No more typing reviews! Try our Samantha, our new voice AI agent.

Ixia BreakingPoint vs Veracode comparison

Keysight Technologies and Veracode are both solutions in the Static Application Security Testing (SAST) category. Keysight Technologies is ranked #30, while Veracode is ranked #2 with an average rating of 8.0. Keysight Technologies holds a 0.7% mindshare in SAST, compared to Veracode’s 4.8% mindshare. Additionally, 100% of Keysight Technologies users are willing to recommend the solution, compared to 89% of Veracode users who would recommend it.
Ixia BreakingPoint
Read 8 Ixia BreakingPoint reviews
  • 1,052 Views
  • 957 Comparison Views
100% willing to recommend
Veracode
Read 208 Veracode reviews
  • 19,227 Views
  • 11,921 Comparison Views
89% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024

Veracode and Ixia BreakingPoint compete in the cybersecurity market. Veracode is favored for its affordability and user satisfaction, while Ixia BreakingPoint is chosen for its advanced features despite higher costs.

Features: Veracode offers robust security testing, seamless integration, and efficient vulnerability management. Ixia BreakingPoint provides extensive threat simulations, real-world testing environments, and advanced attack modeling.

Room for Improvement: Veracode needs to enhance scanning speed, improve report customization, and expand its testing capabilities. Ixia BreakingPoint requires improvements in easing its learning curve, increasing the responsiveness of customer support, and simplifying its interface.

Ease of Deployment and Customer Service: Veracode is known for its easy deployment and responsive customer service. Ixia BreakingPoint, although having a complex setup, benefits from supportive customer service during deployment issues.

Pricing and ROI: Veracode is considered affordable and offers good ROI with its scalable solutions. Ixia BreakingPoint, while pricier, justifies its cost with its focus on complex testing environments and specialized features.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Ixia BreakingPoint vs. Veracode Report (Updated: March 2026).
Buyer's Guide
Ixia BreakingPoint vs. Veracode
March 2026
Download the complete report
Helped 885,311 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Ixia BreakingPoint
Ranking in Static Application Security Testing (SAST)
30th
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
8
Ranking in other categories
No ranking in other categories
Veracode
Ranking in Static Application Security Testing (SAST)
2nd
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
208
Ranking in other categories
Application Security Tools (3rd), Container Security (8th), Software Composition Analysis (SCA) (3rd), Static Code Analysis (1st), Dynamic Application Security Testing (DAST) (1st), Application Security Posture Management (ASPM) (1st)
 

Mindshare comparison

As of March 2026, in the Static Application Security Testing (SAST) category, the mindshare of Ixia BreakingPoint is 0.7%, up from 0.2% compared to the previous year. The mindshare of Veracode is 4.8%, down from 10.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST) Mindshare Distribution
ProductMindshare (%)
Veracode4.8%
Ixia BreakingPoint0.7%
Other94.5%
Static Application Security Testing (SAST)
 

Featured Reviews

Sai Prasad - PeerSpot reviewer
Sai Prasad
Staff QA Engineer at Virsec
Works better for testing traffic, mix profile, and enrollment scenarios than other solutions
Once, when I raised a ticket regarding a hardware or software issue, the solution's support team visited our company to discuss and find out ways to solve the problem. Sometimes, they asked us to send several photos from the back and front end to identify the issue. It was time-consuming as we were occupied with some other testing simultaneously. Instead, it would have been great if they could have visited our company and rectified the problem.
Read full review
reviewer2703864 - PeerSpot reviewer
reviewer2703864
Head of Security Architecture at a healthcare company with 5,001-10,000 employees
Onboarding developers successfully while improving code security through IDE integration
Regarding room for improvement, we have some problems when onboarding new projects because the build process has to be done in a certain way, as Veracode analyzes the binaries and not the code by itself alone. If the process is not configured correctly, it doesn't work. That's one of the things that we are discussing with Veracode. Something positive that we've been able to do is submit formal feature requests to them, and they are working on them; they've already solved some of them. This encourages us to propose new ideas and improvements. Another improvement that we asked for this use case is to be able to configure how Veracode Fix proposes and fixes because sometimes it makes proposals using libraries that go against our architecture design made by the enterprise architecture team. For example, we want them to propose using another library, and that's something we already asked Veracode, and they are working on it. We want to specify when you see this kind of vulnerability, you can only propose these two options.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Ixia BreakingPoint is the ransomware and malware database for simulated attacks."
"I like that we can test cloud applications."
"The solution has many protocols and options, making it very flexible."
"There is a virtual version of the product which is scaled to 100s of virtual testing blades."
"The most valuable feature is Layer 7 traffic generation such as Facebook, Netflix, WhatsApp."
"What Ixia BreakingPoint brings to the end customer is the use case."
"It is a scalable solution."
"The DDoS testing module is useful and quick to use."
More Ixia BreakingPoint pros
"I like its integration with GitHub. I like using it from GitHub. I can use the GitHub URL and find out the vulnerabilities."
"Wide range of platforms and technology assessments."
"Veracode has evolved to be a good partner, overall, in working through our learning needs and problem escalations."
"Source code composition analysis for vulnerabilities and license compliance is the most valuable feature."
"In summary, I think that this is a good tool and I recommend it for helping with security in software development."
"We used it for performing security checks. We have many Java applications and Android applications. Essentially it was used for checking the security validations for compliance purposes."
"The most important feature is the static scanning analysis, and the reason is that it can tell us vulnerability in that code, right before we go ahead and push something to production or provide something to a client... Dynamic scanning actually hits our Web applications, to try to detect any well known Web application vulnerabilities as well."
"The most valuable feature is Veracode SDP, which allows for something related to third-party vulnerabilities. When we build a product, we use a lot of third-party libraries instead of building everything from scratch. We just use a library which is already been built; we just use that component in our product. Sometimes, these libraries may have bugs or issues, and it's hard to keep track of them because we use thousands of them."
More Veracode pros
 

Cons

"The integration could improve in Ixia BreakingPoint."
"The production traffic simulations are not realistic enough for some types of DDoS attacks."
"The quality of the traffic generation could be improved, to get closer to being accurate in what a real user would do."
"The solution originally was hard to configure; I'm not sure if they've updated this to make it simpler, but if not, it's something that could be streamlined."
"The SSL simulation is realistic but some kinds of tests work imperfectly."
"The flash GUI has room for improvement."
"The solution originally was hard to configure; I'm not sure if they've updated this to make it simpler, but if not, it's something that could be streamlined."
"Currently BPS VE's REST API was just developed (some specific functionalities are implemented) and can be improved for better control over the tool using scripts, which help in test automation."
More Ixia BreakingPoint cons
"The solution has issues with scanning. It tries to decode the binaries that we are trying to scan."
"It's taking too much time to do a quality scan."
"The solution does not support Dynamic Application Security Testing."
"It can have more APIs and capabilities to handle other things well. We were doing a trial for it. There were two things that I looked at: one was uploading some Java-related content and the other was uploading database SQL files and having the review done on the quarterback. The Java portion of it worked fine, and it was pretty seamless, but the database portion was not. We uploaded some files to use for vulnerabilities, and the tell-all portion of it was pretty easy. We uploaded a war file and Java files, and we got the reports back on these. They were pretty clear to understand. We did the same thing for the database portion for the most part. However, the content wasn't getting uploaded in a predictable fashion, and it was slow and hard to get done. We had to do it over and over. After it indicated that the content was uploaded, there were no results. There were zero search findings. It was possibly a user error, something that we didn't do correctly, but they had acknowledged that it was something they were currently enhancing. This is something that could be made easier if they haven't already done that. I don't know how many releases they've had in that timeframe. I haven't looked at it since then. It was a trial period."
"There is also a size limit of 100 MB so we cannot upload files that are larger than that. That could be improved. Also, the duration of the scan is a bit too long."
"However, the content wasn't getting uploaded in a predictable fashion, and it was slow and hard to get done."
"Veracode needs to improve its integration with other tools."
"There should be more APIs, especially in SCA, to get some results or automate some things."
More Veracode cons
 

Pricing and Cost Advice

"The price is high. We pay for the license monthly."
"There is no differentiation in licenses for Breaking Point. For one license, you will get all the features. There is no complexity in that."
"The solution is expensive."
"The price of the solution is expensive."
"We have a one year subscription license for $25,000 US Dollars."
"or us, the pricing is somewhere around $12,000 a year. I'm unsure as to what new licenses now cost."
"Pricing/licensing is complicated."
"Costs are reasonable. No special infrastructure is required and the license model is good."
"The pricing is pretty high."
"The pricing is fair."
"I think it's a great value. It's at a price point that a small company like mine can afford to use versus, if it was too exorbitant, I wouldn't be able to use this product. The cost of the license is small in comparison to the value it brings"
"The price of Veracode Static Analysis is on the higher side."
"It is an expensive solution, but it's the best solution available on the market. If you want something at the top, you have to pay a bit more than the average."
"Its complexity makes it quite expensive, but it’s all worth it, with all the engineering in the background."
More Veracode pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
See recommendations
885,311 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
16%
Financial Services Firm
9%
Construction Company
9%
Computer Software Company
7%
Financial Services Firm
16%
Computer Software Company
12%
Manufacturing Company
10%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business7
Large Enterprise3
By reviewers
Company SizeCount
Small Business69
Midsize Enterprise45
Large Enterprise114
 

Questions from the Community

Ask a question
Earn 20 points
Which gives you more for your money - SonarQube or Veracode?
SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use...
See all answers
What do you like most about Veracode Static Analysis?
I like its integration with GitHub. I like using it from GitHub. I can use the GitHub URL and find out the vulnerabilities.
See all answers
What is your experience regarding pricing and costs for Veracode Static Analysis?
My experience with pricing, setup cost, and licensing for Veracode is that it is fairly moderate.
See all answers
 

Comparisons

GitHub Code Scanning vs Ixia BreakingPoint Logo
GitHub Code Scanning vs Ixia BreakingPoint
Compared 21% of the time
Defensics Protocol Fuzzing vs Ixia BreakingPoint Logo
Defensics Protocol Fuzzing vs Ixia BreakingPoint
Compared 16% of the time
OpenText Core Application Security vs Ixia BreakingPoint Logo
OpenText Core Application Security vs Ixia BreakingPoint
Compared 16% of the time
Appvance AIQ Platform vs Ixia BreakingPoint Logo
Appvance AIQ Platform vs Ixia BreakingPoint
Compared 14% of the time
SonarQube vs Ixia BreakingPoint Logo
SonarQube vs Ixia BreakingPoint
Compared 14% of the time
More Ixia BreakingPoint Competitors
SonarQube vs Veracode Logo
SonarQube vs Veracode
Compared 9% of the time
Checkmarx One vs Veracode Logo
Checkmarx One vs Veracode
Compared 7% of the time
GitHub Advanced Security vs Veracode Logo
GitHub Advanced Security vs Veracode
Compared 4% of the time
Coverity Static vs Veracode Logo
Coverity Static vs Veracode
Compared 3% of the time
OWASP Zap vs Veracode Logo
OWASP Zap vs Veracode
Compared 3% of the time
More Veracode Competitors
 

Product Reports

Buyer's Guide
Static Application Security Testing (SAST)
March 2026
Ixia BreakingPoint reportDownload Ixia BreakingPoint product report
Buyer's Guide
Veracode
March 2026
Veracode reportDownload Veracode product report
 

Also Known As

No data available
Crashtest Security , Veracode Detect
 

Overview

By simulating real-world legitimate traffic, distributed denial of service (DDoS), exploits, malware, and fuzzing, BreakingPoint validates an organization’s security infrastructure, reduces the risk of network degradation by almost 80%, and increases attack readiness by nearly 70%.

Keysight Technologies

Veracode is a leading provider of application security solutions, offering tools to identify, mitigate, and prevent vulnerabilities across the software development lifecycle. Its cloud-based platform integrates security into DevOps workflows, helping organizations ensure that their code remains secure and compliant with industry standards.

Veracode supports multiple application security testing types, including static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), and manual penetration testing. These tools are designed to help developers detect vulnerabilities early in development while maintaining speed in deployment. Veracode also emphasizes scalability, offering features for enterprises that manage a large number of applications across different teams. Its robust reporting and analytics capabilities allow organizations to continuously monitor their security posture and track progress toward remediation.

What are the key features of Veracode?

  • Static Analysis (SAST) - Scans source code for vulnerabilities before deployment.
  • Dynamic Analysis (DAST) - Examines applications in a running state to detect flaws in real-time.
  • Software Composition Analysis (SCA) - Identifies risks in open-source libraries and third-party components.
  • Manual Penetration Testing - Offers expert analysis for more complex vulnerabilities.
  • Integrations with DevOps tools - Seamlessly integrates with CI/CD pipelines for automated security checks.

What benefits should users consider in Veracode reviews?

  • Early detection of vulnerabilities - Helps developers fix security issues early in the development process.
  • Scalability - Supports organizations with large-scale application portfolios.
  • Compliance support - Ensures applications meet various security standards and regulations.
  • Developer training - Provides tools for educating developers on secure coding practices.
  • Comprehensive reporting - Offers detailed reports that track remediation and risk trends.

Veracode is widely adopted in industries like finance, healthcare, and government, where compliance and security are critical. It helps these organizations maintain strict security standards while enabling rapid development through its integration with Agile and DevOps methodologies.


Veracode helps businesses secure their applications efficiently, ensuring they can deliver safe and compliant software at scale.

Veracode
 

Sample Customers

Corsa Technology
Manhattan Associates, Azalea Health, Sabre, QAD, Floor & Decor, Prophecy International, SchoolCNXT, Keap, Rekner, Cox Automotive, Automation Anywhere, State of Missouri and others.
Buyer's Guide
Ixia BreakingPoint vs. Veracode
March 2026
Free Report: Ixia BreakingPoint vs. Veracode
Find out what your peers are saying about Ixia BreakingPoint vs. Veracode and other solutions. Updated: March 2026.
DOWNLOAD NOW
885,311 professionals have used our research since 2012.
See our Ixia BreakingPoint vs. Veracode report.
See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.