed code for flaws.

2018-11-12 09:12:00 UTC
author avatar
Vendor

We use it for security scanning of SaaS and mobile software that we develop: one server-side and two mobile applications. Most customers require SAST and DAST scanning in order to purchase.

2018-11-12 09:12:00 UTC
author avatar
Real User

We use it for static checking.

2018-11-01 11:57:00 UTC
author avatar
Top 20Real User

* Scanning web-facing applications for potential security weaknesses. * Helping to document the introduction of technical debt in our code bases.

2018-10-11 01:43:00 UTC
author avatar
Consultant

Static application security testing, which is the primary use case. There were different web applications which were scanned using this tool.

2018-10-10 11:01:00 UTC
author avatar
User

I use Veracode to run scans on .NET applications, web applications and Windows/fat form applications. I also use it to make deployments in three-tier environments: the application server tier, web server tier and the database tier.

2018-09-01 11:52:00 UTC
author avatar
Real User

Application security scanning.

2018-07-03 06:10:00 UTC
author avatar
User

We are planning on introducing a static code analysis tool to support a DevOps effort in our environment. The objective of the solution is to allow the team to identify vulnerabilities in the source code and improve the hygiene of the developed code before deployment.

2018-07-02 10:13:00 UTC
author avatar
Real User

SAST vulnerability scanning. Veracode is embedded in our release pipeline.

2018-05-23 10:30:00 UTC
author avatar
Real User

SAST. We have not yet integrated it into our software development lifecycle as it doesn't have the feature that enables us to integrate it with our repository.

2018-05-16 08:31:00 UTC
author avatar
Top 5Real User

C++ financial application acting as hub for my academic accounting system. Application, which my institution partially owns, was analyzed after just having compiled the code. This happens seldom in academic software. It does software composition analysis, discovering open source software weaknesses.

2018-05-04 18:03:00 UTC
author avatar
Real User

Dynamic and static code analysis.

2018-05-02 07:27:00 UTC
author avatar
Real User

Application development and secure code development.

2018-04-12 05:42:00 UTC
author avatar
Real User

Scanning for code security vulnerabilities within our company's products.

2018-04-11 10:47:00 UTC
author avatar
Real User

We test each major release of our software using Veracode static and dynamic testing. We also do manual penetration testing annually.

2018-04-11 10:47:00 UTC
author avatar
Real User

Certifying the application security of my SAS-based application code base.

2018-04-11 10:47:00 UTC
author avatar
Consultant

Provides static code analysis of the customers' applications from all industries. It includes any type of code and scripts, but mostly Java, .Net, C++, and C# environments.

2018-04-09 13:11:00 UTC
author avatar
Real User

To certify that we have valid code, and that the developers are working with valid structures and writing good code.

2018-03-28 12:05:00 UTC
author avatar
Real User

We use it to assess or do security inspections of our software that we produce or assemble. We have a very large portfolio of software across our enterprise. The Veracode system is a platform that scales with the dynamics of our organization. We have people that are in many locations, in the US and abroad. The fact that the Veracode platform is essentially a cloud-based platform, that makes it scalable.

2018-03-28 12:05:00 UTC
author avatar
PopularReal User

Security scanning of the applications, of software that my company built.

2018-03-22 09:39:00 UTC
author avatar
Real User

Security scanning.

2018-03-20 11:53:00 UTC
author avatar
Real User

The primary use is as a static analysis tool. But we also use Greenlight and dynamic, and we're currently having a manual penetration test.

2018-03-15 07:51:00 UTC
author avatar
Real User

We test two mission-critical web applications (C# Web forms).

2018-03-14 08:56:00 UTC
author avatar
Real User

Application security management.

2018-03-13 06:59:00 UTC
author avatar
Real User

Static code analysis for internally developed critical systems.

2018-03-11 06:55:00 UTC
author avatar
Real User

Static code scan.

2018-03-11 06:55:00 UTC
author avatar
Real User

Dynamic and static scanning.

2018-03-08 09:23:00 UTC
author avatar
Real User

We use it for a lot of things and they're all primary: SAST, DAST, and Greenlight.

2018-03-08 09:23:00 UTC
author avatar
Real User

To have a third-party analyze our code and make recommendations from a security perspective.

2018-03-07 09:02:00 UTC
author avatar
User

We are Veracode partners/distributors in Quito, Ecuador. At this moment, I am reviewing the solution.

2018-01-15 19:17:00 UTC
author avatar
Real User

Software security, static code scanning. It has performed very well.

2017-11-26 07:43:00 UTC
Learn what your peers think about Veracode. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
418,116 professionals have used our research since 2012.