Try our new research platform with insights from 80,000+ expert users

Klocwork vs Veracode comparison

Perforce and Veracode are both solutions in the Application Security Tools category. Perforce is ranked #19 with an average rating of 8.1, while Veracode is ranked #2 with an average rating of 8.0. Perforce holds a 1.4% mindshare in AS, compared to Veracode’s 8.0% mindshare. Additionally, 93% of Perforce users are willing to recommend the solution, compared to 90% of Veracode users who would recommend it.
Klocwork
Read 25 Klocwork reviews
  • 3,558 Views
  • 1,992 Comparison Views
93% willing to recommend
Veracode
Read 204 Veracode reviews
  • 19,783 Views
  • 12,859 Comparison Views
90% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024

Veracode and Klocwork compete in the application security tools category. Veracode holds an advantage in pricing and support, while Klocwork is preferred for its advanced features.

Features: Veracode offers robust scanning capabilities, comprehensive reporting features, and straightforward solutions for quick security checks. Klocwork provides powerful debugging, advanced code review capabilities, and adaptability for complex code analysis in technical environments.

Room for Improvement: Veracode could enhance integration options with existing workflows, improve scalability, and offer better customization. Klocwork may improve in updating processes, better handling of false positives, and streamlining user experience to reduce the learning curve.

Ease of Deployment and Customer Service: Veracode has a straightforward deployment model and responsive customer service. Klocwork's deployment is more complex but comes with robust support to assist users in navigating the setup challenges.

Pricing and ROI: Veracode is known for competitive pricing and solid return on investment. Klocwork, though potentially costlier initially, is worthwhile for its feature-rich capabilities and long-term value due to its depth and complexity.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Klocwork vs. Veracode Report (Updated: August 2025).
Buyer's Guide
Klocwork vs. Veracode
August 2025
Download the complete report
Helped 867,497 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.2
Klocwork enhances code quality and compliance, improving efficiency in defect resolution, especially in automotive sectors, despite ROI measurement challenges.
Sentiment score
6.6
Veracode enhances security, reduces costs, and boosts efficiency, with varied ROI perceptions, but some struggle to quantify it financially.
The main ROI factors include efficiency and how we meet compliance standards for various automotive requirements.
For more quotes and insights, download the Klocwork report
The scanners of Veracode bring status of the weaknesses in the current infrastructure. It scans and provides reports regarding the servers, the network, and the applications running on those servers.
Regarding price, the evaluation should focus on how efficiently they will recover their investment, considering the time saved through the use of Veracode Fix, for example, and the ability to fix code at dev time compared to the problems faced when fixing after the product is already deployed.
For more quotes and insights, download the Veracode report
KG
AM
reviewer2703864 - PeerSpot reviewer
 

Customer Service

Sentiment score
6.8
Klocwork's support is praised for responsiveness, effective problem-solving, and reducing user contact via comprehensive documentation, despite prioritization issues.
Sentiment score
7.2
Veracode's customer service is praised for expertise and responsiveness, though variability and time zones can affect efficiency.
The customer support team is very responsive, proactive, and engages in conversations to ensure our needs are met.
The issue is not about the knowledge of the support but about the prioritization of the tickets they handle.
During the initial phase, there was a need for follow-ups and clarifications.
For more quotes and insights, download the Klocwork report
Access to the engineering team is crucial for faster feedback on the product fix process.
I have communicated with the technical support of Veracode a couple of times, and this was a really great experience because these professionals know their material.
They share detailed information via email, including screenshots or further clarification about the issue.
For more quotes and insights, download the Veracode report
AA
KG
GR
SR
AK
reviewer2753535 - PeerSpot reviewer
 

Scalability Issues

Sentiment score
6.7
Klocwork is scalable, efficient, and integrates well with SAST tools, suitable for teams of all sizes without scalability issues.
Sentiment score
7.4
Veracode efficiently scales, supports large applications and users, integrates seamlessly, providing fast results with minimal challenges or performance issues.
Klocwork supports our scalability needs without issues, even as project volumes increase.
The program-to-program enablement is scalable.
For more quotes and insights, download the Klocwork report
Cloud solutions are easier to scale than on-premise solutions.
It has a good capacity to scale effectively.
Implementing these features into our normal CI/CD was good, so I can say that scalability is really good.
For more quotes and insights, download the Veracode report
AA
PM
AM
BP
AK
 

Stability Issues

Sentiment score
6.8
Klocwork is reliable and stable, effectively handling large codebases but requires significant computing power and faster updates.
Sentiment score
7.8
Veracode is highly stable with minimal downtime, effective workload handling, and no significant operational issues reported by users.
Installation is easy, and the solution is stable.
For more quotes and insights, download the Klocwork report
If the Veracode server is down, we experience many issues during the scan.
It's not that easy to onboard, but once they have been onboarded on the platform, and the pipeline configured alongside the product configured, it works effectively.
For more quotes and insights, download the Veracode report
GR
BP
reviewer2703864 - PeerSpot reviewer
 

Room For Improvement

Klocwork needs improved language support, flexible reporting, better integration with Agile DevOps, and enhanced static and dynamic analysis.
Veracode needs improvements in false positives, interface, speed, reporting, tool integration, language support, cost, APIs, and documentation.
There are too many warnings, and it requires expertise to determine the correct category for them.
Klocwork sometimes provides too many additional warnings which require expertise to manage.
We would like Klocwork to connect to Git and notify developers of issues tied to specific commits.
For more quotes and insights, download the Klocwork report
If it could be integrated directly with code repositories such as Bitbucket or GitHub, without the need to create a pipeline to upload and decode code, it would simplify the code scan process significantly.
We had issues with scanning large applications. Scanning took a lot of time, so we kept it outside the DevOps pipeline to avoid delaying deployments.
A nice addition would be if it could be extended for scenarios with custom cleansers.
For more quotes and insights, download the Veracode report
GR
PM
AA
HS
BP
reviewer2700198 - PeerSpot reviewer
 

Setup Cost

Klocwork's flexible pricing models are valued, though opinions vary on cost-effectiveness, catering to diverse organizational needs.
Veracode's pricing is high, valued for features, but complex and costly for small organizations, justified for large enterprises.
It is less expensive than Coverity.
The solution is not very cheap, however, it is less expensive than Coverity.
Klocwork was competitively priced, making it a cost-effective solution for us.
For more quotes and insights, download the Klocwork report
It's not the most expensive solution.
Overall, Veracode's pricing is lower and more scalable than many alternatives in the market.
If there's a security gap, you'll never know the cost or effect.
For more quotes and insights, download the Veracode report
PM
GR
AA
AM
reviewer2753535 - PeerSpot reviewer
HS
 

Valuable Features

Klocwork provides efficient static code analysis with strong IDE integration, supporting multiple languages and enhancing code quality and collaboration.
Veracode offers static code analysis, integrates with development tools, provides remediation guidance, and enhances security while ensuring scalability and compliance.
The most valuable feature of Klocwork is the static analysis tools, which help identify potential security threats and errors.
Its integration with the CI/CD pipeline has helped streamline the software development process.
It takes just half a day to set up.
For more quotes and insights, download the Klocwork report
It offers confidence by preventing exposure to vulnerabilities and helps ensure that we are not deploying vulnerable code into production.
The best features in Veracode include static analysis and the early detection of vulnerable libraries; it integrates with tools such as Jenkins.
It fixes issues directly in the IDE while you're doing it.
For more quotes and insights, download the Veracode report
AA
KG
GR
Kv Rao - PeerSpot reviewer
HS
reviewer2700198 - PeerSpot reviewer
 

Categories and Ranking

Klocwork
Ranking in Application Security Tools
19th
Ranking in Static Application Security Testing (SAST)
17th
Ranking in Static Code Analysis
5th
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
25
Ranking in other categories
No ranking in other categories
Veracode
Ranking in Application Security Tools
2nd
Ranking in Static Application Security Testing (SAST)
2nd
Ranking in Static Code Analysis
1st
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
204
Ranking in other categories
Container Security (8th), Software Composition Analysis (SCA) (3rd), Application Security Posture Management (ASPM) (2nd)
 

Mindshare comparison

As of September 2025, in the Application Security Tools category, the mindshare of Klocwork is 1.4%, down from 1.4% compared to the previous year. The mindshare of Veracode is 8.0%, down from 10.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools Market Share Distribution
ProductMarket Share (%)
Veracode8.0%
Klocwork1.4%
Other90.6%
Application Security Tools
 

Featured Reviews

AnirbanSarkar - PeerSpot reviewer
Lets you find defects during the development phase, so you don't have to wait till the development is over to find and address flaws
What needs improvement in Klocwork, compared to other products in the market, is the dashboard or reporting mechanisms that need to be a bit more flexible. The Klocwork dashboard could be improved. Though it's good, it's not as good as some of the other products in the market, which is a problem. The reporting could be more detailed and easier to sort out because sorting in Klocwork could be a bit more time-consuming, mainly when sorting defects based on filters, compared to how it's done on other tools such as Coverity. What I'd like added in the next release of Klocwork is the peer code review Cahoots which used to be a part of Klocwork, and the architecture analysis and both have been taken out of Klocwork. I found the two critical for specific deployments, so if those can be brought back to Klocwork, that would be very good.
Read full review
Kv Rao - PeerSpot reviewer
Integrates pipelines smoothly and fortifies code against vulnerabilities
I use Veracode in multiple places including static code analysis, penetration testing, and dynamic code analysis. It is part of our pipeline and integrates well with Bitbucket and Git pipelines The ease of integration with Bitbucket pipelines and Git pipelines is vital for us. Veracode allows us…
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
See recommendations
867,497 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
26%
Computer Software Company
13%
Comms Service Provider
7%
Transportation Company
5%
Financial Services Firm
16%
Computer Software Company
16%
Manufacturing Company
9%
Insurance Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business12
Midsize Enterprise2
Large Enterprise12
By reviewers
Company SizeCount
Small Business69
Midsize Enterprise43
Large Enterprise112
 

Questions from the Community

What do you like most about Klocwork?
It's integrated into our CI, continuous integration.
See all answers
What is your experience regarding pricing and costs for Klocwork?
Klocwork's pricing seems attractive, as it uses a per-user license model that does not have a lot of overhead.
See all answers
What needs improvement with Klocwork?
One area for improvement is that when customers use different static analysis tools, they report more issues compared to Klocwork. The static analysis engine of Klocwork has areas that need improve...
See all answers
Which gives you more for your money - SonarQube or Veracode?
SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use...
See all answers
What do you like most about Veracode?
The SAST and DAST modules are great.
See all answers
What is your experience regarding pricing and costs for Veracode?
The product’s price is a bit higher compared to other solutions. However, the tool provides good vulnerability and database features. It is worth the money.
See all answers
 

Comparisons

SonarQube Server (formerly SonarQube) vs Klocwork Logo
SonarQube Server (formerly SonarQube) vs Klocwork
Compared 28% of the time
Coverity Static vs Klocwork Logo
Coverity Static vs Klocwork
Compared 28% of the time
Polyspace Code Prover vs Klocwork Logo
Polyspace Code Prover vs Klocwork
Compared 14% of the time
Helix QAC vs Klocwork Logo
Helix QAC vs Klocwork
Compared 6% of the time
Parasoft SOAtest vs Klocwork Logo
Parasoft SOAtest vs Klocwork
Compared 3% of the time
More Klocwork Competitors
SonarQube Server (formerly SonarQube) vs Veracode Logo
SonarQube Server (formerly SonarQube) vs Veracode
Compared 16% of the time
Checkmarx One vs Veracode Logo
Checkmarx One vs Veracode
Compared 9% of the time
GitHub Advanced Security vs Veracode Logo
GitHub Advanced Security vs Veracode
Compared 7% of the time
OpenText Core Application Security vs Veracode Logo
OpenText Core Application Security vs Veracode
Compared 4% of the time
OWASP Zap vs Veracode Logo
OWASP Zap vs Veracode
Compared 4% of the time
More Veracode Competitors
 

Product Reports

Buyer's Guide
Klocwork
September 2025
Klocwork reportDownload Klocwork product report
Buyer's Guide
Veracode
August 2025
Veracode reportDownload Veracode product report
 

Also Known As

No data available
Crashtest Security , Veracode Detect
 

Overview

Klocwork detects security, safety, and reliability issues in real-time by using this static code analysis toolkit that works alongside developers, finding issues as early as possible, and integrates with teams, supporting continuous integration and actionable reporting.

Perforce

Veracode is a leading provider of application security solutions, offering tools to identify, mitigate, and prevent vulnerabilities across the software development lifecycle. Its cloud-based platform integrates security into DevOps workflows, helping organizations ensure that their code remains secure and compliant with industry standards.

Veracode supports multiple application security testing types, including static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), and manual penetration testing. These tools are designed to help developers detect vulnerabilities early in development while maintaining speed in deployment. Veracode also emphasizes scalability, offering features for enterprises that manage a large number of applications across different teams. Its robust reporting and analytics capabilities allow organizations to continuously monitor their security posture and track progress toward remediation.

What are the key features of Veracode?

  • Static Analysis (SAST) - Scans source code for vulnerabilities before deployment.
  • Dynamic Analysis (DAST) - Examines applications in a running state to detect flaws in real-time.
  • Software Composition Analysis (SCA) - Identifies risks in open-source libraries and third-party components.
  • Manual Penetration Testing - Offers expert analysis for more complex vulnerabilities.
  • Integrations with DevOps tools - Seamlessly integrates with CI/CD pipelines for automated security checks.

What benefits should users consider in Veracode reviews?

  • Early detection of vulnerabilities - Helps developers fix security issues early in the development process.
  • Scalability - Supports organizations with large-scale application portfolios.
  • Compliance support - Ensures applications meet various security standards and regulations.
  • Developer training - Provides tools for educating developers on secure coding practices.
  • Comprehensive reporting - Offers detailed reports that track remediation and risk trends.

Veracode is widely adopted in industries like finance, healthcare, and government, where compliance and security are critical. It helps these organizations maintain strict security standards while enabling rapid development through its integration with Agile and DevOps methodologies.


Veracode helps businesses secure their applications efficiently, ensuring they can deliver safe and compliant software at scale.

Veracode
 

Sample Customers

ACCESS Co Ltd, Risk-AI, Winbond Electronics, Bristol-Myers Squibb Pharmaceutical Research Institute, University of Southern California, Alebra Technologies, SIMULIA, Risk Management Solutions, Brigham Young University, SRD, HRL
Manhattan Associates, Azalea Health, Sabre, QAD, Floor & Decor, Prophecy International, SchoolCNXT, Keap, Rekner, Cox Automotive, Automation Anywhere, State of Missouri and others.
Buyer's Guide
Klocwork vs. Veracode
August 2025
Free Report: Klocwork vs. Veracode
Find out what your peers are saying about Klocwork vs. Veracode and other solutions. Updated: August 2025.
DOWNLOAD NOW
867,497 professionals have used our research since 2012.
See our Klocwork vs. Veracode report.
See our list of best Application Security Tools vendors, best Static Application Security Testing (SAST) vendors, and best Static Code Analysis vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.