We performed a comparison between Kiuwan and Veracode based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I personally like the way it breaks down security vulnerabilities with LoC at first glance."
"The feature that I have found the most valuable in Kiuwan is the speed of scanning. Compared to other SaaS tools I have used, Kiuwan is much quicker in performing scans. I have not yet used it on a large code base, but from what I have experienced, it is efficient and accurate. Additionally, I have used it both manually and in an automated pipeline, and both methods have been effective. The speed of scanning is what makes it valuable to me."
"I have found the security and QA in the source code to be most valuable."
"Software analytics for a lot of different languages including ABAP."
"I find it immensely helpful because it's not just about generating code; it's about ensuring efficiency in the execution."
"I like that it provides a detailed report that lets you know the risk index and the vulnerability."
"The solution offers very good technical support."
"The solution has a continuous integration process."
"Vericode's policy reporting for ensuring compliance with industry standards and regulations is great. I"
"I don't have to have a team of developers behind me that keep up with all the latest threats because the subscription service they provide for me does that."
"The user interface is quick, familiar, and user-friendly and makes navigation to other software very easy."
"The benefits are quick discovery and understanding of software vulnerabilities that we are putting in our own code. By discovering them quickly enough, we can triage them and determine the best ways to remediate them and prevent them from happening in the future."
"I contacted the solution's technical support during the automation part, and it went well, after which I never faced any issues."
"The integration capabilities with our existing development tools are very good."
"It scans for the OWASP top-10 security flaws at the dynamic level and, at the static level, it scans for all the warnings so that developers can fix the code before we go to UAT or the next phase."
"It is scalable and quick to deploy into the site and the pipelines. The reports and analytics are good, and the false positive rate is low. It gives true results."
"The configuration hasn't been that good."
"I would like to see better integration with Azure DevOps in the next release of this solution."
"I would like to see additional languages supported."
"Integration of the programming tools could be improved."
"The integration process could be improved. It'll also help if it could generate reports automatically. But I'm not sure about the effectiveness of the reports. This is because, in our last project, we still found some key issues that weren't captured by the Kiuwan report."
"Perhaps more languages supported."
"I would like to see better integration with the Visual Studio and Eclipse IDEs."
"The QA developer and security could be improved."
"I'd like to see more development tools and platforms integrated together with Veracode to amplify the solution's effectiveness."
"There are times when certain modules cannot be scanned automatically, requiring us to manually select these modules and initiate the scanning process on our side."
"The reports on offer are too verbose."
"I would love to be able to do a dynamic sandbox scan. I think that that would allow us to really get a lot more buy-in from the software development teams."
"It could be improved with support for more programming languages, like SQL."
"The GUI requires significant simplification, as its current complexity creates a steep learning curve for new users."
"Straightforward to set up, but the configuration of the rules engine is difficult and complicated."
"When Veracode updates the pool of tests and security checks, it could be a little more transparent about what it is releasing. It's not clear what it's adding. They do thousands of checks, and when they add more, there aren't many details about what the new tests are doing."
Kiuwan is ranked 22nd in Application Security Tools with 23 reviews while Veracode is ranked 2nd in Application Security Tools with 194 reviews. Kiuwan is rated 8.6, while Veracode is rated 8.2. The top reviewer of Kiuwan writes "Though a stable tool, the UI needs improvement". On the other hand, the top reviewer of Veracode writes "Helps to reduce false positives and prevent vulnerable code from entering production, but does not support incremental scanning ". Kiuwan is most compared with SonarQube, Checkmarx One, Snyk, Fortify on Demand and SonarCloud, whereas Veracode is most compared with SonarQube, Checkmarx One, Fortify on Demand, Snyk and OWASP Zap. See our Kiuwan vs. Veracode report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.