Try our new research platform with insights from 80,000+ expert users

Coverity vs Tenable Security Center comparison

The compared Black Duck and Tenable solutions aren't in the same category. Black Duck is ranked #4 in SAST , with an average rating of 7.9, and holds a 8.4% mindshare in the category. Tenable is ranked #1 in RBVM , with an average rating of 8.4, and holds a 31.4% mindshare. Additionally, 88% of Black Duck users are willing to recommend the solution, compared to 95% of Tenable users who would recommend it.
Coverity
Read 41 Coverity reviews
  • 14,372 Views
  • 9,729 Comparison Views
88% willing to recommend
Tenable Security Center
Read 51 Tenable Security Center reviews
  • 9,279 Views
  • 6,803 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Coverity and Tenable Security Center based on real PeerSpot user reviews.

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Static Application Security Testing (SAST) Report (Updated: October 2024).
Buyer's Guide
Static Application Security Testing (SAST)
October 2024
Download the complete report
Helped 815,854 peers since 2012
 

Categories and Ranking

Coverity
Average Rating
7.8
Reviews Sentiment
6.5
Number of Reviews
41
Ranking in other categories
Static Application Security Testing (SAST) (4th)
Tenable Security Center
Average Rating
8.2
Reviews Sentiment
7.5
Number of Reviews
51
Ranking in other categories
Vulnerability Management (4th), Cloud Security Posture Management (CSPM) (13th), Risk-Based Vulnerability Management (1st)
 

Mindshare comparison

Coverity and Tenable Security Center aren’t in the same category and serve different purposes. Coverity is designed for Static Application Security Testing (SAST) and holds a mindshare of 8.4%, up 7.2% compared to last year.
Tenable Security Center, on the other hand, focuses on Risk-Based Vulnerability Management, holds 31.4% mindshare, down 38.9% since last year.
Static Application Security Testing (SAST)
Risk-Based Vulnerability Management
 

Featured Reviews

Md. Shahriar Hussain - PeerSpot reviewer
May 3, 2024
Offers impressive reporting features with user-friendliness and high scalability
The solution can be easily setup but requires heavy integration due to the multiple types of port and programming languages involved. Comparing the resource requirements of the solution I would say it can be installed effortlessly. I would rate the initial setup an eight out of ten. A professional needs some pre-acquired knowledge to manage Coverity's deployment process, but the local solution partners provide support well enough for trouble-free deployment. The overall deployment process of Coverity took around two and a half hours in our organization. The deployment duration depends upon the operating system and resources including high-end RAM and CPU processors.
Read full review
Md. Shahriar Hussain - PeerSpot reviewer
Feb 23, 2024
A security solution for vulnerability assessment with automated scans
Additional costs are associated with using the solution, as additional scanners are required for different endpoints connected to the Tenable Security Center. If Tenable Security Center could extract information from these scanners automatically rather than manually, it would enhance user-friendliness for customers. For example, suppose I manually conducted CIS hardening or compliance scoring in a separate data centre. These scores should also be reflected in the Tenable Security Center dashboard. Since the scanner is connected to the Tenable Security Center, the dashboard should display the direct scan results from the general security centre and the connected scanners. There could be unusual activities or attacks with the rising AI-related issues or threats that the Tenable Security Center could track in the future.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Coverity is that it shows examples of what is actually wrong with the code."
"The most valuable feature is the integration with Jenkins."
"The solution has helped to increase staff productivity and improved our work significantly by approximately 20 percent."
"The product has deeper scanning capabilities."
"The solution effectively identifies bugs in code."
"The security analysis features are the most valuable features of this solution."
"We were very comfortable with the initial setup."
"The reporting feature is up to the mark."
More Coverity pros
"Initial setup was pretty straightforward."
"The predictive prioritization features are pretty good. They do a lot of research and we trust the research that they do internally. They have knowledge of what's going on with many companies, where we only get a view into what's going on here. So the ability to get best practices out of them as part of this solution, is valuable to us."
"This product has the best results in terms of the lowest number of false-positives and false-negatives."
"Tenable's most valuable features are the credential scan, vulnerability reports, and vulnerability ratings (VPR)."
"The feature we've liked most recently was being able to take the YARA rules from FireEye and put them into Tenable's scan for the most recent SolarWinds exploit. That was really useful."
"The most valuable feature of the product is the Assurance Report Card, which gives us an overview of the security poster in just a simple glance."
"The most valuable features in Tenable SC are scanning and analysis."
"We really love the Security Center dashboard. It basically performs vulnerability scanning and then outputs a vulnerability data."
More Tenable Security Center pros
 

Cons

"Coverity could improve the ease of use. Sometimes things become difficult and you need to follow the guides from the website but the guides could be better."
"Coverity is not stable."
"Sometimes, vulnerabilities remain unidentified even after setting up the rules."
"It should be easier to specify your own validation routines and sanitation routines."
"It would be great if we could customize the rules to focus on critical issues."
"The setup takes very long."
"Right now, the Coverity executable is around 1.2GB to download. If they can reduce it to approximately 600 or 700MB, that would be great. If they decrease the executable, it will be much easier to work in an environment like Docker."
"Reporting engine needs to be more robust."
More Coverity cons
"Tenable SC can improve by adding more integrations with HCI-type tools and more accurate vulnerability detection."
"The reporting needs a lot of work on the template."
"The web application scanning area can be improved."
"Certain aspects require manual effort, such as exporting and analyzing data for our dashboards. The built-in components of the Tenable solution are somewhat clumsy that require external tools. So, this is an area of improvement."
"The tool's initial configuration is not so easy."
"The integration is very good, although it still needs to improve."
"It could be more user-friendly for creating custom reports."
"It's good at creating information, it's good creating dashboards, it's good at creating reports, but if you want to take that reporting metadata and put it into another tool, that is a little bit lacking."
More Tenable Security Center cons
 

Pricing and Cost Advice

"I would rate Coverity's pricing as a nine out of ten. It's already very expensive, and it's a problem for us to get more licenses due to the price. The pricing model has some good aspects - for example, a personal license gives access to all languages without code limitations, which is better than some competitors. However, it's still a lot of money for us to spend."
"I rate Coverity's price a ten on a scale of one to ten, where one is cheap and ten is expensive."
"Coverity is quite expensive."
"The tool was fairly priced."
"It is expensive."
"The solution is affordable."
"Coverity’s price is on the higher side. It should be lower."
"This is a pretty expensive solution. The overall value of the solution could be improved if the price was reduced. Licensing is done on an annual basis."
More Coverity pricing and cost advice
"Compared to other companies or other products it could maybe be a little bit less, but the price is okay. I would say it's not very expensive."
"I rate the solution's price as seven on a scale of one to ten, where one is cheap and ten is expensive. The tool is quite expensive."
"We're a Fortune 500 company... our licensing costs [are] in the seven figures."
"The tool costs around 15,000 Saudi riyals monthly."
"Tenable.sc is more expensive than its competitors."
"The tool provides competitive pricing."
"I use a local license to perform penetration testing and I'm pretty happy with everything when it comes to pricing and licensing."
"Tenable is open-source."
More Tenable Security Center pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
See recommendations
815,854 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
32%
Computer Software Company
15%
Financial Services Firm
8%
Government
4%
Educational Organization
21%
Computer Software Company
11%
Government
11%
Financial Services Firm
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How would you decide between Coverity and Sonarqube?
We researched Coverity, but in the end, we chose SonarQube. SonarQube is a tool for reviewing code quality and security. It helps to guide our development teams during code reviews by providing rem...
See all answers
What do you like most about Coverity?
The solution has improved our code quality and security very well.
See all answers
What is your experience regarding pricing and costs for Coverity?
We do it yearly.
See all answers
What do you like most about Tenable SC?
The tool's dashboard and reporting capabilities match our company's needs since we are able to modify the basic view to create a new dashboard, and it works out very well for our needs.
See all answers
What is your experience regarding pricing and costs for Tenable SC?
Tenable Security Center is considered pricey compared to other solutions, yet relatively cheaper than some like Qualys. However, when compared to Rapid7, it is more expensive. I rate the pricing si...
See all answers
What needs improvement with Tenable SC?
The dashboard templates are limited. More templates that align with our daily needs would be beneficial. Current dashboards are available for Linux, separate unit systems, and other systems, but th...
See all answers
 

Comparisons

SonarQube Server (formerly SonarQube) vs Coverity Logo
SonarQube Server (formerly SonarQube) vs Coverity
Compared 54% of the time
Klocwork vs Coverity Logo
Klocwork vs Coverity
Compared 7% of the time
Fortify on Demand vs Coverity Logo
Fortify on Demand vs Coverity
Compared 7% of the time
Checkmarx One vs Coverity Logo
Checkmarx One vs Coverity
Compared 6% of the time
Veracode vs Coverity Logo
Veracode vs Coverity
Compared 5% of the time
More Coverity Competitors
Tenable Vulnerability Management vs Tenable Security Center Logo
Tenable Vulnerability Management vs Tenable Security Center
Compared 26% of the time
Qualys VMDR vs Tenable Security Center Logo
Qualys VMDR vs Tenable Security Center
Compared 13% of the time
Rapid7 InsightVM vs Tenable Security Center Logo
Rapid7 InsightVM vs Tenable Security Center
Compared 11% of the time
Tenable Nessus vs Tenable Security Center Logo
Tenable Nessus vs Tenable Security Center
Compared 10% of the time
The NodeZero Platform vs Tenable Security Center Logo
The NodeZero Platform vs Tenable Security Center
Compared 7% of the time
More Tenable Security Center Competitors
 

Product Reports

Buyer's Guide
Coverity
November 2024
Coverity reportDownload Coverity product report
Buyer's Guide
Tenable Security Center
October 2024
Tenable Security Center reportDownload Tenable Security Center product report
 

Also Known As

Synopsys Static Analysis
Tenable.sc, Tenable Unified Security, Tenable SecurityCenter
 

Learn More

Black Duck
Tenable
 

Overview

Coverity gives you the speed, ease of use, accuracy, industry standards compliance, and scalability that you need to develop high-quality, secure applications. Coverity identifies critical software quality defects and security vulnerabilities in code as it’s written, early in the development process, when it’s least costly and easiest to fix. With the Code Sight integrated development environment (IDE) plugin, developers get accurate analysis in seconds in their IDE as they code. Precise actionable remediation advice and context-specific eLearning help your developers understand how to fix their prioritized issues quickly, without having to become security experts. 

Coverity seamlessly integrates automated security testing into your CI/CD pipelines and supports your existing development tools and workflows. Choose where and how to do your development: on-premises or in the cloud with the Polaris Software Integrity Platform (SaaS), a highly scalable, cloud-based application security platform. Coverity supports more than 20 languages and 200 frameworks and templates.

Get a risk-based view of your IT, security and compliance posture so you can quickly identify, investigate and prioritize your most critical assets and vulnerabilities.

Managed on-premises and powered by Nessus technology, the Tenable Security Center (formerly Tenable.sc) suite of products provides the industry’s most comprehensive vulnerability coverage with real-time continuous assessment of your network. It’s your complete end-to-end vulnerability management solution.

 

Sample Customers

SAP, Mega International, Thales Alenia Space
IBM, Sempra Energy, Microsoft, Apple, Adidas, Union Pacific
Buyer's Guide
Static Application Security Testing (SAST)
October 2024
Download Free Report
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST). Updated: October 2024.
DOWNLOAD NOW
815,854 professionals have used our research since 2012.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.