Sold by: Black Duck Software, Inc.
Application security tools and services that integrate security testing into DevOps workflows. Available via Private Offer.
Sold by: Black Duck Software, Inc.
Overview
Black Duck helps you build trust in your software by enabling you to manage application security, quality, and compliance risks at the speed your business demands. Our application security tools and services integrate directly with your existing AWS environment. Optimize your DevOps workflows and transform the way you build and deliver software by aligning people, processes, and technology to intelligently address software risks across your portfolio and at all stages of the application lifecycle. Pricing listed is for Black Duck Binary Analysis - contact Black Duck for additional products and Private Offer pricing.
Highlights
- Secure code as fast as you write it: Find and fix security defects in both your code and open source dependencies, directly within the IDE, with Code Sight.
- Automate testing without compromising velocity: Integrate and automate security, quality, and compliance analysis source code, binaries, and IaC into your CI pipelines with Coverity SAST, Black Duck SCA and Black Duck Binary Analysis. Automate testing and detection of vulnerabilities and data leakage issues in cloud applications and microservices with Seeker IAST. Identify hidden zero-day vulnerabilities and reliability defects in IoT and network device software with Defensics Fuzzing.
- Identify and focus on the highest risk security defects: Cut through the noise of AST findings with Software Risk Manager machine learning-based vulnerability correlation and prioritization that focuses remediation efforts on issues that pose the highest business risk. Correlate and prioritize findings across your AST tools and activities with Software Risk Manager to focus remediation efforts where they will have the greatest impact.
Details
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on contract duration. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Dimension | Description | Cost/12 months |
|---|---|---|
BD Binary Cloud - 50 | Black Duck Binary Cloud 50 Team Members Annual License | $52,500.00 |
Vendor refund policy
All fees are non-refundable
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
Online, email and phone support available.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Black Duck SCA
By Black Duck Software, Inc.
Black Duck SCA helps security and development teams identify and mitigate open source related risks across application portfolios.
AI Picture Colorizer
By Hotpot.ai
Colorize black and white pictures with AI. Our picture colorizer is based on the latest machine learning research and is used by consumers and companies around the world.
Web interface: https://hotpot.ai/colorize-picture
Kali Linux Web Desktop : noVNC + Security Features
By Decyphertek
This is a repackaged open source software product with fees associated with security features and a ready to deploy secure Kali Linux Web Desktop.
QNX Neutrino RTOS 7.1
By BlackBerry QNX
QNX® Neutrino® Real-Time Operating System - the industry-leading RTOS for developing mission-critical embedded systems software, enabling next-generation products in every industry where reliability matters, including automotive, medical devices, robotics, transportation and industrial embedded systems.
Customer reviews
omkar r.
Whitehat sentinel
Reviewed on Feb 02, 2023
Review provided by G2
What do you like best about the product?
Security Experts analyse potential vulnerabilities.
Minimal false positives.
Alerts for newly discovered vulnerabilities.tracking all records previous as well as present.
Minimal false positives.
Alerts for newly discovered vulnerabilities.tracking all records previous as well as present.
What do you dislike about the product?
The vendor provides scanning, identification, engineering support and risked based reporting of security vulnerabilities. It is little bit slow other wise it is very good.
What problems is the product solving and how is that benefiting you?
The vendor provides scanning, identification, engineering support and risked based reporting of security vulnerabilities.it support to better quality of software.
Leave a comment0 comments
Neri Rafael C.
good service and excellent support
Reviewed on Oct 31, 2022
Review provided by G2
What do you like best about the product?
my position within the organization as DevSecOps and developer can be quite complicated without the use of services or tools such as those provided by the whitehat sentinel team, we have used it for more than 4 years and the development support is always elementary, the The issue of security is something serious and it is something that must be studied permanently, they help you to have what you need
What do you dislike about the product?
This is very complex since for the niche that they offer service, in my opinion, if they meet the expectations, so I could say that I do not find a specific point to suggest any improvement at the moment.
What problems is the product solving and how is that benefiting you?
security at all times is very important in each application development that involves data from clients and administrative personnel, this is something that must always be taken into account and this team does everything to shield our people.
Ali s.
Good security, Stable and feature rich.
Reviewed on Nov 22, 2021
Review provided by G2
What do you like best about the product?
Black duck software composition analysis works amazing on Mac, It has a good security and excellent features that protects and examines our source code from compliance issues.
What do you dislike about the product?
Black duck should add features like packet analysis and binary analysis for better performance.
What problems is the product solving and how is that benefiting you?
We use black duck to audit our source code to protect from liscence and open source compliance. It is easy to use, stable, and well recognized in the industry.
Pratik H.
Legal and Operational risks management tool.
Reviewed on Nov 03, 2021
Review provided by G2
What do you like best about the product?
It has impressive features for both legal & security 3rd party software compliance. UI is easy to understand. It helps us to analyze the code in a timely and accurate manner.
What do you dislike about the product?
According to me it has all the features required. It is fast and easy to use.
What problems is the product solving and how is that benefiting you?
The support team is always available to resolve the problem if any. Rest it helps us to know what's in your code and analyze your code in a timely and accurate manner.
Information Technology and Services
What's there in your code?
Reviewed on Nov 02, 2021
Review provided by G2
What do you like best about the product?
Blackduck is part of Devonshire which provides us automatic scanning. Black duck is not just for devops but also Secops. Blackduck has the most extensive open source KB in the industry
What do you dislike about the product?
I am expecting better governance of teams. I have various teams using the capacity and I need to know which team is using how much. Black duck can come up with tenancy.
What problems is the product solving and how is that benefiting you?
Black duck being rich in its knowledge base about the vulnerabilities and license issues of open source components, quickly compares the identified inventory to the Black duck knowledge base and lists all the vulnerabilities and license issues in the code
Recommendations to others considering the product:
Well suited:. Easily come out of pain to manage open source components. No worries, Black duck is to the rescue, it takes care of your pen source components in terms of license and security. Also SecOps eases with the super Black duck
Less suited: can't really come up with a scenario, where it can be less suited. Until you stop using open source components in your code, quite impossible
Less suited: can't really come up with a scenario, where it can be less suited. Until you stop using open source components in your code, quite impossible