Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Contrast Security- The Secure Code Platform

Contrast Security | 1

Reviews from AWS customer

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

52 reviews
from and

External reviews are not included in the AWS star rating for the product.

    AggelosKaronis

A cost-effective solution that is easy to implement and detects vulnerabilities within minutes of launch

  • May 02, 2023
  • Review provided by PeerSpot

What is our primary use case?

We use the tool to evaluate our customer-facing apps. We analyze the request, identify the weak parts of the code, and remediate them. 

How has it helped my organization?

The product has helped us identify vulnerabilities. 

What is most valuable?

I am impressed with the product's identification of alerts and vulnerabilities. 

What needs improvement?

The product's retesting part needs improvement. The tool also needs improvement in the suggestions provided for fixing vulnerabilities. It relies more on documentation rather than on quick fixes. 

For how long have I used the solution?

I have been using the tool for four years. 

What do I think about the stability of the solution?

The tool has high stability. I would rate it a ten out of ten. 

What do I think about the scalability of the solution?

I would rate the product's scalability an eight out of ten. My company has 32 users for the tool. 

How are customer service and support?

The solution's support is very helpful and fast. They offer quality support. 

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

I have used SonarQube and GitLab Premium before. We decided to go with Contrast because it has the best price model since it takes into accord only the number of applications. It also finds vulnerabilities within minutes of its launch. The product is also developer-friendly.

How was the initial setup?

The product's setup is easy. I would rate it a ten out of ten. The tool's deployment took one day to complete. The engineers from Contrast did an analysis and submitted a report post which we initiated the tool's installation. 

What about the implementation team?

We did the product's deployment in-house. 

What was our ROI?

We have seen ROI with the product's use since it has improved the quality of our codes. 

What's my experience with pricing, setup cost, and licensing?

The product's pricing is low. I would rate it a two out of ten. 

What other advice do I have?

I would rate the solution a ten out of ten. It is a cost-effective solution that is easy to implement. You need to try the solution over POC.

Which deployment model are you using for this solution?

On-premises

    Paolo Da Ros

An overall stable solution that has significant experience in the market

  • May 02, 2023
  • Review provided by PeerSpot

What is most valuable?

Contrast Security Assess is one of the first players in this market, so they have experience and customers, especially abroad. Overall, it's a good product. But, again, if you are commercially weak, you remain a single supplier. In any given market with only one supplier, the market cannot function. It is important to have competition, and one should gain market share through flexibility. It will be too late in two years, as many companies claim to be doing IAST. It's like selling there's no Desktop antivirus versus traditional antivirus. Everybody shall do signature-less virus detection. Otherwise, you're out of the market. This scenario is very similar here, especially in the forward applications.

What needs improvement?

The solution needs to improve flexibility and provide a complete ecosystem like its competitor named, Synopsys. An ecosystem could appeal to their large customers because they are looking for a complete solution, not just a best-in-class solution, but something which integrates into the rest of the development framework.

For how long have I used the solution?

I have been using Contrast Security Assess since 2017.

What do I think about the stability of the solution?

It is a stable solution.

What do I think about the scalability of the solution?

The scalability of the product is a problem in the solution, especially from a commercial perspective.

There must be an integration with the ecosystem and application development landscape. So once the solution is integrated with many tools, it is scalable. It's different from the product, which is scalable because the product is one of the steps within a complex process.

To complete the process, you must integrate the solution with other tools.

How was the initial setup?

I have no direct experience with the initial setup, but I needed a couple of proofs of concept for comparing Contrast with one of its Spanish competitors.

What's my experience with pricing, setup cost, and licensing?

The solution is expensive.

What other advice do I have?

The IAST adoption in Italy, at least, is slow. My customers' feedback is that their commercial aptitude could be more flexible. It needs to be more flexible. They need to understand that they have an opportunity window that will last only a few years. And they are selling to win market share now, wherein in the next two years, everybody will be doing IAST. Whether it is good or bad, more or less, everybody will be doing that because the proposition is unbeatable.

I recommend others to try the solution because it is the most rewarding investment you can make in security access, apart from end-user training and user-awareness training.

But my bad side is that I think three, four years in advance. For example, I made a marketing campaign on VPNs in nineteen ninety-eight. Because VPNs were unbeatable, and it took another ten years before the market took off.

So I'm sure it will happen. Especially in the Italian market, there are market specifics because, in Italy, most of the development is outsourced, and very little development is done in-house.

So the big customers usually do not make the investment. The company which generates the code should be tailored to be bought by the leading company, which then uses the product to assess the work. Technology vendors usually focus on technology, and companies focus on organizational processes. So I was trying to sell outlets, which now are IBM source good edition, Upscaler. I was selling outlets to telecoms and proposing ounce levels as portfolio management. So that they have thousands of applications and you have a tool that assesses any given application's security. And the problem was that the guys in charge of the portfolio were not supposed to have access to the code.

So there was an additional problem stopping the customer from buying a perfect technological solution. They could manage the security, but the guys managing the application portfolio were not supposed to add access to the source code. And so they were not the proper organization for the thing to happen. And this is a problem which in large customers is quite frequent. But, again, you should see any market, a single customer, the needs, the processes, the power struggle, and data on a power struggle; it's more complicated though it can be done.

I would give Synopsys a nine because no one is at ten today.

I have ranked Contrast just below Synopsys because Synopsys has the size and the scope, and they have an internal vertically integrated solution apart from all the partnerships you could have. Since Contrast is a much smaller company, they should enter into some partnerships.

I rate the overall solution an eight out of ten.

    Rushi N.

Ingénieur Manager, j'ai une visibilité complète sur la cybersécurité, la vulnérabilité, la protection des appareils.

  • March 29, 2023
  • Review provided by G2

Qu'aimez-vous le plus à propos de the product?
apprendre à comprendre les AVANTAGES/INCONVÉNIENTS mais en revanche, la sécurité avait quelques avantages pour les entreprises comme la nôtre.
Que n’aimez-vous pas à propos de the product?
pour identifier les détails du produit
Quels sont les problèmes que the product résout, et en quoi cela vous est-il bénéfique?
couche de sécurité des applications en temps d'exécution 01, couche 02 (analyse de code/approbations de code)

    Arik B.

La solution ultime pour sécuriser votre application

  • March 13, 2023
  • Review provided by G2

Qu'aimez-vous le plus à propos de the product?
Mes fonctionnalités préférées de Contrast Security sont son interface pratique et la rapidité avec laquelle il détecte les dangers de sécurité possibles dans mon code. La capacité de la plateforme à être adaptée à des projets de toute taille est quelque chose d'autre que j'apprécie.
Que n’aimez-vous pas à propos de the product?
Le plus gros problème que j'ai avec Contrast Security est qu'il ne s'intègre pas avec certaines des applications logicielles que j'utilise fréquemment. La plateforme peut être difficile à utiliser parfois, malgré son efficacité à détecter les risques de sécurité possibles.
Quels sont les problèmes que the product résout, et en quoi cela vous est-il bénéfique?
La tranquillité d'esprit que j'obtiens en l'utilisant et en comprenant que mes tâches sont sécurisées est l'un des principaux avantages. L'interface pratique de la plateforme la rend simple à utiliser dans ma routine quotidienne, et elle est extrêmement efficace pour repérer les risques de sécurité possibles.

    Rameshwar K.

Sentiment de sécurité totale

  • March 03, 2023
  • Review provided by G2

Qu'aimez-vous le plus à propos de the product?
Toutes les fonctionnalités de sécurité qui me rendent plus productif.
Que n’aimez-vous pas à propos de the product?
Cela rend parfois le système très lent mais c'est acceptable.
Quels sont les problèmes que the product résout, et en quoi cela vous est-il bénéfique?
La sécurité d'exécution des applications est ce qui me préoccupe le moins.

    Efrain R.

Soutien large pour plusieurs technologies

  • March 02, 2023
  • Review provided by G2

Qu'aimez-vous le plus à propos de the product?
Fonctionnalité complète avec un soutien croissant pour la plupart des langages utilisés dans l'industrie. Très peu de faux positifs & Conseils sur la façon de corriger les vulnérabilités.
Que n’aimez-vous pas à propos de the product?
La structure de licence semble être très claire sur le contrat, mais à l'intérieur de l'outil, vous devez gérer différents droits.
Quels sont les problèmes que the product résout, et en quoi cela vous est-il bénéfique?
Nous avions besoin d'une solution avec peu de faux positifs qui permettait à nos développeurs d'améliorer leurs pratiques de développement sécurisées. Maintenant, ils peuvent recevoir des alertes précoces sur les problèmes réels qui doivent être corrigés.

    Mohan K.

C'était facile à utiliser.

  • March 02, 2023
  • Review provided by G2

Qu'aimez-vous le plus à propos de the product?
J'aime comment il est facilement intégré à notre système.
Que n’aimez-vous pas à propos de the product?
Je voudrais pouvoir avoir plus de contrôle pendant la phase de déploiement.
Quels sont les problèmes que the product résout, et en quoi cela vous est-il bénéfique?
La sécurité de contraste a aidé à identifier les vulnérabilités que nous pourrions avoir dans le code.

    Sri Harsha G.

Mon expérience avec Contrast Security

  • March 02, 2023
  • Review provided by G2

Qu'aimez-vous le plus à propos de the product?
Il aide les organisations à identifier et à remédier aux vulnérabilités dans leurs applications logicielles, améliorant ainsi leur posture de sécurité globale. Certaines des caractéristiques clés de leurs solutions incluent la détection de vulnérabilités en temps réel, une visibilité précise des attaques et une intégration transparente avec les processus DevOps. Ces caractéristiques peuvent être utiles pour les organisations qui accordent la priorité à la sécurité dans leur cycle de développement logiciel.
Que n’aimez-vous pas à propos de the product?
Rien de spécial. Tout était bon mais la précision peut encore être améliorée.
Quels sont les problèmes que the product résout, et en quoi cela vous est-il bénéfique?
Test de sécurité des applications

    SANTHOSH KUMAR D.

Meilleur et rapide scanner de sécurité

  • March 02, 2023
  • Review provided by G2

Qu'aimez-vous le plus à propos de the product?
C'est gratuit dans une certaine mesure
Plus rapide que la plupart des scanners de sécurité
Que n’aimez-vous pas à propos de the product?
Rien d'autre que la courbe d'apprentissage et d'utilisation
Quels sont les problèmes que the product résout, et en quoi cela vous est-il bénéfique?
Aucune intervention dans le pipeline CI/CD de GitHub Actions

    Idan A.

Revue de contraste

  • March 02, 2023
  • Review provided by G2

Qu'aimez-vous le plus à propos de the product?
Bons résultats, relativement aux autres solutions SAST/DAST, a moins de fausses alertes positives.
Que n’aimez-vous pas à propos de the product?
Bien qu'il ait relativement aux solutions SAST/DAST un nombre inférieur de fausses alertes positives, il y a encore beaucoup de faux positifs.
Quels sont les problèmes que the product résout, et en quoi cela vous est-il bénéfique?
Cela m'aide à analyser les services que je n'ai pas la capacité de tester manuellement.

showing 21 - 30