Solutions

Veracode Technolgy

Veracode in the only solutions provider to combine static binary analysis and dynamic analysis to provide organizations with the most accurate and complete security testing available.

View the Product Demo

Sign-Up for the Weekly Demo

Webcasts
- Detecting Application Backdoors
Podcasts
- Veracode CEO Discusses On-Demand Vulnerability Analsysis
- CNET: Web Application Attacks
Whitepapers
- Automating Code Reviews

Veracode Technology

Veracode’s technology enables organizations to solve the application security challenge in a fundamentally different and better way. Veracode is the first and only solutions provider to integrate both static binary analysis and dynamic analysis in a single service which enables organizations to assess their entire application inventory, conduct code reviews and scan websites for vulnerabilities through a common set of results, ratings and reports.

Veracode’s unique and patented technology unlocks the ability for organizations to:

Conduct Code Reviews without Source Code – Legacy code reviews required source code, which not only is unpractical as source code often is unavailable, but also insufficient since it does not reflect the "real-world" attack surface of the software
Software-as-a-Service (SaaS) – Enterprises are able to scale the investment they have made in application security testing without additional hardware, software, personnel or training on an “as-needed” basis to keep pace with their business
Assess Risk Across Your Entire Application Inventory – By combining multiple assessment technologies, Veracode can assess web and non-web applications for internally developed code, outsourced/offshore software or commercial-of-the-shelf (COTS) software

Static Binary Analysis

Veracode’s patented static binary analysis, also referred to as white-box testing, allows organizations to test for security vulnerabilities without requiring source code. By looking at applications in their “final” binary form, version Veracode can evaluate vulnerabilities introduced by linked libraries, APIs, compiler optimizations and third party components to provide the most accurate and complete security testing available in the industry. Learn More…

Web Application Security Testing (Dynamic Testing)

Veracode’s automated web application vulnerability scanning, also known as dynamic analysis or black-box testing empowers companies to identify and remediate security issues in their running web applications before hackers can exploit them. Learn More…

View Veracode SecurityReview Technology with N-Tier Applications