Our Customers

Don’t take our word for it……

Reviews featured on  TrustRadius logo

We used this tool to shift the security to left, and tried to make the process as automate as possible. The best use case of this tool is that it can be fit anywhere with flexible plugins at different stages of SDLC. Even the support is very good and... 

Veracode is well suited for development applications that can be made more secure right from the beginning 

One positive impact to our business over the period of about one year was the number of flaws being discovered went down significantly. 

Veracode's platform has had a very positive impact on our security posture, paving the path towards having coverage monitored automatically on hundreds of internal applications throughout the development lifecycle. 

The meager rate of false positives is one of the most critical factors of the product. 

It has definitely improved the security of our development process. Making it more of a consideration rather than an after thought because initially, when it was just an after thought, we found a long of issues to resolve. Now, being more proactive o... 

Veracode has helped a lot in securing our development process as the Veracode Greenlight IDE helps us to find security vulnerabilities at very early stages and fixing any finding at this stage reduces a lot of cost, manual efforts and the risks assoc... 

To be SoC2 and ISO compliant and also to protect our SaaS, we are using this tool to scan every component that we build for SA and SCA. 

I greatly appreciate that the Veracode platform is incredibly versatile, and helps us get a more holistic view of our security profile. When we first started using it, within minutes it was easy to view where we should focus our fixes. Looking back,... 

We wanted a secure scan method for static, dynamic and also manual PEN testing. We wanted to make sure that we could "shift left" with our development and have security scans done at the beginning of the development process. Not at the end when it is... 

Allows smaller team to accomplish a large amount of code review in a short amount of time 

The platform lets us quickly demonstrate to external auditors that we're continuously monitoring our platform. 

Tech leads have more time, because the analysis is shared between team members. This also help discuss and share knowledge on specific part of the code and best practices. 

IDE integration and security testing are the best feature to identify and address security vulnerabilities in my software applications. 

The Jenkins automation is a lifesaver for Static scans and SCA since it gets us out of the business of uploading builds manually. 

The application has efficient set of coding tools that is not available in other software development systems. It has modern data management tools that tracks the software production lifecycle closely to ensure there is excellent end product. 

Working the Vericode tools into an automated build cycle allows continual focus on the security vulnerabilities within your applications. 

Having detailed reports generated by Veracode that highlights code vulnerabilities as well as security issues with third party libraries are features that are important in our industry. 

Veracode will dive deep into the code and points out the flaws which are dangerous to both the organization and the customer using it. 

It's turned me to be a more security-focused developer 

Veracode helps us to check the security of applications as well as third-party libraries and to uncover vulnerabilities. 

Veracode helps our clients to deliver secure applications in an agile way in less time and focus the efforts of developers to work on real flaws, 

Veracode is thorough in its analyses, in its database of flaws, in its methodology of uncovering vulnerabilities, and in assisting the end user in resolving those vulnerabilities. 

As a Developer, I have to make sure that the System we are building is safe. Therefore Veracode helped a lot by scanning our Code for vulnerabilities. 

We rely on Veracode's products and services to ensure that we maintain the level of trust and confidence that our clients give to us. 

Veracode provides us with the ability to tell our customers we are security oriented and always trying to secure our software. 

We use Veracode to perform static and dynamic analyses of applications to identify and remediate security flaws as early as possible in the application lifecycle. 

It is our main application security code analysis tool and has been built into all of our processes, automation, and developer pipelines and reporting tools. 

Until we meet the standards as per the Veracode scan, our application code will not be approved. By using Veracode we can learn many new things about software development and coding standards. We can use those in the near future to maintain industry... 

Veracode is very useful for security remediation and it reviews the flaws line by line with proper module selections 

It enables us to stay on top of security flaws within our software development and provides valuable information to the development teams to enable them to understand and address any identified flaws. In addition, the ability to schedule a technical... 

Overall, Veracode is one of the best, if not the best, products for application security out in the market. It is a great platform for keeping track of flaws and being able to report on them. Their support services and program management services are... 

One of the things we really loved about Veracode was the level of detail provided to identify issues and help resolve them. 

Use of this platform allows us to better control vulnerabilities and demonstrate to clients that we take our security posture seriously 

It can really bring efficiency in code quality, reduce code rework , reduce number of defects in production. It can be also used to include some compliance specific rules which can actually act as a tailgate to stop the non-compliance code getting de... 

Veracode is paying for itself (though through a different cost category). Our Development costs are going down and releases are getting quicker and more agile. 

Well suited for compliant organizations that are agile and fast-moving in today's markets. We use Veracode for both static and dynamic scanning, it provides great insight for the development and security teams. As Director of Security, it is a key to... 

Veracode excels in providing the required information about various languages that are supported by it. 

Veracode is very good for applications where security must be 100%, as it will find a large amount of vulnerability and false positives that can be minimized. It also allows integrations with widely used tools such as Jira and Jenkins, allowing the l... 

Through their portfolio of products, one can make sure every application is free from any vulnerabilities at the earliest in its development lifecycle. 

Great for teaching teams to think about security as part of their engineering culture, and not as an afterthought 

ROBUST CODE QUALITY AND RELEASE TO PRODUCTION WITH ZERO ISSUES 

We currently have 25+ applications being scanned every 6 weeks or so and we have been able to fix and identify all the issues with great ease. 

Veracode is truly the best AppSec tool available. 

Veracode is the most well rounded security tool I have used to scan both dynamic and static code in my career. Scanning as a service means I don't have to setup my own infrastructure and application, or deal with upgrades. 

I think this is the best tool to identify problems in code and this also helps to reduce flaws in code which really makes the application robust and the client also feels confident while using it. 

It's well-suited where you want a best-in-class vendor for static and dynamic security testing who can also perform additional services such as penetration testing. 

Improved our confidence in the security of our systems. 

We are confident now that our application is secure and our customer's faith in us is reinforced. 

we were pleased with quality and amount of findings, ease of use, and reporting capabilities. 

slide 1 to 3 of 3
 

Customer industry recognition and awards

video thumbnail

video thumbnail

video thumbnail

Industry
No results found
Financial
Government
Healthcare
Other
Retail & ECommerce
Software & Technology
Product
No results found
Dynamic Analysis (DAST)
eLearning
Full Platform
Penetration Testing
Security Labs
Software Composition Analysis (SCA)
Static Analysis (SAST)
Request Demo