Buying Intelligence
for Enterprise Technology

Reviews, Discussions, and Advice from Real Users

Recent reviews

Real users share their stories. No fake reviews.
Rishabh Gandhi - PeerSpot reviewer
Can be used to find any threats or vulnerabilities inside a user’s environment
Splunk Enterprise Security has a learning curve that needs to be improved. I have seen users struggle with Splunk just because of the language they've used to create it. I've recently started working for the past three months on Sentinel. The same thing happens with Sentinel, where you select certain things, and it will create a query for you. It would be great if I could have a certain dialogue box in Splunk that uses innovative AI tools like ChatGPT, which are available now in the tech department. If a user is struggling, they can just ask an AI tool what they are trying to do with a query, and then it can suggest how a query can be written for a particular user. It can help in a way to understand the context of what the user is trying to write, which will be very helpful for ongoing operations. Even if users have zero knowledge, they can get comfortable with Splunk much more easily if an AI tool helps them write a query or search for any indexes or data models. It will be able to give more context to the user regarding how they should approach the query. This can be done using AI tools like ChatGPT, which will understand the context of what the user is trying to approve and give suggestions based on it.
Robert Hood - PeerSpot reviewer
Great SAST, good DAST, and helps save a significant amount of time
From what we have seen of Veracode's SCA offering, it is just average. The SBOM is adequate, but it's essentially the same as what everyone else is doing. In terms of SCA, they are about average compared to other systems. Therefore, I would like to see some improvements. SAST, DAST, and SCA in a single pane of glass would be a good upgrade to Veracode. We are a Jira and Confluence shop and I would like to have a really good integration with those tools. We have a ticketing system that not too many companies have ever heard of. In fact, I had never heard of it before coming here. Instead of using a well-known industry standard like ServiceNow, we use a ticketing system called Cherwell, which also has an open API. Having an API for the ticketing system would be really beneficial. I would prefer if Veracode offered more options for licensing, such as a pipeline or project license instead of a user license. Currently, I have around seven hundred users, but I manage fewer projects. Therefore, I believe it would be more beneficial and efficient for me if Veracode could adopt a project-based pricing model. In reality, I have multiple teams working on various projects simultaneously. Pricing based on the number of projects I have up and running would be more suitable for my needs compared to the number of developers working on a particular project. One thing that I would like to be able to do is to receive a daily summary of the emails I currently receive. With numerous ongoing projects, constant scanning occurs, resulting in a high volume of emails about what is being processed. I believe it would be helpful if Veracode could create a daily summary of these emails. This way, I can easily track the number of actual emails I receive without having to go through each one individually. As of now, I already have 65 emails from Veracode, specifically regarding the processes that ran today.
Nikolay Dimitrov - PeerSpot reviewer
Supports auto-scaling for mobile users and provides the ability to create custom threat signatures
It can be improved if some customers want to use Prisma Access only for web traffic. Currently, it is a bit limited. Zscaler works better for web traffic. Zscaler's agent application on your computer can configure the proxy settings automatically, whereas Palo Alto's GlobalProtect agent is only a VPN solution. You can't use it also as a secure gateway agent to force the computer to have the settings to send the data to Prisma Access. They suggest using other techniques to force the computer to use Prisma Access for a secure web gateway solution. So, Zscaler is more like a secure web gateway, and Prisma Access is more like a full VPN solution. I see the limitations of both vendors. Palo Alto needs to improve the GlobalProtect agent to work as a secure web gateway agent, not only as a VPN agent because some companies would want only a secure gateway. They wouldn't want a full VPN. So, Palo Alto has to make the VPN agent work as a secure web gateway agent for those customers who want only the secure web gateway solution. Other vendors' agents, including ForcePoint which I don't like at all, can do that. One feature that I find missing in Prisma Access, as well as Palo Alto firewalls, is that they can't insert the 644 header. I want to be able to see the IP address of the users basically. My understanding is that almost no firewall can do this. It is not only Palo Alto, but it would be good to have this feature. The only vendor that I know can insert it is FortiGate, but with them, many other things don't work.

Want to share your own feedback on tech products?

Join 757,000 enterprise tech professionals sharing advice with peers

Real, Relevant Reviews

Real, Relevant Reviews

Every reviewer is verified as a real user of the product within the last 12 months. If we aren’t sure it’s real, we won’t publish it.
The Full Picture

The Full Picture

At an average of 600 words per review, our reviews are in-depth and will always include both pros and cons so that buyers can make an informed decision.
A Community of Experts

A Community of Experts

PeerSpot is about more than reviews - users can ask for and share advice with peers throughout their buying process.

We also bridge the gap between vendors and buyers

PeerSpot helps vendors reach buyers through the voice of their customers. We help vendors capture and leverage the authentic product feedback that users want to see when they’re conducting product research and due diligence.

Popular Categories

Popular Questions in our Community

Application Performance Monitoring (APM) and Observability
Ruxit [EOL]
Oct 12, 2023
it_user880551 - PeerSpot reviewer
Mobius Content Services Platform
Sep 28, 2023
Shibu Babuchandran - PeerSpot reviewer
Real User
Application Security Tools
Security Information and Event Management (SIEM)
Information Security and Risk Consulting Services
Oct 20, 2023
Oct 31, 2023