Try our new research platform with insights from 80,000+ expert users

Codebashing vs Veracode Security Labs comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Codebashing
Ranking in Application Security Training
1st
Average Rating
8.4
Reviews Sentiment
6.7
Number of Reviews
10
Ranking in other categories
No ranking in other categories
Veracode Security Labs
Ranking in Application Security Training
3rd
Average Rating
8.6
Number of Reviews
10
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Application Security Training category, the mindshare of Codebashing is 34.8%, up from 34.4% compared to the previous year. The mindshare of Veracode Security Labs is 12.4%, down from 18.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Training
 

Featured Reviews

AnanyaRoy - PeerSpot reviewer
An easy-to-use tool to identify false positives or flag any medium to high-risk outcomes
The tool can be a little more intuitive for the end users. It isn't a very friendly tool for beginners. In our company, we have to take training courses to learn how to use the platform. Introducing automation and making the tool a little more intuitive for businesses might be helpful. In our company, we need to take care of the tool's regular updates since, often, the solution may be down. My company has a business administration unit team that is responsible for the updation of tools we use, and their processes can take a day or two to be completed, because of which we may lose out on some time when we may have required the tool to do a complete scan. It would be helpful if the update process can be made faster. If I make use of the integration capabilities of Codebashing, then the plug-ins won't work as smoothly as it does in the application itself. Maybe the solution's plug-ins can be improved.
Darshan Makhecha - PeerSpot reviewer
We are more productive because we work smarter and optimize the reporting pathway
The solution provides guidance on how to fix vulnerabilities. Veracode has robust reporting and data analytics. I manage key accounts, and data analysis is essential for anyone in a critical sales role. Veracode gives us a comprehensive analysis and reporting structure. When we input data from different teams, we have different criteria for analysis, like performance over time and performance versus target benchmarks. The reporting works well for these key performance indicators. Veracode developers have maintained an end-to-end security approach. The platform is highly secure. Users can secure their data and access it at any time based on their requirements. It makes data analysis easier and more user-friendly. Security Labs has an excellent mechanism for reducing the errors introduced into the system. It also acts as a resistant wall that blocks viruses and rapidly fixes the vulnerable components. It works optimally for my current use. In terms of compliance and governing regulations, this solution works well. It complies with all government norms and global IT documentation. Productivity has slowly improved because the Static Analytic tool helps me save time. In the end, we are more productive because we work smarter and optimize the reporting pathway. Veracode also integrates with our development tools, which is helpful because our IT team is incorporating other functions in their backend. This solution is a firewall for the workflows. It filters your data, and it will block any kind of threat or malware. A warning pops up, and it says you need to take care of the issue. It has raised developer confidence by mitigating risks. It limits access to specific users at a given time. It's a good tool in terms of secure access.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The platform is simple, easy to use, and easy to learn."
"From an academic point of view, Codebashing is a very good product because it is based on gamification. This is especially true if you don't have any idea about secure code training. It is one of the best tools in the world to learn secure coding. The product explains very well how vulnerabilities can be found and how programmers can develop securely."
"The most important aspect of Codebashing, in my opinion, is the gamification advantage. When compared to competitors' offerings, the most significant thing to emphasize is gamification. The rest is similar to the competitors."
"There's a lot of flexibility and there are a lot of configuration options."
"There are lots of great plugins available."
"This solution has an interactive approach that allows you to quickly receive basic knowledge about vulnerabilities and how they should be fixed."
"The most valuable feature is that you get the security from the design of the training. It ensures our developers write code securely and effectively. They will not write code that is vulnerable to hackers."
"The installation phase of the tool is simple."
"The hands-on training has helped us to tackle modern threats by coding with vulnerabilities in mind from the beginning of a project. It has improved our process overall, and the number of vulnerabilities has been reduced."
"Our developers are more security-aware and are writing better code. The e-learning option allows our developers to dig deeper into the security issues. Topics such as sanitizing input, carefully configured logging output, and other typical sources of vulnerabilities."
"I like the end-to-end learning experience. That also includes SAST. It has a low false positive rate."
"The coding challenges were well put together and I was happy to see some of the challenges even had a built-in web browser."
"Veracode Security Labs is very good for providing examples of code vulnerabilities in a developer’s chosen language. This is important because if a flaw is found, then they provide me with a few examples of how to implement it. I don't need to go to Google and try to figure it out myself. They already provide me with some good quality examples that I can use to implement the fix."
"The deployment didn't take that long."
"The features are so extensive, which is why they are ahead of the game, and the reason I continue to use this solution."
"The best part is that this is all within the web browser, so the developer doesn't have to install any development environments or download anything to work through the training."
 

Cons

"The solution should make the configuration more simple. Sometimes the configuration is complex."
"The product's pricing could be more flexible."
"It isn't a very friendly tool for beginners. In our company, we have to take training courses to learn how to use the platform."
"I believe that certificates should be issued to users so that they can be used as proof of having completed that training. The certificate is currently not being used for any competence validation outside of the chance environment."
"It would be helpful if the solution included tests or exams that would allow you to study, for example, all Java vulnerabilities, and then afterward test your knowledge."
"If customers would be able to define their own quizzes or exams, it would be very good. That is the only missing part that I see - customer based scenarios, examinations and quizzes."
"This solution is available for Windows only and does not have a Linux distribution."
"From my perspective, Codebashing might use some enhancement. Clients should be able to handle their tests directly according to their needs. That aspect of Codebashing is currently inflexible. Customers would wish to sign, compile, or manage their tests in accordance with their requirements. It is just not possible."
"I would have liked to see a bit better auto-completion in the IDE, and there was a typo in one of the questions where the code you were supposed to copy was missing a pair of parentheses."
"Developers frequently complain to me about the user interface and the difficulty in navigating the web site."
"Web application development covers much of the industry, but there are also developers working with these other technologies that could benefit from a learning environment more specific to their technologies."
"I would like the team to make users like me aware of the new features sooner, so we can get the most from this product. Otherwise, there is no disadvantage."
"Veracode Security Labs should cover more than only the OWASP Top 10."
"There are two parts that I think should be improved. Both the web page and the report have the same issue. Both are sometimes messy and very difficult to find information. You need to know where to look and especially where to find information. It can be a bit confusing in both the report and the web page. Quite often, I keep learning new things because some of the information is quite hidden. You need to click this link, then click here, and go here. Then, "Wow," you get so much information that you didn't know existed. Information is a bit hidden and there should be an easier way to access it after a scan is generated."
"There could be better integration between the API and the pipeline systems."
"Its ability to handle more types of files and making it work better with databasing and other API could be improved."
 

Pricing and Cost Advice

"Licenses are renewed annually."
"This solution is not freeware and more expensive than similar products."
"I would prefer it if their pricing would be a bit cheaper. This is not my personal comment, this is the comment of the market."
"As a developer, though I am unaware of the cost of the solution, the product is expensive since I faced some trouble upgrading to Python for Codebashing."
"They have a Community Edition of this product that can be used free of charge."
"The pricing for qualified startups should only charge for Veracode Developer Training."
"It's expensive. Know that going in. Your organization, your programmers, and your product will be better for it though."
report
Use our free recommendation engine to learn which Application Security Training solutions are best for your needs.
859,687 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Manufacturing Company
18%
Financial Services Firm
13%
Energy/Utilities Company
8%
Computer Software Company
19%
Educational Organization
14%
Financial Services Firm
14%
Insurance Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Codebashing?
The platform is simple, easy to use, and easy to learn.
What is your experience regarding pricing and costs for Codebashing?
As a developer, though I am unaware of the cost of the solution, the product is expensive since I faced some trouble upgrading to Python for Codebashing.
What needs improvement with Codebashing?
The product's pricing could be more flexible. At present, we have to buy an entire instance. Instead, they could introduce a pricing model based on specific requirements.
Ask a question
Earn 20 points
 

Also Known As

No data available
Veracode Developer Training
 

Overview

 

Sample Customers

Fitbit, Microsoft, Just Eat, NCC Group, National Bank of Abu Dhabi, Sky
McKESSON, Alfresco
Find out what your peers are saying about Codebashing vs. Veracode Security Labs and other solutions. Updated: June 2025.
859,687 professionals have used our research since 2012.