The product's pricing could be more flexible. At present, we have to buy an entire instance. Instead, they could introduce a pricing model based on specific requirements.
The tool can be a little more intuitive for the end users. It isn't a very friendly tool for beginners. In our company, we have to take training courses to learn how to use the platform. Introducing automation and making the tool a little more intuitive for businesses might be helpful. In our company, we need to take care of the tool's regular updates since, often, the solution may be down. My company has a business administration unit team that is responsible for the updation of tools we use, and their processes can take a day or two to be completed, because of which we may lose out on some time when we may have required the tool to do a complete scan. It would be helpful if the update process can be made faster. If I make use of the integration capabilities of Codebashing, then the plug-ins won't work as smoothly as it does in the application itself. Maybe the solution's plug-ins can be improved.
From my perspective, Codebashing might use some enhancement. Clients should be able to handle their tests directly according to their needs. That aspect of Codebashing is currently inflexible. Customers would wish to sign, compile, or manage their tests in accordance with their requirements. It is just not possible. As previously stated, one of my main criticisms is that customers should be able to manage and develop their tests independently.
This solution could be improved by offering an increased number of quizzes after each module. The GUI for this solution could also be updated to be more modern.
Because I am not the direct user, but rather a reseller, I may not know, because the only way we will know is if we receive a complaint from one of our users. We have received any major complaints that tell us what needs to be changed, on the tool, or where they need to improve it. Change is an unavoidable constant. There will always be opportunities for change and improvement in order to provide more value to their end users. However, I am unable to specify where the change or improvement will be required. It is difficult to say, but maybe there are areas of the solution that could improve. 30% improvement. It does not require storage. Because it is an online tool, there is no need for backup. It is a training platform. When it identifies your area of weakness, it shows you and instructs you on what to do. You, simply log in. It's similar to a cloud base. I expect the dashboard to be improved based on user feedback and, of course, as technology advances. I would like to see Certificates issued to users. I believe that certificates should be issued to users so that they can be used as proof of having completed that training. The certificate is currently not being used for any competence validation outside of the chance environment. They should issue certificates to the users, which can be used as evidence of security development code.
My expectation is that the customers should be able to develop their own quizzes, because it's their learning methodology. Indeed, Codebashing is a context E-learning platform that sharpens the developers' skills to fix vulnerabilities and develop secure codes, expanding on the learning by doing concept work and using the gamification methodology. Codebashing teaches developers the principles of secure coding and helps them sharpen their security skills in the most efficient way. So if customers would be able to define their own quizzes or exams, it would be very good. That is the only missing part that I see - customer based scenarios, examinations and quizzes, the rest is excellent.
Senior Software Development Engineer at Stanbic Bank Ghana
Real User
2020-10-14T06:36:59Z
Oct 14, 2020
I've never really considered any improvements as the solution tends to offer the exact feature sets we need. The configuration could use some improvement. The user interface could be updated and refreshed. It has the appearance of being very basic. If you look at the reporting, it only gives you a basic summary and then gives you details of the code and maybe some suggestions. It's not clear on the vulnerabilities per se. It could be more robust. It would be ideal if we could get an IDE plugin on the solution. That makes it easier when you are developing and when you are writing your code. You can check the vulnerabilities before you actually go for the scan.
Information Security Engineer at a tech vendor with 51-200 employees
Real User
2020-03-25T07:03:02Z
Mar 25, 2020
Codebashing should be available for everybody to use without having to obtain a license. This solution is available for Windows only and does not have a Linux distribution.
Sr. Application Security Manager at a tech services company with 201-500 employees
Real User
2020-03-05T08:39:00Z
Mar 5, 2020
I can't recall any real issues we had using the solution in the past. The solution should make the configuration more simple. Sometimes the configuration is complex. In future releases, the solution should introduce incremental objects. I'd like to be able to check what the developers are doing on the fly.
We would like to be able to add our own lessons to the platform because right now we can't add our own information. It would be helpful to create a "lesson platform", for example. It would be helpful if the solution included tests or exams that would allow you to study, for example, all Java vulnerabilities, and then afterward test your knowledge. This is a typical functionality for learning platforms. I would like to see more integration with other educational platforms. They have a good start because it integrates well with their own solutions.
Checkmarx Codebashing is an application security learning platform providing interactive secure code training for developers. Modern applications are increasingly under attack, yet many developers lack the knowledge to write code securely. Codebashing fills this gap with a gamified learning experience that covers various aspects of application security.
Codebashing features interactive learning modules covering common security vulnerabilities like SQL injection, XSS, and cross-site request...
The product's pricing could be more flexible. At present, we have to buy an entire instance. Instead, they could introduce a pricing model based on specific requirements.
The tool can be a little more intuitive for the end users. It isn't a very friendly tool for beginners. In our company, we have to take training courses to learn how to use the platform. Introducing automation and making the tool a little more intuitive for businesses might be helpful. In our company, we need to take care of the tool's regular updates since, often, the solution may be down. My company has a business administration unit team that is responsible for the updation of tools we use, and their processes can take a day or two to be completed, because of which we may lose out on some time when we may have required the tool to do a complete scan. It would be helpful if the update process can be made faster. If I make use of the integration capabilities of Codebashing, then the plug-ins won't work as smoothly as it does in the application itself. Maybe the solution's plug-ins can be improved.
From my perspective, Codebashing might use some enhancement. Clients should be able to handle their tests directly according to their needs. That aspect of Codebashing is currently inflexible. Customers would wish to sign, compile, or manage their tests in accordance with their requirements. It is just not possible. As previously stated, one of my main criticisms is that customers should be able to manage and develop their tests independently.
This solution could be improved by offering an increased number of quizzes after each module. The GUI for this solution could also be updated to be more modern.
Because I am not the direct user, but rather a reseller, I may not know, because the only way we will know is if we receive a complaint from one of our users. We have received any major complaints that tell us what needs to be changed, on the tool, or where they need to improve it. Change is an unavoidable constant. There will always be opportunities for change and improvement in order to provide more value to their end users. However, I am unable to specify where the change or improvement will be required. It is difficult to say, but maybe there are areas of the solution that could improve. 30% improvement. It does not require storage. Because it is an online tool, there is no need for backup. It is a training platform. When it identifies your area of weakness, it shows you and instructs you on what to do. You, simply log in. It's similar to a cloud base. I expect the dashboard to be improved based on user feedback and, of course, as technology advances. I would like to see Certificates issued to users. I believe that certificates should be issued to users so that they can be used as proof of having completed that training. The certificate is currently not being used for any competence validation outside of the chance environment. They should issue certificates to the users, which can be used as evidence of security development code.
My expectation is that the customers should be able to develop their own quizzes, because it's their learning methodology. Indeed, Codebashing is a context E-learning platform that sharpens the developers' skills to fix vulnerabilities and develop secure codes, expanding on the learning by doing concept work and using the gamification methodology. Codebashing teaches developers the principles of secure coding and helps them sharpen their security skills in the most efficient way. So if customers would be able to define their own quizzes or exams, it would be very good. That is the only missing part that I see - customer based scenarios, examinations and quizzes, the rest is excellent.
I've never really considered any improvements as the solution tends to offer the exact feature sets we need. The configuration could use some improvement. The user interface could be updated and refreshed. It has the appearance of being very basic. If you look at the reporting, it only gives you a basic summary and then gives you details of the code and maybe some suggestions. It's not clear on the vulnerabilities per se. It could be more robust. It would be ideal if we could get an IDE plugin on the solution. That makes it easier when you are developing and when you are writing your code. You can check the vulnerabilities before you actually go for the scan.
Codebashing should be available for everybody to use without having to obtain a license. This solution is available for Windows only and does not have a Linux distribution.
I can't recall any real issues we had using the solution in the past. The solution should make the configuration more simple. Sometimes the configuration is complex. In future releases, the solution should introduce incremental objects. I'd like to be able to check what the developers are doing on the fly.
We would like to be able to add our own lessons to the platform because right now we can't add our own information. It would be helpful to create a "lesson platform", for example. It would be helpful if the solution included tests or exams that would allow you to study, for example, all Java vulnerabilities, and then afterward test your knowledge. This is a typical functionality for learning platforms. I would like to see more integration with other educational platforms. They have a good start because it integrates well with their own solutions.