Right now, I am enjoying its in-browser, which also helps quite a bit. It speeds up our vulnerability assessment and penetration testing. All the active scanning that it can do is also quite a lot helpful. For example, you can check to see if there are any payment systems that exist on a server, or username and password brute force analysis." "I find the attack model quite amazing, where I can write my scripts and load my scripts as well, which helps quite a bit. You are able to attach different plugins to the security scan to add features.
We use almost all of the features for different kinds of customers and needs." "The extension that it provides with the community version for the skills mapping is excellent." "PortSwigger Burp Suite does not hamper the node of the server, and it does not shut down the server if it is running." "I have found this solution has more plugins than other competitors which is a benefit. "The most valuable feature is Burp Collaborator." "The reporting part is the most valuable. It provides good reports." "The most valuable features are that you can do static analysis and dynamic analysis on a scheduled basis and that you can push the findings into JIRA." "The time savings has been tremendous. Veracode helps us to analyze all the security flaws, discrepancies, and vulnerabilities inside the application. When an application is being used by the public, security is a challenge. You can see what are the flaws and what could be the best possible resolution to minimize those flaws in the application. You can easily go through all the analyses done by Veracode. They are responsive and very knowledgeable." "The findings of their security analysis are wonderful. The lack of initial lead time or initial overhead to get going is the primary advantage." "In terms of secure development, the SAST scan is very useful because we are able to identify security flaws in the code base itself, for the application." "The Veracode technical support is very good. You just log in, create an application profile, associate a security configuration, and that's about it.
There is no initial time needed to set up an application.
Veracode is natively supported and we don't have to work with APIs." "It is SaaS hosted. This is an added value because we work with Azure DevOps. If we have any outstanding issues, they get serviced and addressed." "You can easily integrate it with Azure DevOps. They assigned us a TAM and once a week, we have a brief engagement with the TAM to verify that everything's going well.
0 kommentar(er)
