Veracode Reviews

SeshagiriSriram
Real User
Vice President of Technology at Cogniphi Technologies Pvt Ltd
Jun 19 2019

How has it helped my organization?

Technically there is nothing wrong with Veracode. The only issue that we have here is uploading the code, the process of actually uploading and getting our results back. All of that is a little cumbersome.

What needs improvement?

Technically there is nothing wrong with Veracode. The only issue that we have is uploading the code, the process of actually uploading and getting our results back. All of that is a little cumbersome. One of the things that we have from a reporting point of view, is that we would love to see a graphical report. If you look through a report for something that has come back from Veracode, it takes a… more»

What other advice do I have?

I would strongly recommend doing an internal analysis first, before setting it across to Veracode to proceed and to use it more as a final verification point. My point is that Veracode is very good, and I would strongly recommend it. I have seen other solutions on the market and that's why I say: don't waste your time on other products, just get Veracode. I would rate it an eight out of ten. Not a… more»
Divakar Rai
Real User
Senior Solutions Architect at NessPRO Italy
Jun 12 2019

How has it helped my organization?

We were embracing Veracode as a process in our DevSecOps, although I have not personally used this solution for the past eight months.

What needs improvement?

This is not a very elaborate application. I think that the suggestions are between thirty-five and eighty percent accurate, with most cases being about seventy-five percent. Some of them are references where you have to go and determine whether they are direct threats, or not. At the point in time… more»

Which solution did I use previously and why did I switch?

I have used multiple tools similar to Veracode that integrate with the IDE.

What other advice do I have?

When it comes to DevSecOps, in the industry it is still under adoption. With the advent of the cloud and code being there, or on other public platforms, many people have embraced it or are in the process doing so. My advice for anybody interested in implementing this solution is to be really careful… more»

Veracode Questions

William Hayes
User at Securities America
May 21 2020
I am looking for pros and cons for the Checkmarx vs SonarQube, in particular regarding false positives tuning Sonarqube to reduce false positives without introducing false negatives.  I am also wondering if SonarQube could allow developers to delint their code before submitting it to SAST with… more»
JaeLee
User
Apr 24 2020
We are currently evaluating application security solutions. What is the biggest difference between Veracode and Checkmarx? Which would you recommend?  Thanks! I appreciate the help. 
Russell RothsteinJaeLee, check out our comparison page here of Veracode vs Checkmarx… more»
Vincent HuCheckmarx can be deploy on private , Veracode only support the Saas Model . But… more»
Volker KoenigsbuescherVeracode is very new in DAST and IAST, Checkmarx is offering that since longer… more»
Almir Menezes
Sales Director at a tech company with 1-10 employees
Mar 23 2020
I have more than 20 years of experience in IT, having worked in technical, commercial and business areas. I am currently researching Veracode and Checkmarx. What is the total cost of ownership for the two? Are there big differences between them? Thanks! I appreciate your help. 
Miriam Tover
Content Specialist
IT Central Station
Mar 16 2020
If you were talking to someone whose organization is considering Veracode Software Composition Analysis, what would you say? How would you rate it and why? Any other tips or advice?
Miriam Tover
Content Specialist
IT Central Station
Mar 16 2020
How do you or your organization use this solution? Please share with us so that your peers can learn from your experiences. Thank you!
Miriam Tover
Content Specialist
IT Central Station
Mar 16 2020
Please share with the community what you think needs improvement with Veracode Software Composition Analysis. What are its weaknesses? What would you like to see changed in a future version?
Miriam Tover
Content Specialist
IT Central Station
Mar 16 2020
Hi, We all know it's really hard to get good pricing and cost information. Please share what you can so you can help your peers.
Miriam Tover
Content Specialist
IT Central Station
Mar 16 2020
Hi Everyone, What do you like most about Veracode Software Composition Analysis? Thanks for sharing your thoughts with the community!
Green Day
User
Feb 05 2020
We are currently researching application security solutions. From your experience, would you recommend Veracode? What are some of your use cases?  Thanks! I appreciate the help.
SanthoshKumar3I would recommend Veracode. Our uses cases included removing vulnerable code… more»
Miriam Tover
Content Specialist
IT Central Station
Hi Everyone, What advice do you have for others considering Veracode? Thanks for sharing your thoughts with the community!
Julia Frohwein
Content and Social Media Manager
IT Central Station
Hi Everyone, What is your primary use case for Veracode? Thanks for sharing your thoughts with the community!
SeshagiriSriramWe used it for performing security checks. We have many Java applications and… more»
Miriam Tover
Content Specialist
IT Central Station
Hi Everyone, What needs improvement with Veracode? Thanks for sharing your thoughts with the community!
it_user842937From a technical standpoint, I'm pretty happy with everything. The one thing I'd… more»
Elina Petrovna* Management of false positives * Agile best practices: Violation detection. *… more»
Michael Stricklen* More timely support for newer languages and framework versions. * Integration… more»
Miriam Tover
Content Specialist
IT Central Station
Hi Everyone, What do you like most about Veracode? Thanks for sharing your thoughts with the community!
Julia Frohwein
Content and Social Media Manager
IT Central Station
Hi Everyone, What is your experience regarding pricing and costs for Veracode? Thanks for sharing your thoughts with the community!