"There's a lot of flexibility and there are a lot of configuration options."
"From an academic point of view, Codebashing is a very good product because it is based on gamification. This is especially true if you don't have any idea about secure code training. It is one of the best tools in the world to learn secure coding. The product explains very well how vulnerabilities can be found and how programmers can develop securely."
"The most valuable feature is the integration with WhiteSource, which allows for open-source scanning."
"There are lots of great plugins available."
"The installation is straightforward."
"Our developers are more security-aware and are writing better code. The e-learning option allows our developers to dig deeper into the security issues. Topics such as sanitizing input, carefully configured logging output, and other typical sources of vulnerabilities."
"The best part is that this is all within the web browser, so the developer doesn't have to install any development environments or download anything to work through the training."
"It provides a complete review of vulnerabilities & possible fixes for OWASP Top 10 in one place."
"The features are so extensive, which is why they are ahead of the game, and the reason I continue to use this solution."
"The deployment didn't take that long."
"The coding challenges were well put together and I was happy to see some of the challenges even had a built-in web browser."
"If customers would be able to define their own quizzes or exams, it would be very good. That is the only missing part that I see - customer based scenarios, examinations and quizzes."
"This solution is available for Windows only and does not have a Linux distribution."
"The solution should make the configuration more simple. Sometimes the configuration is complex."
"The user interface could be updated and refreshed. It has the appearance of being very basic."
"There could be better integration between the API and the pipeline systems."
"I would have liked to see a bit better auto-completion in the IDE, and there was a typo in one of the questions where the code you were supposed to copy was missing a pair of parentheses."
"Web application development covers much of the industry, but there are also developers working with these other technologies that could benefit from a learning environment more specific to their technologies."
"Its ability to handle more types of files and making it work better with databasing and other API could be improved."
"The only area of this solution that needs improvement is the pricing for startups."
"Developers frequently complain to me about the user interface and the difficulty in navigating the web site."
"Veracode Security Labs should cover more than only the OWASP Top 10."
Codebashing is ranked 2nd in Application Security Training Software with 4 reviews while Veracode Security Labs is ranked 1st in Application Security Training Software with 7 reviews. Codebashing is rated 8.2, while Veracode Security Labs is rated 8.6. The top reviewer of Codebashing writes "Good plugins, very scalable, and great for checking code vulnerabilities". On the other hand, the top reviewer of Veracode Security Labs writes "Produces reliable software scans but overall database scanning needs to be improved". Codebashing is most compared with Security Innovation Application Security Training, NTT Application Security eLearning and HackEDU, whereas Veracode Security Labs is most compared with NTT Application Security eLearning. See our Codebashing vs. Veracode Security Labs report.
See our list of best Application Security Training Software vendors.
We monitor all Application Security Training Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
