Sometimes, Codebashing provides reports with false positives. Thus, I advise others not to rely on the reports and to do a thorough analysis. They may require to change a few configurations. Configuring your own rules is better than going for a default configuration. I rate it an eight out of ten.
The solution is easy to maintain. I think Codebashing is a great tool to start with if you are just learning about application security. Codebashing has some good tutorials and a nice learning platform to learn about coding. Codebashing also has a more nice gamification UI, which is a good tool. Generally, I think it's quite a good tool for developers to get started and pick up skills. I rate the overall solution an eight and a half to nine out of ten.
To be honest, this is a very well-designed product, with the most essential competitive advantage being, as previously stated, gamification. It is very user-friendly, simple to use, and simple to understand. The course duration is excellent. Certainly not more than eight or ten minutes, which is critical. From the perspective of a developer or programmer, those types of individuals are unable to allocate their time for too long. These are the benefits of the product, and I enjoy it. We are the partner. We are more than a reseller. We are the representative of Checkmarx in our region. I would rate Codebashing a nine out of ten.
If using Codebashing for a big team of more than 10 developers, it is important to plan to ensure the training is effective. I would rate this solution a nine out of ten.
I can recommend Checkmarx, in my opinion, they are good. Their product is good. It has minimal false positives. They are user-friendly, and they are not complex at all. The response from the technical support is also excellent. I would happily recommend Checkmarx products at any time, at least for the time being, unless circumstances change. I would rate Codebashing an eight out of ten. I'm giving it an eight because it's extremely useful. It enables users to deploy improved, secure development skills. The remaining tool, in my opinion, is that the user cannot use the certificate to demonstrate ability, and they do not use the certificate to demonstrate competence in that area at this time.
My advice for anyone considering using Codebashing is to try the free version on their web page first. I would advise them to use the free version to understand the concept and to play with the program and only then to consider purchasing it. On a scale of one to 10, I would rate Codebashing a nine.
Senior Software Development Engineer at Stanbic Bank Ghana
Real User
2020-10-14T06:36:59Z
Oct 14, 2020
We're just customers. We don't have a business relationship with the company. I'm pretty sure that the company is using the latest version. I didn't really check the version number, however, I think it's the latest. While we do use a cloud version now, it was previously deployed on-premises. It is a great solution. It's easy to integrate into and it is very common, very popular, here. Anything you need to do, you can do it on the platform. For example, if you're looking to add it to your CITD pipeline, there's a plugin to do that. It's great. Overall, out of ten, I'd rate it at a nine.
Information Security Engineer at a tech vendor with 51-200 employees
Real User
2020-03-25T07:03:02Z
Mar 25, 2020
I have tested several areas of Codebashing and have used some of the labs that they provide. The labs are useful because you can find examples of flags and known vulnerabilities. It is different from other products. I would rate this solution a six out of ten.
Sr. Application Security Manager at a tech services company with 201-500 employees
Real User
2020-03-05T08:39:00Z
Mar 5, 2020
We are not a customer of the solution at my current organization. We are currently running a POC. However, in my previous position, I was a customer. I'd rate the solution nine out of ten. It's a hard solution for developers to just start using. It's not so easy to just jump into. It takes time.
This is a solution that I recommend to people who have a Checkmarx socket implementation because it is good to have a platform with this training program included. Otherwise, it depends on the customer. If they have a lot of their own code development then training is needed. However, in some cases, where they have good experts with a lot of knowledge, then their own experts can teach the staff. For companies that do not have information security experts available for training, then this is a very good platform to have because it has very clear and quick lessons. This product is good and it is reliable. I would rate this solution a seven out of ten.
Checkmarx Codebashing is an application security learning platform providing interactive secure code training for developers. Modern applications are increasingly under attack, yet many developers lack the knowledge to write code securely. Codebashing fills this gap with a gamified learning experience that covers various aspects of application security.
Codebashing features interactive learning modules covering common security vulnerabilities like SQL injection, XSS, and cross-site request...
Sometimes, Codebashing provides reports with false positives. Thus, I advise others not to rely on the reports and to do a thorough analysis. They may require to change a few configurations. Configuring your own rules is better than going for a default configuration. I rate it an eight out of ten.
The solution is easy to maintain. I think Codebashing is a great tool to start with if you are just learning about application security. Codebashing has some good tutorials and a nice learning platform to learn about coding. Codebashing also has a more nice gamification UI, which is a good tool. Generally, I think it's quite a good tool for developers to get started and pick up skills. I rate the overall solution an eight and a half to nine out of ten.
To be honest, this is a very well-designed product, with the most essential competitive advantage being, as previously stated, gamification. It is very user-friendly, simple to use, and simple to understand. The course duration is excellent. Certainly not more than eight or ten minutes, which is critical. From the perspective of a developer or programmer, those types of individuals are unable to allocate their time for too long. These are the benefits of the product, and I enjoy it. We are the partner. We are more than a reseller. We are the representative of Checkmarx in our region. I would rate Codebashing a nine out of ten.
If using Codebashing for a big team of more than 10 developers, it is important to plan to ensure the training is effective. I would rate this solution a nine out of ten.
I can recommend Checkmarx, in my opinion, they are good. Their product is good. It has minimal false positives. They are user-friendly, and they are not complex at all. The response from the technical support is also excellent. I would happily recommend Checkmarx products at any time, at least for the time being, unless circumstances change. I would rate Codebashing an eight out of ten. I'm giving it an eight because it's extremely useful. It enables users to deploy improved, secure development skills. The remaining tool, in my opinion, is that the user cannot use the certificate to demonstrate ability, and they do not use the certificate to demonstrate competence in that area at this time.
My advice for anyone considering using Codebashing is to try the free version on their web page first. I would advise them to use the free version to understand the concept and to play with the program and only then to consider purchasing it. On a scale of one to 10, I would rate Codebashing a nine.
We're just customers. We don't have a business relationship with the company. I'm pretty sure that the company is using the latest version. I didn't really check the version number, however, I think it's the latest. While we do use a cloud version now, it was previously deployed on-premises. It is a great solution. It's easy to integrate into and it is very common, very popular, here. Anything you need to do, you can do it on the platform. For example, if you're looking to add it to your CITD pipeline, there's a plugin to do that. It's great. Overall, out of ten, I'd rate it at a nine.
I have tested several areas of Codebashing and have used some of the labs that they provide. The labs are useful because you can find examples of flags and known vulnerabilities. It is different from other products. I would rate this solution a six out of ten.
We are not a customer of the solution at my current organization. We are currently running a POC. However, in my previous position, I was a customer. I'd rate the solution nine out of ten. It's a hard solution for developers to just start using. It's not so easy to just jump into. It takes time.
This is a solution that I recommend to people who have a Checkmarx socket implementation because it is good to have a platform with this training program included. Otherwise, it depends on the customer. If they have a lot of their own code development then training is needed. However, in some cases, where they have good experts with a lot of knowledge, then their own experts can teach the staff. For companies that do not have information security experts available for training, then this is a very good platform to have because it has very clear and quick lessons. This product is good and it is reliable. I would rate this solution a seven out of ten.