Coverity Static vs Tenable Security Center comparison

The compared Black Duck and Tenable solutions aren't in the same category. Black Duck is ranked #5 in SAST , with an average rating of 8.0, and holds a 6.0% mindshare in the category. Tenable is ranked #3 in RBVM , with an average rating of 8.7, and holds a 9.4% mindshare. Additionally, 89% of Black Duck users are willing to recommend the solution, compared to 96% of Tenable users who would recommend it.

Coverity Static

Read 43 Coverity Static reviews

11,349 Views
9,647 Comparison Views

89% willing to recommend

Tenable Security Center

Read 55 Tenable Security Center reviews

7,985 Views
3,673 Comparison Views

96% willing to recommend

Coverity Static

Tenable Security Center

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Coverity Static and Tenable Security Center based on real PeerSpot user reviews.

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST).

To learn more, read our detailed Static Application Security Testing (SAST) Report (Updated: September 2025).

Buyer's Guide

Static Application Security Testing (SAST)

September 2025

Download the complete report

Helped 871,688 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Coverity Static

Average Rating

7.8

Reviews Sentiment

6.5

Number of Reviews

Ranking in other categories

Static Application Security Testing (SAST) (5th)

Tenable Security Center

Average Rating

8.2

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

Vulnerability Management (4th), Cloud Security Posture Management (CSPM) (10th), Risk-Based Vulnerability Management (3rd)

Mindshare comparison

Coverity Static and Tenable Security Center aren’t in the same category and serve different purposes. Coverity Static is designed for Static Application Security Testing (SAST) and holds a mindshare of 6.0%, down 7.3% compared to last year.
Tenable Security Center, on the other hand, focuses on Risk-Based Vulnerability Management, holds 9.4% mindshare, down 19.9% since last year.

Static Application Security Testing (SAST) Market Share Distribution
Product	Market Share (%)
Coverity Static	6.0%
SonarQube Server (formerly SonarQube)	19.7%
Checkmarx One	10.0%
Other	64.3%

Static Application Security Testing (SAST)

Risk-Based Vulnerability Management Market Share Distribution
Product	Market Share (%)
Tenable Security Center	9.4%
Qualys VMDR	16.1%
Rapid7 InsightVM	13.8%
Other	60.7%

Risk-Based Vulnerability Management

Featured Reviews

Jaile Sebes

Senior Software Architect at Siemens Industry

Resolving critical software issues demands faster implementation and better integration

We use Coverity primarily to find issues such as software bugs and memory leaks, especially in C++ and C# projects. It helps us identify deadlocks, synchronization issues, and product crashes Coverity has been instrumental in resolving product crashes by detecting various issues like deadlocks.…

Read full review

OndrejKOVAC

Solution engineer at EXPERTience

Empower clients with risk-based vulnerability management through continuous workflow and valuable insights

Tenable Security Center could improve by implementing more dynamic data displays and translating reports into European languages. This is especially relevant in Central Eastern Europe, where clients often require reports in local languages. Additionally, the licensing model could be more flexible for managed security providers, similar to a pay-as-you-go model.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It has the lowest false positives."

"Coverity is easy to use and easy to integrate with CI."

"I encountered a bug with Coverity, and I opened a ticket. Support provided me with a workaround. So it's working at the moment, or at least it seems to be."

"The product has deeper scanning capabilities."

"The app analysis is the most valuable feature as I know other solutions don't have that."

"The most valuable feature of Coverity is its interprocedural analysis, which is advantageous because it compares favorably with other tools in terms of security and code analysis."

"One of the most valuable features is Contributing Events. That particular feature helps the developer understand the root cause of a defect. So you can locate the starting point of the defect and figure out exactly how it is being exploited."

"It's very stable."

More Coverity Static pros

"I find Tenable SC to be a very scalable product."

"Compliance and vulnerability scans are most valuable. Compliance scan helps in validating how our teams are complying, and vulnerability scan helps in future-proofing. Its vulnerability detection is accurate."

"The most valuable features of Tenable SC are scanning, reporting, dashboards, and automation."

"The most valuable feature of this solution is the vulnerability assessment."

"The customer service and support team at Tenable were extremely helpful."

"The tool provides us insight into the happens of the network and its hosts. It provides me with a list of hosts."

"The scanning part, the agent part – that's the valuable aspect."

"Their overall cost of service is pretty good."

More Tenable Security Center pros

Cons

"Coverity is not a user-friendly product."

"Reporting engine needs to be more robust."

"The solution is a bit complex to use in comparison to other products that have many plugins."

"The solution needs to improve its false positives."

"Right now, the Coverity executable is around 1.2GB to download. If they can reduce it to approximately 600 or 700MB, that would be great. If they decrease the executable, it will be much easier to work in an environment like Docker."

"Sometimes it's a bit hard to figure out how to use the product’s UI."

"The setup takes very long."

"Coverity takes a lot of time to dereference null pointers."

More Coverity Static cons

"The product could be user-friendly, and they could enhance the web application's security features."

"In terms of configuration, there is some level of flexibility that we are not able to achieve."

"Current web page needs improvement, slows down processes."

"The solution should provide better web application features and support."

"If I want to have a very low-managed scan policy, it's a lot of work to create something which is very basic. If I use a tool like Nmap, all I have to do is download it, install it, type in the command, and it's good to go. In Security Center, I have to go through a lot of work to create a policy that's very basic."

"We would like to see the inclusion of external IPs and simplified reporting that's easier to deal with"

"The biggest issue I have with the solution is when I'm using the scanning it picks up the original DNS of that device. That means, before we image it and actually change the DNS to something within our company structure, it'll just be random numbers and letters and Tenable will stick to that DNS for a long time."

"It could be more user-friendly for creating custom reports."

More Tenable Security Center cons

Pricing and Cost Advice

"This is a pretty expensive solution. The overall value of the solution could be improved if the price was reduced. Licensing is done on an annual basis."

"The pricing is very reasonable compared to other platforms. It is based on a three year license."

"Offers varying prices for different companies"

"I would rate the pricing a six out of ten, where one is low, and ten is high price."

"The solution's pricing is comparable to other products."

"The pricing is on the expensive side, and we are paying for a couple of items."

"I would rate the tool's pricing a one out of ten."

"Coverity’s price is on the higher side. It should be lower."

More Coverity Static pricing and cost advice

"The pricing depends upon the number of IPs."

"This solution's price is quite high."

"The tool costs around 15,000 Saudi riyals monthly."

"We pay around 60,000 on a yearly basis."

"My company needs to make yearly payments towards the licensing costs. The pricing of the solution falls in the mid-range level, so it is not too expensive"

"It is slightly more expensive than other solutions in the same sphere."

"We're a Fortune 500 company... our licensing costs [are] in the seven figures."

"I use a local license to perform penetration testing and I'm pretty happy with everything when it comes to pricing and licensing."

More Tenable Security Center pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.

See recommendations

871,688 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Manufacturing Company

32%

Computer Software Company

13%

Financial Services Firm

Government

Financial Services Firm

12%

Government

10%

Computer Software Company

10%

Manufacturing Company

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	8
Midsize Enterprise	6
Large Enterprise	31

By reviewers
Company Size	Count
Small Business	22
Midsize Enterprise	10
Large Enterprise	26

Questions from the Community

How would you decide between Coverity and Sonarqube?

We researched Coverity, but in the end, we chose SonarQube. SonarQube is a tool for reviewing code quality and security. It helps to guide our development teams during code reviews by providing rem...

See all answers

What do you like most about Coverity?

The solution has improved our code quality and security very well.

See all answers

What is your experience regarding pricing and costs for Coverity?

I do not know about the pricing.

See all answers

What do you like most about Tenable SC?

The tool's dashboard and reporting capabilities match our company's needs since we are able to modify the basic view to create a new dashboard, and it works out very well for our needs.

See all answers

What is your experience regarding pricing and costs for Tenable SC?

The price of Tenable Security Center is not so high; it's relatively a cheaper solution.

See all answers

What needs improvement with Tenable SC?

The reason for rating it an eight out of ten is that the initial setup could be easier; the setup is rather difficult, and that's why we are focusing on the initial hearing.

See all answers

Comparisons

SonarQube Server (formerly SonarQube) vs Coverity Static

Compared 37% of the time

Klocwork vs Coverity Static

Compared 8% of the time

Polyspace Code Prover vs Coverity Static

Compared 6% of the time

OpenText Core Application Security vs Coverity Static

Compared 6% of the time

CodeSonar vs Coverity Static

Compared 6% of the time

More Coverity Static Competitors

Qualys VMDR vs Tenable Security Center

Compared 11% of the time

Rapid7 InsightVM vs Tenable Security Center

Compared 11% of the time

Tenable Nessus vs Tenable Security Center

Compared 10% of the time

Tenable Vulnerability Management vs Tenable Security Center

Compared 8% of the time

The NodeZero Platform vs Tenable Security Center

Compared 6% of the time

More Tenable Security Center Competitors

Product Reports

Buyer's Guide

Coverity Static

October 2025

Download Coverity Static product report

Buyer's Guide

Tenable Security Center

September 2025

Download Tenable Security Center product report

Also Known As

Synopsys Static Analysis

Tenable.sc, Tenable Unified Security, Tenable SecurityCenter

Overview

Coverity gives you the speed, ease of use, accuracy, industry standards compliance, and scalability that you need to develop high-quality, secure applications. Coverity identifies critical software quality defects and security vulnerabilities in code as it’s written, early in the development process, when it’s least costly and easiest to fix. With the Code Sight integrated development environment (IDE) plugin, developers get accurate analysis in seconds in their IDE as they code. Precise actionable remediation advice and context-specific eLearning help your developers understand how to fix their prioritized issues quickly, without having to become security experts.

Coverity seamlessly integrates automated security testing into your CI/CD pipelines and supports your existing development tools and workflows. Choose where and how to do your development: on-premises or in the cloud with the Polaris Software Integrity Platform (SaaS), a highly scalable, cloud-based application security platform. Coverity supports more than 20 languages and 200 frameworks and templates.

Black Duck

Get a risk-based view of your IT, security and compliance posture so you can quickly identify, investigate and prioritize your most critical assets and vulnerabilities.

Managed on-premises and powered by Nessus technology, the Tenable Security Center (formerly Tenable.sc) suite of products provides the industry’s most comprehensive vulnerability coverage with real-time continuous assessment of your network. It’s your complete end-to-end vulnerability management solution.

Tenable

Sample Customers

SAP, Mega International, Thales Alenia Space

IBM, Sempra Energy, Microsoft, Apple, Adidas, Union Pacific

Buyer's Guide

Static Application Security Testing (SAST)

September 2025

Download Free Report

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST). Updated: September 2025.

DOWNLOAD NOW

871,688 professionals have used our research since 2012.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.