Try our new research platform with insights from 80,000+ expert users

Veracode vs Virsec Security Platform comparison

The compared Veracode and Virsec Systems solutions aren't in the same category. Veracode is ranked #2 in AS , with an average rating of 8.1, and holds a 5.4% mindshare in the category. Virsec Systems is ranked #90 in VM , and holds a 0.3% mindshare. Additionally, 89% of Veracode users are willing to recommend the solution, compared to 100% of Virsec Systems users who would recommend it.
Veracode
Read 208 Veracode reviews
  • 18,744 Views
  • 11,996 Comparison Views
89% willing to recommend
Virsec Security Platform
Read 1 Virsec Security Platform review
  • 980 Views
  • 245 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Veracode and Virsec Security Platform based on real PeerSpot user reviews.

Find out what your peers are saying about SonarSource Sàrl, Veracode, Checkmarx and others in Application Security Tools.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Application Security Tools Report (Updated: January 2026).
Buyer's Guide
Application Security Tools
January 2026
Download the complete report
Helped 879,889 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Veracode
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
208
Ranking in other categories
Application Security Tools (2nd), Static Application Security Testing (SAST) (2nd), Container Security (8th), Software Composition Analysis (SCA) (3rd), Static Code Analysis (1st), Dynamic Application Security Testing (DAST) (1st), Application Security Posture Management (ASPM) (1st)
Virsec Security Platform
Average Rating
7.0
Reviews Sentiment
5.9
Number of Reviews
1
Ranking in other categories
Vulnerability Management (90th), Continuous Threat Exposure Management (CTEM) (24th)
 

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Veracode is designed for Application Security Tools and holds a mindshare of 5.4%, down 10.5% compared to last year.
Virsec Security Platform, on the other hand, focuses on Vulnerability Management, holds 0.3% mindshare, up 0.1% since last year.
Application Security Tools Market Share Distribution
ProductMarket Share (%)
Veracode5.4%
SonarQube17.9%
Checkmarx One10.2%
Other66.5%
Application Security Tools
Vulnerability Management Market Share Distribution
ProductMarket Share (%)
Virsec Security Platform0.3%
Wiz7.5%
Tenable Nessus5.2%
Other87.0%
Vulnerability Management
 

Featured Reviews

reviewer2703864 - PeerSpot reviewer
reviewer2703864
Head of Security Architecture at a healthcare company with 5,001-10,000 employees
Onboarding developers successfully while improving code security through IDE integration
Regarding room for improvement, we have some problems when onboarding new projects because the build process has to be done in a certain way, as Veracode analyzes the binaries and not the code by itself alone. If the process is not configured correctly, it doesn't work. That's one of the things that we are discussing with Veracode. Something positive that we've been able to do is submit formal feature requests to them, and they are working on them; they've already solved some of them. This encourages us to propose new ideas and improvements. Another improvement that we asked for this use case is to be able to configure how Veracode Fix proposes and fixes because sometimes it makes proposals using libraries that go against our architecture design made by the enterprise architecture team. For example, we want them to propose using another library, and that's something we already asked Veracode, and they are working on it. We want to specify when you see this kind of vulnerability, you can only propose these two options.
Read full review
KevinMcCarthy - PeerSpot reviewer
KevinMcCarthy
Security Manager at Klearnow
Helps with Zero-day protection
We use the solution for Zero-day protection.  The solution stops any kind of remote code execution.  The tool's dashboard needs to load since it is not responsive and takes time to load.  I have been using the product for a year.  I would rate the tool's stability a six out of ten.  I would…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I appreciate Veracode's SAST and SCA features, which help to find open-source vulnerabilities. I'd estimate it's about 98% accurate, though some false positives occasionally exist. Our team has been using it for a long time."
"Before Veracode, the application was deployed to the production server and there would be a lot of bugs and issues. Once we implemented the Veracode scan, the full deployment issues were drastically reduced."
"The static scan and the detailed reports, which include issue information and permissions, are the most valuable features."
"Good static analysis and dynamic analysis."
"It is a cloud-based platform, so every organization or every security team in the organization is concerned about uploading their code because ultimately the code is intellectual property. The most useful thing about Veracode is that if you want to upload the code, they accept only byte code. They do not accept the plain source code as an input. The code is converted into binary code, and it is uploaded to Veracode. So, it is quite secure. It also has the automation feature where you can integrate security during the initial stages of your software development life cycle. It is pretty much easy with Veracode. Veracode provides integration with multiple tools and platforms, such as Visual Studio, Java, and Eclipse. Developers can integrate with those tools by using Jenkins. The security consultation or the support that they provide is also really good. Its user management is also good. You can restrict the users for a particular application so that only certain developers will be able to see the code that has been scanned. Their reporting model is really good. For each customer, they provide a program manager. Every quarter, they have their reviews about how much it has scanned. They also ensure that the tool has been used efficiently."
"Veracode creates a list of issues. You can go through them one by one and click through to a new window with all the information about the issue discovered."
"The one thing we really liked about Veracode when we got it was the consultation calls; that our developers are able to schedule them on their own, instead of going to a "gatekeeper." They upload their code, they have questions, they schedule it, they speak with someone on the other side who is an expert, they can speak developer-to-developers."
"Veracode has positively impacted our organization by giving us a good chance to focus on development as we don't need to focus as much on compliance-related matters after we have ensured this level of security on the security posture management for our application."
More Veracode pros
"We use the solution for Zero-day protection."
 

Cons

"The solution could improve the Dynamic Analysis Security Testing(DAST)."
"Their platform is not consistent. It needs a lot of user experience updates. It's slow performing, and they log you out of the system every 15 minutes, so using the platform is challenging from a developer's perspective because you always have to log in."
"The ideal situation in terms of putting the results in front of the developers would be with Veracode integration into the developer environment (IDE). They do have a plugin, which we've used in the past, but we were not as positive about it."
"Veracode's container scanning could be improved. We containerize all the platforms we use inside a Docker image. For example, we create a Microsoft Docker image that we build our application on top of. I would like Veracode to implement IT scans before we commit the code."
"Veracode Static Analysis lacks penetration testing, so that's a concern. The tool is also unable to scan when it's a C or C++ model, so that's another area for improvement."
"The area with the most room for improvement is the speed and responsiveness of the query, as it is usually very slow."
"Veracode can improve the licensing model as it is a bit confusing."
"It's problematic if you want to integrate it with your pipelines because the documentation is not so well written and it's full of typos. It is not presented in a structured way. It does not say, "If you want to achieve this particular thing, you have to do steps 1, 2, and 3." Instead, it contains bits of information in different parts, and you have to read everything and then understand the big picture."
More Veracode cons
"The tool's dashboard needs to load since it is not responsive and takes time to load."
 

Pricing and Cost Advice

"They just changed their pricing model two weeks ago. They went from a per-app license to a per-megabyte license. I know that the dynamic scan was $500 per app. Static analysis was about $4500 yearly. The license is only for the number of users, it doesn't matter what data you put in there. That was the old model. I do not know how the new model works."
"I recommend going for a one-year licensing with CA, because currently they are the leaders in this field with more features and a much better turn around time with a cheaper position, but there are a lot of new companies coming up in the market and they are building up their platforms."
"Depending on the number of users, my company makes payments toward the solution's licensing costs."
"Compared to other similar products, the licensing and pricing are definitely competitive. If you see Checkmarx as the market leader, then we are talking about Veracode being a fraction of the cost. You also have to consider your hidden costs: you need a team to maintain it, a server, and resources. From that point of view, Veracode is great because the cost is really a fraction of many competitors."
"We're very comfortable with their model. We think they're a good value. We worked very closely with Veracode on understanding their license model, understanding what comprises the fee and what does not. With their assistance in design, we decomposed our application in a way where we are scanning a very significant amount of code without wasting their capacity and generating redundant reported issues. You scan in profiles, per se. And we work with them, in their offices, to design the most effective approach. So the advice I would have for customers is, you can get up and live fast, but work closely with Veracode to refine the method you use for scanning and the way you compile the applications. There's a concept called entry-point scanning, and that's probably not used well by the rest of their customers. We see our licensing as a good value because we leverage it heavily."
"The pricing for Veracode is high, making it difficult for beginners to afford."
"The pricing is fair."
"It is very reasonably priced compared to what we were paying our previous vendor. For the same price, we are getting much more value and reducing our AppSec costs from 40 to 50 percent."
More Veracode pricing and cost advice
"I would rate the solution's pricing an eight out of ten."
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
See recommendations
879,889 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
17%
Computer Software Company
14%
Manufacturing Company
10%
Government
6%
Manufacturing Company
31%
Healthcare Company
17%
Comms Service Provider
8%
University
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business69
Midsize Enterprise44
Large Enterprise115
No data available
 

Questions from the Community

Which gives you more for your money - SonarQube or Veracode?
SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use...
See all answers
What do you like most about Veracode Static Analysis?
I like its integration with GitHub. I like using it from GitHub. I can use the GitHub URL and find out the vulnerabilities.
See all answers
What is your experience regarding pricing and costs for Veracode Static Analysis?
My experience with pricing, setup cost, and licensing for Veracode is that it is fairly moderate.
See all answers
Ask a question
Earn 20 points
 

Comparisons

SonarQube vs Veracode Logo
SonarQube vs Veracode
Compared 12% of the time
Checkmarx One vs Veracode Logo
Checkmarx One vs Veracode
Compared 8% of the time
GitHub Advanced Security vs Veracode Logo
GitHub Advanced Security vs Veracode
Compared 5% of the time
OWASP Zap vs Veracode Logo
OWASP Zap vs Veracode
Compared 4% of the time
Coverity Static vs Veracode Logo
Coverity Static vs Veracode
Compared 4% of the time
More Veracode Competitors
Jscrambler vs Virsec Security Platform Logo
Jscrambler vs Virsec Security Platform
Compared 31% of the time
CrowdStrike Falcon vs Virsec Security Platform Logo
CrowdStrike Falcon vs Virsec Security Platform
Compared 25% of the time
SonarQube vs Virsec Security Platform Logo
SonarQube vs Virsec Security Platform
Compared 23% of the time
Tenable.io Web Application Scanning vs Virsec Security Platform Logo
Tenable.io Web Application Scanning vs Virsec Security Platform
Compared 21% of the time
More Virsec Security Platform Competitors
 

Product Reports

Buyer's Guide
Veracode
December 2025
Veracode reportDownload Veracode product report
Buyer's Guide
Vulnerability Management
January 2026
Virsec Security Platform reportDownload Virsec Security Platform product report
 

Also Known As

Crashtest Security , Veracode Detect
Virsec
 

Overview

Veracode is a leading provider of application security solutions, offering tools to identify, mitigate, and prevent vulnerabilities across the software development lifecycle. Its cloud-based platform integrates security into DevOps workflows, helping organizations ensure that their code remains secure and compliant with industry standards.

Veracode supports multiple application security testing types, including static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), and manual penetration testing. These tools are designed to help developers detect vulnerabilities early in development while maintaining speed in deployment. Veracode also emphasizes scalability, offering features for enterprises that manage a large number of applications across different teams. Its robust reporting and analytics capabilities allow organizations to continuously monitor their security posture and track progress toward remediation.

What are the key features of Veracode?

  • Static Analysis (SAST) - Scans source code for vulnerabilities before deployment.
  • Dynamic Analysis (DAST) - Examines applications in a running state to detect flaws in real-time.
  • Software Composition Analysis (SCA) - Identifies risks in open-source libraries and third-party components.
  • Manual Penetration Testing - Offers expert analysis for more complex vulnerabilities.
  • Integrations with DevOps tools - Seamlessly integrates with CI/CD pipelines for automated security checks.

What benefits should users consider in Veracode reviews?

  • Early detection of vulnerabilities - Helps developers fix security issues early in the development process.
  • Scalability - Supports organizations with large-scale application portfolios.
  • Compliance support - Ensures applications meet various security standards and regulations.
  • Developer training - Provides tools for educating developers on secure coding practices.
  • Comprehensive reporting - Offers detailed reports that track remediation and risk trends.

Veracode is widely adopted in industries like finance, healthcare, and government, where compliance and security are critical. It helps these organizations maintain strict security standards while enabling rapid development through its integration with Agile and DevOps methodologies.


Veracode helps businesses secure their applications efficiently, ensuring they can deliver safe and compliant software at scale.

Veracode

Virsec Security Platform offers advanced protection for applications by ensuring real-time detection and prevention of unknown threats. It integrates seamlessly across environments to provide robust, runtime security for critical workloads.

Specializing in memory-based attack prevention, Virsec ensures precise threat identification and mitigation with minimal impact on performance. Its deterministic approach identifies malicious activity with high accuracy, safeguarding against exploits and zero-day attacks. Trust is enhanced through transparency and actionable insights, making it a preferred choice for protecting sensitive applications.

What are the most important features of Virsec Security Platform?

  • Runtime Application Self-Protection (RASP): Provides real-time security to prevent vulnerabilities during operation.
  • Memory Exploit Detection: Identifies and mitigates memory-based threats effectively.
  • Web Application Security: Delivers comprehensive protection against web threats.
  • Scalable Deployment: Easily integrates with existing infrastructure for wide-ranging protection.
  • Insightful Reporting: Offers detailed reports for informed decision-making.

What are the benefits and ROI of using Virsec Security Platform?

  • Enhanced Security Posture: Mitigates risks with pinpoint accuracy, reducing downtime.
  • Cost Efficiency: Lowers the total cost of ownership by minimizing breaches.
  • Seamless Integration: Reduces complexity and enhances existing defenses.
  • Improved Reliability: Increases confidence in application security through constant monitoring.
  • Real-time Threat Detection: Provides immediate alerts, allowing swift response to incidents.

Virsec Security Platform is particularly beneficial in industries like finance, healthcare, and government, where data protection is critical. Its implementation enhances compliance with industry standards and offers peace of mind by protecting sensitive data against sophisticated threats. The platform's adaptability to diverse environments ensures consistent, reliable security across platforms, making it an ideal fit for industries demanding robust protection measures.

Virsec Systems
 

Sample Customers

Manhattan Associates, Azalea Health, Sabre, QAD, Floor & Decor, Prophecy International, SchoolCNXT, Keap, Rekner, Cox Automotive, Automation Anywhere, State of Missouri and others.
Broadcom, Allstate, Department of Homeland Security
Buyer's Guide
Application Security Tools
January 2026
Download Free Report
Find out what your peers are saying about SonarSource Sàrl, Veracode, Checkmarx and others in Application Security Tools. Updated: January 2026.
DOWNLOAD NOW
879,889 professionals have used our research since 2012.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.