Veracode's application security testing solution quantifies an application's security risk based on types, number and severity levels of flaws identified in the application. Veracode analyzes the key application security risks that matter most to enterprises including the most prevalent software vulnerabilities, the absence and presence of security features (e.g. encryption) and backdoors in third-party code. Each application's rating is generated based on automated static binary analysis, automated dynamic and/or manual security analysis techniques.

Veracode solutions deliver application security review services for enterprises that want to cost-efficiently achieve software security by identifying flaws in applications. Veracode SecurityReview is the first automated, on-demand, application security software solution that uses static binary analysis. Static application security testing enables organizations to scan software for flaws and malicious code before purchasing or deploying it. And because Veracode's approach to Static application security testing uses binary analysis—scanning binary code (compiled or "byte" code) instead of source code—SecurityReview can test 100 percent of an application, offering comprehensive coverage and greater application security. In addition, Veracode's web application security testing can provide Web services security as a critical part of an enterprise-wide software assurance strategy.

Please access other sections of this site to learn more about our approach to security testing, code review, web security and application backdoors.