Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Awesome platform to get introduced to Secure Coding Practices
What do you like best about the product?
The Platform was very easy to use, especially for onboarding. Also, it supports a breadth of languages which makes it easy to design security education programs.
What do you dislike about the product?
Nothing to dislike. As an education platform, it's tricky to get the depth of content. As a platform, it's great for starters and engineers new to a programming language to learn the best practices of a particular framework, however, it's difficult to keep the engagement once the developer has reached a certain level of maturity.
What problems is the product solving and how is that benefiting you?
Introducing engineers to secure coding and ensuring that they are familiar with best practices of a particular language or framework. Also making engineers aware of top vulnerabilities associated with a particular programming language. It plays a part in improving security culture.
- Leave a Comment |
- Mark review as helpful
Easy and pleasant
What do you like best about the product?
That the customer success team is easygoing and super helpful.
What do you dislike about the product?
I have nothing that comes to mind. I am really satisfied.
What problems is the product solving and how is that benefiting you?
Improve developer's knowledge of secure development.
We can easily see the developers participating and using the platform to improve their knowledge.
We can easily see the developers participating and using the platform to improve their knowledge.
Recommendations to others considering the product:
Do it! It will be a great experience and the customer success team will contribute to that.
Super cool product and best in class Customer Engagement Team
What do you like best about the product?
Wide coverage of SW languages and frameworks and relevant training materials
What do you dislike about the product?
A user access role in the product can be bound to a Developer or an Admin, not to both. We need Admins to be able to train themselves.
What problems is the product solving and how is that benefiting you?
Training our developers so they can fix vulns
Secure Code Warrior is a great place to expand a developers knowledge on secure coding.
What do you like best about the product?
The best part of Secure Code Warrior is how the UI is fun and interactive, which helps keep developers interested and focused on the tasks at hand, and also helps make them want to take part on their own accord.
What do you dislike about the product?
There isn't much to dislike. Sometimes the hints are less helpful than they could be as they will take away an answer rather than give more details about it, however, this is something that we raised with the Secure Code Warrior team and they took this on board and have already started working on better ways to represent the hints to give the developers the best experience when completing their courses.
What problems is the product solving and how is that benefiting you?
I work in the application security department of my company, and as such, it is my responsibility to ensure the developers are coding securely. With the help of Secure Code Warrior courses, I can ensure that every developer is trained to look out for certain threat vectors, and how to overcome them when they are coding. This sets a standard where we know the developers are keeping security in mind whilst creating new features which in turn helps reduce the number of vulnerabilities pushed to development. If a vulnerability is created and pushed to development, the cost to fix this is 10x more than if it was handled correctly to begin with. Secure Code Warrior helps to make sure the 'shift left' security methodology is applied effectively and sets a standard of knowledge you can prove across the business with the assessments the developers must pass.
A true secure coding training platform for software developers
What do you like best about the product?
The ability to be hands-on to learn secure coding as a sofware developer/programmer. As a beginner in secure coding, I can refer to the resources section (videos). As an intermediate level, I can play with challenges on the training or courses ground. As an expert, I can take assessments or participate in timed-tournaments. SCW is for every skill level of a developer.
What do you dislike about the product?
The GUI sometimes shapes out when operating it at high loads (prolonged period of use).
What problems is the product solving and how is that benefiting you?
Multiple.
1. Every software developer who joins the company is trained on OWASP Top 10 (at awareness level, at high skilled level). Based on secure coding skill, we can assign the developer to low sensitive or high sensitve projects.
2. PCI DSS compliance enforces software developers undergo the mandatory training. Thankfully, SCW provides secure coding course as compliant with PCI-DSS. This helps to showcase the developer's attendance and completion report during PCI-DSS audits.
1. Every software developer who joins the company is trained on OWASP Top 10 (at awareness level, at high skilled level). Based on secure coding skill, we can assign the developer to low sensitive or high sensitve projects.
2. PCI DSS compliance enforces software developers undergo the mandatory training. Thankfully, SCW provides secure coding course as compliant with PCI-DSS. This helps to showcase the developer's attendance and completion report during PCI-DSS audits.
Recommendations to others considering the product:
While there are tens of other tools in the market on secure coding, SecureCodeWarrior is the best platform that works for every software developer in the world, whatever skill level s/he is at. I recommend every company in the market that makes software for any business reasons to use SecureCodeWarrior as a training platform on secure coding to their developers.
SCW our journey to date
What do you like best about the product?
The gamification aspect, across a lot of computer languages, some vendors only offer it in one language/platform. During a tournament, developers/programmers can also compete with others.
What do you dislike about the product?
Learning Needs Analysis at an individual even team level needs further development. Some activities do not count towards achieving higher maturity, e.g. from Beginner to Security Aware, when it clearly should be.
What problems is the product solving and how is that benefiting you?
Getting staff to think about OWASP Top 10, log4J vulnerabilities and realising that it doesn't take as much effort as initially thought to make their apps more secure.
Recommendations to others considering the product:
Macro learning and gamification are the most attractive features of SCW. Considering the cost of specialised courses, the annual cost per person for a corporate license, is reasonable. Do note that you need to have a clear Program and Communications Plan to get the most out of SCW. Running tournaments within and outside your organisation will be beneficial.
Security Exposure by Example
What do you like best about the product?
I love how Secure Code Warrior provides concrete examples of vulnerable code. It is often difficult to find straightforward examples of vulnerable code in applications.
What do you dislike about the product?
Sometimes it is unclear what the path to exploitation was even after being presented with the suggested fix for the vulnerability. I would love to see a video or written explanation of how an attacker might exploit the vulnerability in the provided example and how the approved patch fixes the vulnerability.
What problems is the product solving and how is that benefiting you?
Secure Code Warrior helps solve the problem of developers not having much exposure to real-world vulnerabilities. By providing examples of what vulnerable code looks like, developers are more likely to consider security when writing code.
Recommendations to others considering the product:
I highly recommend that you give Secure Code Warrior a try and maybe even require your developers to complete at least one module in a language of their choice.
Secure Code is a Knowledge Quest Warrior
What do you like best about the product?
All the Trainings in this Platform seem to be Challenging and Wonderful.
What do you dislike about the product?
Nothing to Dislike, as if we are unable to take some decision, we can get the help of a hint to answer the Particular question.
What problems is the product solving and how is that benefiting you?
In the Initial C# Challenge, I tried to Solve Some Problems related to Authentication Login and Log out Scenarios. I can assume the Benefit in the Knowledge gained
Secure Code Warrior -- Innovative & Constructive
What do you like best about the product?
I like the best about this platform is the tournaments. They allow us to showcase our skills and at the same time have a health competition too and learn from our peers.
What do you dislike about the product?
I think not anything specific. There should be more tournaments and contests.
What problems is the product solving and how is that benefiting you?
I have been solving problems related to java. It has helped me become better at my coding following security standards.
Recommendations to others considering the product:
I would highly recommend people to use this platform to enhance their skills, learn new techniques of secure coding.
OWASP - TOP 10
What do you like best about the product?
Getting info about existing breaches and learn ways to resolve them in a fun way with challenges and explainations.
What do you dislike about the product?
I dont really see the use of accumulate points and having a score (plus that other users can see)
What problems is the product solving and how is that benefiting you?
It helps to realize what differents security problems we can forget while developing online services, and there are more problem situations than we think.
showing 11 - 20