Veracode vs Virsec Security Platform comparison

The compared Veracode and Virsec Systems solutions aren't in the same category. Veracode is ranked #3 in AS , with an average rating of 7.6, and holds a 4.4% mindshare in the category. Virsec Systems is ranked #100 in VM , and holds a 0.3% mindshare. Additionally, 89% of Veracode users are willing to recommend the solution, compared to 100% of Virsec Systems users who would recommend it.

Veracode

Read 208 Veracode reviews

23,090 Views
12,930 Comparison Views

89% willing to recommend

Virsec Security Platform

Read 1 Virsec Security Platform review

1,696 Views
475 Comparison Views

100% willing to recommend

Veracode

Virsec Security Platform

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Veracode and Virsec Security Platform based on real PeerSpot user reviews.

Find out what your peers are saying about SonarSource Sàrl, Checkmarx, Veracode and others in Application Security Tools.

To learn more, read our detailed Application Security Tools Report (Updated: May 2026).

Buyer's Guide

Application Security Tools

May 2026

Download the complete report

Helped 895,151 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Veracode

Average Rating

8.0

Reviews Sentiment

6.9

Number of Reviews

208

Ranking in other categories

Application Security Tools (3rd), Static Application Security Testing (SAST) (3rd), Container Security (10th), Software Composition Analysis (SCA) (2nd), Static Code Analysis (1st), Dynamic Application Security Testing (DAST) (1st), Application Security Posture Management (ASPM) (1st)

Virsec Security Platform

Average Rating

7.0

Reviews Sentiment

5.9

Number of Reviews

Ranking in other categories

Vulnerability Management (100th), Continuous Threat Exposure Management (CTEM) (28th)

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Veracode is designed for Application Security Tools and holds a mindshare of 4.4%, down 9.6% compared to last year.
Virsec Security Platform, on the other hand, focuses on Vulnerability Management, holds 0.3% mindshare, up 0.1% since last year.

Application Security Tools Mindshare Distribution
Product	Mindshare (%)
Veracode	4.4%
SonarQube	13.6%
Checkmarx One	8.8%
Other	73.2%

Application Security Tools

Vulnerability Management Mindshare Distribution
Product	Mindshare (%)
Virsec Security Platform	0.3%
Wiz	5.0%
Qualys VMDR	4.2%
Other	90.5%

Vulnerability Management

Featured Reviews

SrikanthRaghavan

Principal Architect at a consultancy with 11-50 employees

Early detection of vulnerabilities saves significant amount of time and effort

Veracode provides visibility into application status at every phase of development, as it's how we stitch it together, allowing us to introduce it at various phases to gain fast feedback. This capability increases the velocity in DevSecOps processes as developers receive feedback on vulnerabilities before committing, reducing the overall rework. It helps developers save time significantly. For instance, if I take a library and assume it's going to work until it reaches QA or UAT, where we find out there's a vulnerability, that can require extensive effort for code refactoring or redesigning; Veracode helps prevent that before the pull request is merged. Veracode impacts the overall security posture by maintaining data integrity, ensuring we are not exposed to threats from third-party libraries with known vulnerabilities. From my perspective as a SecDevOps evangelist, Veracode is crucial for an organization's shift-left security strategy. Veracode's SCA perspective offers tools that facilitate shift-left security by providing feedback before failures occur in the development process.

Read full review

KevinMcCarthy

Security Manager at Klearnow

Helps with Zero-day protection

We use the solution for Zero-day protection. The solution stops any kind of remote code execution. The tool's dashboard needs to load since it is not responsive and takes time to load. I have been using the product for a year. I would rate the tool's stability a six out of ten. I would…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The benefits are quick discovery and understanding of software vulnerabilities that we are putting in our own code. By discovering them quickly enough, we can triage them and determine the best ways to remediate them and prevent them from happening in the future."

"Within SCA, there is an extremely valuable feature called vulnerable methods. It is able to determine within a vulnerable library which methods are vulnerable. That is very valuable, because in the vast majority of cases where a library is vulnerable, none of the vulnerable methods are actually used by the code. So, if we want to prioritize the way open source libraries are updated when a library is found vulnerable, then we want to prioritize the libraries which have vulnerable methods used within the code."

"It is a good product for creating secure software. The static code analysis is pretty good and useful."

"Ensures our code and system are 100% compliant."

"It pointed out some areas to be improved that we were not aware of, which was very helpful because if you don't know that there is a problem, you can't fix it."

"I appreciate Veracode's SAST and SCA features, which help to find open-source vulnerabilities. I'd estimate it's about 98% accurate, though some false positives occasionally exist. Our team has been using it for a long time."

"The solution's ability to help create secure software is very valuable; we're a zero-trust networking company so we want to have the ability to say that we're practicing security seriously, and having something like Veracode allows us to have confidence when we're speaking to people about our product that we can back up what we're doing with a certification, with a reputable platform, and say, "This is what we're using to scan an application, here's the number of vulnerabilities that are on an application, and here's the risk that we're accepting.""

"It scans for the OWASP top-10 security flaws at the dynamic level and, at the static level, it scans for all the warnings so that developers can fix the code before we go to UAT or the next phase."

More Veracode pros

"We use the solution for Zero-day protection."

Cons

"There were many issues when we were uploading code. The size restrictions that you enforce, the way the results are presented, and the difficulty in finding details for C and C++ all forced us to move off of it."

"It takes a while to get a response to the software composition analysis. It is within an acceptable range but it could still be improved."

"However, the content wasn't getting uploaded in a predictable fashion, and it was slow and hard to get done."

"It needs more timely support for newer languages and framework versions."

"There might be room for improvement in the in-app guidance and the tips and tricks for the developer about how to progress. We would like more insight into the development environment, where they would get guidance on how to avoid flaws."

"I'd like to see an improved component of it work in a DevOps world, where the scanning speed does not impede progress along the AppSec pipeline."

"An area for improvement in Veracode is the time that it takes to scan large projects, as that makes it difficult to fit into our CI/CD pipelines."

"While Veracode is way ahead of its competitors on Gartner Magic Quadrant, it's a bit more expensive than Fortify. It's a good solution for the cost, but if we had a high budget, we would go with Checkmarx, which is much better than Veracode."

More Veracode cons

"The tool's dashboard needs to load since it is not responsive and takes time to load."

Pricing and Cost Advice

"Compared to other similar products, the licensing and pricing are definitely competitive. If you see Checkmarx as the market leader, then we are talking about Veracode being a fraction of the cost. You also have to consider your hidden costs: you need a team to maintain it, a server, and resources. From that point of view, Veracode is great because the cost is really a fraction of many competitors."

"We are still considering it at the enterprise level. It has a subscription-based model. We find its price a little high based on the features it provides."

"I found Veracode very expensive, though I'm not the person paying for it. I was surprised to find out how much the subscription costs and that the executive board approved it, but it was a no-brainer because now my company has better security scans."

"Compared to the typical software composition analysis solutions, Veracode is not so costly, although the static analysis part of it is a little costlier."

"I have not examined Veracode's pricing in detail, but from an industry perspective, I see that there is a tendency toward Veracode, which suggests competitive pricing."

"Users in some forums mentioned that pricing for this solution can be quite high."

"The price of Veracode Static Analysis is expensive. There is an annual fee to use the solution and the company is upfront with the pricing model and fees."

"Veracode is fairly priced."

More Veracode pricing and cost advice

"I would rate the solution's pricing an eight out of ten."

See which vendors are best for you

Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.

See recommendations

895,151 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

16%

Manufacturing Company

11%

Computer Software Company

11%

Government

Manufacturing Company

22%

Construction Company

14%

Financial Services Firm

11%

Healthcare Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	69
Midsize Enterprise	45
Large Enterprise	115

No data available

Questions from the Community

Which gives you more for your money - SonarQube or Veracode?

SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use...

See all answers

What is your experience regarding pricing and costs for Veracode Static Analysis?

My experience with pricing, setup cost, and licensing for Veracode is that it is fairly moderate.

See all answers

What needs improvement with Veracode Static Analysis?

Veracode can improve to stand in this market. They do not have to do much; they just need to improve their UI experience and add more documentation within the application rather than just creating ...

See all answers

Ask a question

Earn 20 points

Comparisons

SonarQube vs Veracode

Compared 7% of the time

Checkmarx One vs Veracode

Compared 6% of the time

HCL AppScan vs Veracode

Compared 3% of the time

GitHub Advanced Security vs Veracode

Compared 3% of the time

OWASP Zap vs Veracode

Compared 3% of the time

More Veracode Competitors

TrendAI Vision One – Cloud Security vs Virsec Security Platform

Compared 11% of the time

Morphisec vs Virsec Security Platform

Compared 10% of the time

Jscrambler vs Virsec Security Platform

Compared 8% of the time

Tenable.io Web Application Scanning vs Virsec Security Platform

Compared 7% of the time

Sqreen vs Virsec Security Platform

Compared 6% of the time

More Virsec Security Platform Competitors

Product Reports

Buyer's Guide

Veracode

April 2026

Download Veracode product report

Buyer's Guide

Vulnerability Management

May 2026

Download Virsec Security Platform product report

Also Known As

Crashtest Security , Veracode Detect

Virsec

Overview

Veracode is a leading provider of application security solutions, offering tools to identify, mitigate, and prevent vulnerabilities across the software development lifecycle. Its cloud-based platform integrates security into DevOps workflows, helping organizations ensure that their code remains secure and compliant with industry standards.

Veracode supports multiple application security testing types, including static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), and manual penetration testing. These tools are designed to help developers detect vulnerabilities early in development while maintaining speed in deployment. Veracode also emphasizes scalability, offering features for enterprises that manage a large number of applications across different teams. Its robust reporting and analytics capabilities allow organizations to continuously monitor their security posture and track progress toward remediation.

What are the key features of Veracode?

Static Analysis (SAST) - Scans source code for vulnerabilities before deployment.
Dynamic Analysis (DAST) - Examines applications in a running state to detect flaws in real-time.
Software Composition Analysis (SCA) - Identifies risks in open-source libraries and third-party components.
Manual Penetration Testing - Offers expert analysis for more complex vulnerabilities.
Integrations with DevOps tools - Seamlessly integrates with CI/CD pipelines for automated security checks.

What benefits should users consider in Veracode reviews?

Early detection of vulnerabilities - Helps developers fix security issues early in the development process.
Scalability - Supports organizations with large-scale application portfolios.
Compliance support - Ensures applications meet various security standards and regulations.
Developer training - Provides tools for educating developers on secure coding practices.
Comprehensive reporting - Offers detailed reports that track remediation and risk trends.

Veracode is widely adopted in industries like finance, healthcare, and government, where compliance and security are critical. It helps these organizations maintain strict security standards while enabling rapid development through its integration with Agile and DevOps methodologies.

Veracode helps businesses secure their applications efficiently, ensuring they can deliver safe and compliant software at scale.

Veracode

Virsec Security Platform offers advanced protection for applications by ensuring real-time detection and prevention of unknown threats. It integrates seamlessly across environments to provide robust, runtime security for critical workloads.

Specializing in memory-based attack prevention, Virsec ensures precise threat identification and mitigation with minimal impact on performance. Its deterministic approach identifies malicious activity with high accuracy, safeguarding against exploits and zero-day attacks. Trust is enhanced through transparency and actionable insights, making it a preferred choice for protecting sensitive applications.

What are the most important features of Virsec Security Platform?

Runtime Application Self-Protection (RASP): Provides real-time security to prevent vulnerabilities during operation.
Memory Exploit Detection: Identifies and mitigates memory-based threats effectively.
Web Application Security: Delivers comprehensive protection against web threats.
Scalable Deployment: Easily integrates with existing infrastructure for wide-ranging protection.
Insightful Reporting: Offers detailed reports for informed decision-making.

What are the benefits and ROI of using Virsec Security Platform?

Enhanced Security Posture: Mitigates risks with pinpoint accuracy, reducing downtime.
Cost Efficiency: Lowers the total cost of ownership by minimizing breaches.
Seamless Integration: Reduces complexity and enhances existing defenses.
Improved Reliability: Increases confidence in application security through constant monitoring.
Real-time Threat Detection: Provides immediate alerts, allowing swift response to incidents.

Virsec Security Platform is particularly beneficial in industries like finance, healthcare, and government, where data protection is critical. Its implementation enhances compliance with industry standards and offers peace of mind by protecting sensitive data against sophisticated threats. The platform's adaptability to diverse environments ensures consistent, reliable security across platforms, making it an ideal fit for industries demanding robust protection measures.

Virsec Systems

Sample Customers

Manhattan Associates, Azalea Health, Sabre, QAD, Floor & Decor, Prophecy International, SchoolCNXT, Keap, Rekner, Cox Automotive, Automation Anywhere, State of Missouri and others.

Broadcom, Allstate, Department of Homeland Security

Buyer's Guide

Application Security Tools

May 2026

Download Free Report

Find out what your peers are saying about SonarSource Sàrl, Checkmarx, Veracode and others in Application Security Tools. Updated: May 2026.

DOWNLOAD NOW

895,151 professionals have used our research since 2012.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.