Try our new research platform with insights from 80,000+ expert users

Contrast Security Assess vs Synopsys Defensics comparison

The compared Contrast Security and Black Duck solutions aren't in the same category. Contrast Security is ranked #24 in SAST , with an average rating of 8.7, and holds a 0.4% mindshare in the category. Black Duck is ranked #5 in FTT , and holds a 19.8% mindshare. Additionally, 100% of Contrast Security users are willing to recommend the solution, compared to 100% of Black Duck users who would recommend it.
Contrast Security Assess
Read 11 Contrast Security Assess reviews
  • 922 Views
  • 599 Comparison Views
100% willing to recommend
Synopsys Defensics
Read 4 Synopsys Defensics reviews
  • 159 Views
  • 97 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Contrast Security Assess and Synopsys Defensics based on real PeerSpot user reviews.

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Static Application Security Testing (SAST) Report (Updated: October 2024).
Buyer's Guide
Static Application Security Testing (SAST)
October 2024
Download the complete report
Helped 816,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Scalability Issues

Sentiment score
8.3
Contrast Security Assess provides scalable application deployment in various environments, adapting to cloud and on-premises with robust change management.
No sentiment score available
 

Valuable Features

Sentiment score
8.2
Contrast Security Assess excels in IAST, reducing false positives, offering real-time insights and seamless security integration for developers.
No sentiment score available
 

Room For Improvement

Sentiment score
5.0
Contrast Security Assess needs better documentation, tech support, agent upgrades, scanning rules, reporting, and improved setup for comprehensive usability.
No sentiment score available
 

Stability Issues

Sentiment score
8.8
Contrast Security Assess is praised for stability, easy deployment, and minimal downtime, despite ColdFusion support challenges.
No sentiment score available
 

Customer Service

Sentiment score
9.0
Contrast Security Assess offers responsive support with knowledgeable staff, but some users seek improved response times for complex issues.
No sentiment score available
 

Setup Cost

Sentiment score
2.0
Contrast Security Assess offers flexible, cost-effective pricing based on applications or servers, suitable for various enterprise environments.
No sentiment score available
 

Categories and Ranking

Contrast Security Assess
Average Rating
8.8
Reviews Sentiment
7.2
Number of Reviews
11
Ranking in other categories
Application Security Tools (29th), Static Application Security Testing (SAST) (24th)
Synopsys Defensics
Average Rating
8.6
Number of Reviews
4
Ranking in other categories
Fuzz Testing Tools (5th)
 

Mindshare comparison

While both are Quality Assurance solutions, they serve different purposes. Contrast Security Assess is designed for Static Application Security Testing (SAST) and holds a mindshare of 0.4%, down 0.5% compared to last year.
Synopsys Defensics, on the other hand, focuses on Fuzz Testing Tools, holds 19.8% mindshare, up 12.6% since last year.
Static Application Security Testing (SAST)
Fuzz Testing Tools
 

Featured Reviews

Mustufa Bhavnagarwala - PeerSpot reviewer
A stable solution that provides lots of details on web-based vulnerabilities and source code reviews
Technical support for the solution should be faster. We have to further analyze what kind of CVEs are in the reported libraries and what part of the code is affected. That analysis can be added to the report that Contrast Security Assess gives. Further analysis should be done of the third-party libraries report that it gives. The solution should provide more details in the section where it shows that third-party libraries have CVEs or some vulnerabilities. The onboarding or the setup of Contrast Security Assess can get a little easier.
Read full review
it_user586716 - PeerSpot reviewer
Technical support provided protocol-specific documentation to prove that some positives were not false.
A security assurance engineer was able to perform due diligence across all network-facing protocols. My prior organization designed, developed and deployed a Network Attached Storage (NAS) appliance. A key part of the company wide security assurance program for all products, is to perform penetration testing against all network facing IP ports. For the web, SSL and RESTful APIs, there are very good COTS and open source tools to perform Dynamic Application Security Testing (DAST) testing. Unfortunately for NAS protocols like SMB, NFS, CIFS, and iSCSI, I researched and found that Codenomicon Defensics was the only viable source to satisfy our DAST requirements. Through the use of Selenium for automated web testing, it was easily found out that Codenomicon Defensics could be integrated into our Continuous Integration / Continuous Deployment (CI / CD) Agile processes, specific to automated testing. Also, like many of the other application security testing products, Defensics incorporates automatic update support and works on Windows, MacOS and Linux desktops.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
See recommendations
816,406 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
19%
Manufacturing Company
11%
Computer Software Company
10%
Government
7%
Computer Software Company
22%
Manufacturing Company
18%
Financial Services Firm
9%
Healthcare Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Contrast Security Assess?
When we access the application, it continuously monitors and detects vulnerabilities.
See all answers
What is your experience regarding pricing and costs for Contrast Security Assess?
The product's pricing is low. I would rate it a two out of ten.
See all answers
What needs improvement with Contrast Security Assess?
Technical support for the solution should be faster. We have to further analyze what kind of CVEs are in the reported libraries and what part of the code is affected. That analysis can be added to ...
See all answers
Ask a question
Earn 20 points
 

Comparisons

Seeker vs Contrast Security Assess Logo
Seeker vs Contrast Security Assess
Compared 19% of the time
Veracode vs Contrast Security Assess Logo
Veracode vs Contrast Security Assess
Compared 16% of the time
OWASP Zap vs Contrast Security Assess Logo
OWASP Zap vs Contrast Security Assess
Compared 12% of the time
SonarQube Server (formerly SonarQube) vs Contrast Security Assess Logo
SonarQube Server (formerly SonarQube) vs Contrast Security Assess
Compared 9% of the time
Mend.io vs Contrast Security Assess Logo
Mend.io vs Contrast Security Assess
Compared 7% of the time
More Contrast Security Assess Competitors
SonarQube Server (formerly SonarQube) vs Synopsys Defensics Logo
SonarQube Server (formerly SonarQube) vs Synopsys Defensics
Compared 27% of the time
Snyk vs Synopsys Defensics Logo
Snyk vs Synopsys Defensics
Compared 25% of the time
Fortify on Demand vs Synopsys Defensics Logo
Fortify on Demand vs Synopsys Defensics
Compared 10% of the time
HCL AppScan vs Synopsys Defensics Logo
HCL AppScan vs Synopsys Defensics
Compared 9% of the time
PortSwigger Burp Suite Professional vs Synopsys Defensics Logo
PortSwigger Burp Suite Professional vs Synopsys Defensics
Compared 9% of the time
More Synopsys Defensics Competitors
 

Product Reports

Buyer's Guide
Contrast Security Assess
November 2024
Contrast Security Assess reportDownload Contrast Security Assess product report
Buyer's Guide
GitLab vs. Synopsys Defensics
October 2024
Synopsys Defensics reportDownload Synopsys Defensics product report
 

Also Known As

Contrast Assess
Defensics, Codenomicon Defensics
 

Learn More

Contrast Security
Black Duck
 

Overview

Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyberattacks, heralding the new era of self-protecting software. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate assessment and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has sensors that work actively inside applications to uncover vulnerabilities, prevent data breaches, and secure the entire enterprise from development, to operations, to production.

Defensics® fuzz testing is a comprehensive, powerful, and automated black box solution that enables organizations to effectively and efficiently discover and remediate security weaknesses in software. By taking a systematic and intelligent approach to negative testing, Defensics allows organizations to ensure software security without compromising on product innovation, increasing time to market, or inflating operational costs.

 

Sample Customers

Williams-Sonoma, Autodesk, HUAWEI, Chromeriver, RingCentral, Demandware.
Coriant, CERT-FI, Next Generation Networks
Buyer's Guide
Static Application Security Testing (SAST)
October 2024
Download Free Report
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST). Updated: October 2024.
DOWNLOAD NOW
816,406 professionals have used our research since 2012.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.