Kiuwan Insights vs Veracode comparison

Kiuwan Insights
Read 2 Kiuwan Insights reviews
  • 112 Views
  • 61 Comparison Views
0% willing to recommend
Veracode
Read 194 Veracode reviews
  • 5,716 Views
  • 3,800 Comparison Views
90% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Kiuwan Insights and Veracode based on real PeerSpot user reviews.

Find out in this report how the two Static Code Analysis solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Kiuwan Insights vs. Veracode Report (Updated: May 2024).
Buyer's Guide
Kiuwan Insights vs. Veracode
May 2024
Download the complete report
Helped 787,061 peers since 2012
 

Categories and Ranking

Kiuwan Insights
Ranking in Static Code Analysis
12th
Average Rating
4.0
Number of Reviews
2
Ranking in other categories
No ranking in other categories
Veracode
Ranking in Static Code Analysis
1st
Average Rating
8.2
Number of Reviews
194
Ranking in other categories
Application Security Tools (2nd), Static Application Security Testing (SAST) (2nd), Container Security (4th), Software Composition Analysis (SCA) (2nd), Penetration Testing Services (3rd), Application Security Posture Management (ASPM) (2nd)
 

Market share comparison

As of June 2024, in the Static Code Analysis category, the market share of Kiuwan Insights is 1.7% and it increased by 31.0% compared to the previous year. The market share of Veracode is 70.7% and it increased by 360.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Code Analysis
Unique Categories:
No other categories found
Application Security Tools
10.1%
Static Application Security Testing (SAST)
8.1%
 

Featured Reviews

AH
Feb 19, 2021
Pricing and code capacity need improvement
We test the code and use Kiuwan Insights to analyze where we have issues in the code I have found the interface to be perfect. The solution is great, but improvement is needed in the number of lines of code allowed, that is the capacity. Pricing can be improved as well.  I researched Veracode…
Read full review
Deepak Naik - PeerSpot reviewer
Mar 18, 2024
It's a solution our customers trust, so when we share the report they know we've done our due diligence
The main benefit of Veracode is that we can deliver better, more secure software. Our customers also trust Veracode. When we share the Veracode report, they see that we have gone through all the due diligence. Veracode aligns with SOC, ISO, and other types of certifications. It helps with compliance that Veracode has all these reporting formats. The solution provides visibility at every stage of development. We have automated almost everything through integration with Jenkins. As soon as the developer commits, it triggers the static scan for the main branches. We don't need to trigger the scan manually or do a follow-up to see if it's done scanning. The solution saves time by reporting issues and recommendations that help developers fix the reported vulnerabilities faster. I estimate that it improved developer productivity by about 10 percent.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I have found the interface to be perfect."
"Can help in reducing the number of false positives."
"We used it for performing security checks. We have many Java applications and Android applications. Essentially it was used for checking the security validations for compliance purposes."
"The integration of static testing with our Azure DevOps CI pipeline was easy."
"Ours is a Java-based application and Veracode can detect vulnerabilities in both Angular, which is used for the UI, and also in the backend code, which includes APIs and microservices."
"One thing that I like about Veracode is that it is quite a good tool for dynamic application testing."
"Veracode is a valuable tool in our secure SDLC process."
"The solution can scan old databases and old code written 20 years back."
"The innovative features offered by Veracode are excellent."
"It has the ability to statically scan your source code before it goes to production. It can be scanned within your testing or development environment, and that is very useful. And good explanations of all the vulnerabilities in your source code help take care of those issues in future code implementation as well."
More Veracode pros
 

Cons

"The solution has issues detecting intrusive methods."
"The solution is great, but improvement is needed in the number of lines of code allowed, that is the capacity. Pricing can be improved as well."
"We connected with Veracode's support a couple of times, and we got a different answer each time."
"The support team could be more responsive, and the dependency of users on the support team is too high and should be reduced."
"We have encountered occasional issues with scalability."
"The technical support service has room for improvement."
"It will be beneficial for developers if Veracode Greenlight includes Python."
"In the future, I would like to see the RASP capability built-in."
"I would like Veracode to add more language support."
"Security can always be improved."
More Veracode cons
 

Pricing and Cost Advice

"Pricing can be improved as well."
"The licensing and prices were upfront and clear. They stand behind everything that is said during the commercial phase and during the onboarding phase. Even the most irrelevant "that can be done" was delivered, no matter how important the request was."
"It is an expensive solution, but it's the best solution available on the market. If you want something at the top, you have to pay a bit more than the average."
"The pricing for Veracode is high, making it difficult for beginners to afford."
"It is pricey. There is a lot of value in the product, but it is a costly tool."
"If you're licensing, and you're looking at licensing models, you might want to ask Veracode about their microservice, depending on the company. If you are a microservice architecture, I would suggest asking them about their microservice pricing. I would suggest that you evaluate that with your code and their other licensing model, which is like a lump sum in size of artifacts, and just make sure that you price that out with them, because there might be some tradeoffs that can be made in price."
"Negotiate some, but their prices are reasonable."
"Depending on the number of users, my company makes payments toward the solution's licensing costs."
"Veracode's pricing is competitive."
More Veracode pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Static Code Analysis solutions are best for your needs.
See recommendations
787,061 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Financial Services Firm
18%
Computer Software Company
15%
Manufacturing Company
8%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

Ask a question
Earn 20 points
Which gives you more for your money - SonarQube or Veracode?
SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use...
See all answers
What do you like most about Veracode?
The SAST and DAST modules are great.
See all answers
What is your experience regarding pricing and costs for Veracode?
The product’s price is a bit higher compared to other solutions. However, the tool provides good vulnerability and database features. It is worth the money.
See all answers
 

Comparisons

No data available
SonarQube vs Veracode Logo
SonarQube vs Veracode
Compared 26% of the time
Checkmarx One vs Veracode Logo
Checkmarx One vs Veracode
Compared 14% of the time
Fortify on Demand vs Veracode Logo
Fortify on Demand vs Veracode
Compared 7% of the time
Snyk vs Veracode Logo
Snyk vs Veracode
Compared 6% of the time
Fortify Static Code Analyzer vs Veracode Logo
Fortify Static Code Analyzer vs Veracode
Compared 4% of the time
More Veracode Competitors
 

Product Reports

Buyer's Guide
Static Code Analysis
May 2024
Kiuwan Insights reportDownload Kiuwan Insights product report
Buyer's Guide
Veracode
May 2024
Veracode reportDownload Veracode product report
 

Also Known As

Insights SCA
Crashtest Security , Veracode Detect
 

Learn More

Kiuwan
Veracode
 

Overview

Kiuwan Insights supports the continuity and integrity of open source management with a complete multi-technology solution that seamlessly integrates with key SDLC tools.

With Kiuwan Insights, you can identify and manage:

vulnerabilities,

compliance, and

operational risk

that may arise from using open source components.

Open source components are a significant and important part of commercial software today. Yet the use of these components introduces the risk of security vulnerabilities, as well as a need to ensure proper licensing and adherence to policies.

Automation is an essential strategy for detection of open source components and security vulnerabilities, compliance analysis, and policy enforcement.

Veracode is a global leader in Application Risk Management for the AI era. Powered by trillions of lines of code scans and a proprietary AI-generated remediation engine, the Veracode platform is trusted by organizations worldwide to build and maintain secure software from code creation to cloud deployment. Thousands of the world’s leading development and security teams use Veracode every second of every day to get accurate, actionable visibility of exploitable risk, achievereal-time vulnerability remediation, and reduce their security debt at scale. Veracode is a multi-award-winning company offering capabilities to secure the entire software development life cycle, including Veracode Fix, Static Analysis, Dynamic Analysis, Software Composition Analysis, Container Security, Application Security Posture Management, and Penetration Testing.

Learn more atwww.veracode.com, on theVeracode blog, and onLinkedInandTwitter.

 

Sample Customers

Information Not Available
Manhattan Associates, Azalea Health, Sabre, QAD, Floor & Decor, Prophecy International, SchoolCNXT, Keap, Rekner, Cox Automotive, Automation Anywhere, State of Missouri and others.
Buyer's Guide
Kiuwan Insights vs. Veracode
May 2024
Free Report: Kiuwan Insights vs. Veracode
Find out what your peers are saying about Kiuwan Insights vs. Veracode and other solutions. Updated: May 2024.
DOWNLOAD NOW
787,061 professionals have used our research since 2012.
See our Kiuwan Insights vs. Veracode report.
See our list of best Static Code Analysis vendors.

We monitor all Static Code Analysis reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.