We performed a comparison between Pentera and Veracode based on real PeerSpot user reviews.
Find out in this report how the two Penetration Testing Services solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Maybe there are some remediation steps on the website, we can mask sensitive information on the website better."
"The most valuable feature of Pentera is that you can do continuous vulnerability assessment, which is automated."
"The product is easy to use."
"The vulnerability scanner, exploit achievements, and remediation actions are all great."
"What I like the most about Pentera is its solution-oriented approach."
"Their dashboard is really good, overall. In my opinion, it's one of the best in the market, and I say that because we have used other service providers."
"The SAST and DAST modules are great."
"Ad-hoc scanning during the development cycle and reports for audits are valuable features."
"The product’s policy reporting for ensuring compliance with industry standards and regulations is great."
"The most valuable feature is the SAST capability and its integration into the Veracode pipelines."
"The dashboards and the threat insights it provides are very good. The dashboards are intuitive and pretty straightforward, but also pretty detailed."
"It scans for the OWASP top-10 security flaws at the dynamic level and, at the static level, it scans for all the warnings so that developers can fix the code before we go to UAT or the next phase."
"We are using the Veracode tools to expose the engineers to the security vulnerabilities that were introduced with the new features, i.e. a lot faster or sooner in the development life cycle."
"There is room for improvement in virtualization compatibility."
"Pentera's general dashboards could be improved and made more specific in terms of vulnerabilities that I'm discovering."
"The price could be improved."
"The vulnerability scanner, exploit achievements, and remediation actions are all great."
"Maybe scalability. I know that the Pentera right now is high level in order to scan big deals over 500 IPs and not less, and not less. That can be more granular. This will be useful."
"The negative that I found is that it has a subscription-based model."
"The interface is basic and has room for improvement."
"All areas of the solution could use some improvement."
"Because our application is large, it takes a long time to upload and scan."
"One of the most important areas that need improvement for Veracode is its DaaS. Veracode's DAST engines are primitive."
"I do expect large applications with millions of lines of code to take a while, but it would be nice if there was a possibility to be able to have a baseline initial scan. I know that Veracode touts that there are Pipeline Scans that are supposed to take 90 seconds or less, and we've tried to do that ourselves with our ERP application. However, it actually times out after two hours of scanning. If the static scan itself or another option to run a lower tier scan can be integrated earlier on into our SDLC, it would be great. Right now, it takes so long that we usually leave it till a bit later in the cycle, whereas if it ran faster, we could push it to the time when a developer will be checking in code. That would make us feel a lot more confident that we'd be able to catch things almost instantaneously."
"I would like to see more AI features. It's a current subject because with ChatGPT and other solutions being developed all the time, IT attacks will increase... To defend against those it's very important that the good guys use AI in ways that are good instead of bad."
"The user interface can sometimes be a little challenging to work with, and they seem to be changing their algorithm on what is an issue. I understand why they do it, but it sometimes causes more work on our end."
Pentera is ranked 1st in Penetration Testing Services with 5 reviews while Veracode is ranked 3rd in Penetration Testing Services with 194 reviews. Pentera is rated 8.2, while Veracode is rated 8.2. The top reviewer of Pentera writes "A stable solution that can be used to do continuous and automated vulnerability assessments". On the other hand, the top reviewer of Veracode writes "Helps to reduce false positives and prevent vulnerable code from entering production, but does not support incremental scanning ". Pentera is most compared with Cymulate, Tenable Nessus, Picus Security, Horizon3.ai and HackerOne, whereas Veracode is most compared with SonarQube, Checkmarx One, Fortify on Demand, Snyk and Fortify Static Code Analyzer. See our Pentera vs. Veracode report.
See our list of best Penetration Testing Services vendors.
We monitor all Penetration Testing Services reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.