We performed a comparison between CrowdStrike Falcon Cloud Security and Veracode based on real PeerSpot user reviews.
Find out in this report how the two Container Security solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."CrowdStrike utilizes signatureless technology, eliminating the need for regular signature updates on endpoint systems."
"The most valuable feature of Falcon Cloud Security is its comprehensive threat-hunting ability."
"It is fully cloud-based, so we don't need to invest in third-party agents repeatedly."
"The immediate mitigation of potential threats and instant alerts are valuable."
"Technical support is helpful."
"Cloud security is one valuable feature. Spotlight is the other one. There is also vulnerability management and a couple of more features."
"It's easy to gather insights and conduct analysis about existing threats."
"The most significant benefit is how quickly malware and other malicious attacks are detected."
"Within SCA, there is an extremely valuable feature called vulnerable methods. It is able to determine within a vulnerable library which methods are vulnerable. That is very valuable, because in the vast majority of cases where a library is vulnerable, none of the vulnerable methods are actually used by the code. So, if we want to prioritize the way open source libraries are updated when a library is found vulnerable, then we want to prioritize the libraries which have vulnerable methods used within the code."
"I liked that I could easily find out where my errors were. Instead of going through the whole code and the scripts, it showed me where the errors were and gave me an idea of how to fix them."
"One of the features they have is Software Composition Analysis. When organizations use third-party, open source libraries with their application development, because they're open source they quite often have a lot of bugs. There are always patches coming out for those open source applications. You really have to stay on your toes and keep up with any third-party libraries that might be integrated into your application. Veracode's Software Composition Analysis scans those libraries and we find that very valuable."
"I have found the user interface extremely helpful in prioritizing issues."
"Code analysis tool to help identify code issues before entered into production."
"I have used this solution in multiple projects for vulnerability testing and finding security leaks within the code."
"The deployment mode is very useful."
"Our development team use this solution for static code analysis and pen testing."
"The UI part needs to be improved."
"One area for improvement in Falcon Cloud Security is the support portal."
"Incorporating threat intelligence into the system would be a valuable addition."
"CrowdStrike Falcon Cloud Security is expensive."
"It gets the work done, but the main problem with the solution is that if you remediate anything, it takes 45 days for you to get any of the features displayed on the dashboard. This is the real weakness of CrowdStrike. Their customer support is also not ready to help with it. If you remediate any cloud vulnerability that they are giving you, such as removing a host from your organization, it takes around 45 days for them to remove it from their console."
"There should be cloud storage scanning. We would like to have cloud storage vulnerability and threat management on any cloud storage."
"Different file options should be available, and clients should be able to select from the options."
"The threat intelligence and user behavioral analysis could be more comprehensive."
"Veracode has plenty of data. The problem is the information on the dashboards of Veracode, as the user interface is not great. It's not immediately usable. Most of the time, the best way to use it is to just create issues and put them in JIRA... But if I were a startup, and only had products with a good user interface, I wouldn't use Veracode because the UI is very dated."
"There needs to be better API integration to the development team's pipeline, which is something that is missing and needs to be improved."
"Searching for applications in Veracode is a little bit difficult. We have to minimize the length of an application's name to 47 characters. It would be good if this limit could be increased so that an application's name can be properly reflected in Veracode."
"When Veracode updates the pool of tests and security checks, it could be a little more transparent about what it is releasing. It's not clear what it's adding. They do thousands of checks, and when they add more, there aren't many details about what the new tests are doing."
"The number of false positives could be reduced a lot. For each good result, we are getting somewhere around 15 to 20 false positives."
"The support team could be more responsive, and the dependency of users on the support team is too high and should be reduced."
"All areas of the solution could use some improvement."
"The scanning is a little slow, but other than that it's fine. It's usually when the binaries get up into the multi-hundred megabyte size."
More CrowdStrike Falcon Cloud Security Pricing and Cost Advice →
CrowdStrike Falcon Cloud Security is ranked 9th in Container Security with 13 reviews while Veracode is ranked 4th in Container Security with 194 reviews. CrowdStrike Falcon Cloud Security is rated 8.8, while Veracode is rated 8.2. The top reviewer of CrowdStrike Falcon Cloud Security writes "Enhances the overall safety of our company's environment from cyber threats". On the other hand, the top reviewer of Veracode writes "Helps to reduce false positives and prevent vulnerable code from entering production, but does not support incremental scanning ". CrowdStrike Falcon Cloud Security is most compared with Prisma Cloud by Palo Alto Networks, AWS GuardDuty, Wiz, Qualys VMDR and Sysdig Falco, whereas Veracode is most compared with SonarQube, Checkmarx One, Fortify on Demand, Snyk and OWASP Zap. See our CrowdStrike Falcon Cloud Security vs. Veracode report.
See our list of best Container Security vendors.
We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.