4 out of 5.0, Reviewed Jun 15, 2016
Disappointed with limited ability to ID SQL injection flaws.
Beware of SQL injection flaw issue.
SQL injection flaw issue.
Better SQL injection detection.
Need better SQL injection flaws.
5 out of 5.0, Reviewed Jun 15, 2016
Veracode provides us with a quick, accurate, and details on security issues found in new application development.
Automated process to access the developers votes.
4 out of 5.0, Reviewed May 26, 2016
I have used the tools from all the major application security vendors, using any of the tools is great improvement in VS manual or limited testing. Veracode is really strong in SAST, customer service and has improved its ability to integrate within the development environment. This space is changing rapidly and improving constantly. I would say the number #1 differentiator of any of the SAST tools is how closely they integrate with your development environment. Unlike most traditional security tools, SAST tools really need to integrate closely with the development community, not the security community.
Partner with development.
We need to finalize the tools integration with the development environment.
5 out of 5.0, Reviewed Dec 2, 2015
Willingness to work with us on all issues especially in the beginning, and the ease of use.
Do your research and get Veracode to do a trial PoC. We were unsure until we used the product.
Ease of use to scan when we do changes and the ability to do a review with Veracode when we are getting unexpected results.
Did not support the latest version of ColdFusion.
We primarily use this to scan ColdFusion code and it took Veracode a while to update their product to handle the latest version of CF.
No, this was a great experience and the folks at Veracode were extremely helpful.
Took a little time to get to the process, but now that we use it all the time using this has been seamless.
1 of 1 peer(s) found this review helpful.
4 out of 5.0, Reviewed Dec 1, 2015