Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Contrast Security- The Secure Code Platform

Contrast Security

Reviews from AWS customer

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

52 reviews
from and

External reviews are not included in the AWS star rating for the product.

    MATTHIEU M.

best IAST of the market

  • March 02, 2023
  • Review provided by G2

What do you like best about the product?
the IAST and the flow map part to trigger seurity bugs
What do you dislike about the product?
To add a taint analysis and solution for route coverage
What problems is the product solving and how is that benefiting you?
The IAST that we use is to complete the coverage scan with our SAST and DAST

    Tomer P.

great tool with a little bit of false positives

  • March 01, 2023
  • Review provided by G2

What do you like best about the product?
easy integration
the support is very responsive
What do you dislike about the product?
false positives
support in ruby/scala isnt the best
getting logs is a bit annoying
What problems is the product solving and how is that benefiting you?
we are using contrast as an IAST and began with coverage for all our repos

    Sriranga Narasimha Gandhi A.

Review of Contract Security

  • March 01, 2023
  • Review provided by G2

What do you like best about the product?
Contract Security protects both perimeter controls such as DDoS, Intrusions and malicious behaviour from perimeter, secures end point via its scanning engine, whitelists the allowed countries.
What do you dislike about the product?
Nothing much as such but the build process needs a bit of stabilization. Also the customer service needs to be improved. Overall the process needs to be optimised.
What problems is the product solving and how is that benefiting you?
All application related security challenges of the code such as static code tests or dynamic code reviews will be solved by Contrast Security. It helps both static code analysys and dynamic code analysis

    Patrick V.

Contrast Works well once it is configured well

  • February 28, 2023
  • Review provided by G2

What do you like best about the product?
Contrast's detection's of vulns are the best because they can point to exactly the line of code without having the count of false positives of other tools.
What do you dislike about the product?
Contrast's licensing and inventory system can be clunky if your application has micro-services
What problems is the product solving and how is that benefiting you?
Vulnerability testing that is managed by devs

    Willie H.

Contrast Security works great for SAST and DAST security scanning

  • February 28, 2023
  • Review provided by G2

What do you like best about the product?
Contrast integrated well with our CI/CD pipeline using Travis. It was also great for scanning libraries used by our code. The reports from the scan were very informative. And you could even get email reports about any new attacks or vulnerabilities.
What do you dislike about the product?
The contrast agent has to be added to your application. This initially caused performance issues, especially on Java applications. Thankfully, we worked with Contrast to address those issues.
What problems is the product solving and how is that benefiting you?
Scanning stale libraries for vulnerabilities, detecting any security attacks, and static code analysis to improve the security of our code.

    Ian T.

Contrast support you in achieving product value

  • February 28, 2023
  • Review provided by G2

What do you like best about the product?
They have a great product, backed by a strong team who will work with you to get the maximum value
What do you dislike about the product?
No complaints! I've encountered zero issues
What problems is the product solving and how is that benefiting you?
Giving our developers a tool that helps team to build secure applications from the get go

    Vinod N.

Shift Smart with Contrast

  • February 28, 2023
  • Review provided by G2

What do you like best about the product?
Detect and block run-time attacks on known and unknown code vulnerabilities with greater precision
Resolve security vulnerabilities on multi-cloud serverless functions platforms
Test and protect third party, open-source code moving through your software supply chain
What do you dislike about the product?
no as of now, I need for Java, Python and scala it supporting all.
What problems is the product solving and how is that benefiting you?
Harden your stack against zero-day exploits like Log4j2 and Text4Shell without developer interruption.
Find and fix in real-time the vulnerabilities that matter in your code with the lowest false positive rate in the industry

    Insurance

Great IAST Tool!

  • January 13, 2022
  • Review provided by G2

What do you like best about the product?
I love the API granularity and the passive nature of the scans. Accuracy is also key. Support is great!
What do you dislike about the product?
Added performance impact when agent is active.
What problems is the product solving and how is that benefiting you?
We're filling an area of code detection that is critical for accuracy and agility. The benefit is the accuracy and a fortified enviroment.
Recommendations to others considering the product:
Consider a way to abstract UI from Developers

    Hospital & Health Care

Solid option for IAST scanning within certain languages & public clouds

  • November 24, 2021
  • Review provided by G2

What do you like best about the product?
Simple UI with solid IAST & SCA scans built into Contrast Assess/OSS product.
What do you dislike about the product?
Less robust features for .NET-based workloads: Azure functions/serverless not available (only app services), Azure DevOps integrations work but are not intensive, Contrast support are generally less-knowledgeable on .NET environments (optimized for Java & AWS environments).
What problems is the product solving and how is that benefiting you?
Implementing DevSecOps initiatives for a large health care client.
Building Assess & OSS into pipelines & app service scans are helpful feedback loops for our dev teams. This project is the first time our client has prioritized this sort of work and the client is very excited to have security more baked-in to the development lifecycle.
Recommendations to others considering the product:
Contrast is easy to use once integrated, but it depends on your development stack. Contrast is heavily-optimized towards Java and AWS workloads/environments but are creating more and more in the .NET and Azure fields as well. Unfortunately for my client, they are heavily .NET and Azure-based so some features are not available at the time of this review. If you are looking for an IAST, SCA, RASP option, Contrast is solid.

    Aggelos K.

IAST tool that will boost your Application Security Programme

  • November 19, 2021
  • Review provided by G2

What do you like best about the product?
The tool is straightforward to use; alerts and errors do not overpower developers during the Coding phase. The experience of Security Analyst, Developer, and Management is very positive.
The reports against Standards (OWASP Top 10 and PCI) are very convenient for audits allowing for better efficiency.
What do you dislike about the product?
I have not been able to identify a feature that does not help the organization achieve the results aimed when implementing the solution. The features on the roadmap, along with the ones already in place, offer a complete suite that leaves no room for disliking.
What problems is the product solving and how is that benefiting you?
Our main Customer-facing applications are checked for vulnerabilities against widespread threats (OWASP Top 10). Checking the production version of our applications allows for identifying and resolving actual exploitable vulnerabilities in our Environment. Additionally, due to the level of detail on how to fix section, we train our Software Engineers boosting the security by design culture we have in mind.
Recommendations to others considering the product:
Try Contrast out! Easy setup for a PoC and very flexible to adjust to your environment to get a quick glimpse and results

showing 31 - 40