Sold by: Black Duck Software, Inc.
Application security tools and services that integrate security testing into DevOps workflows. Available via Private Offer.
Sold by: Black Duck Software, Inc.
Overview
Black Duck helps you build trust in your software by enabling you to manage application security, quality, and compliance risks at the speed your business demands. Our application security tools and services integrate directly with your existing AWS environment. Optimize your DevOps workflows and transform the way you build and deliver software by aligning people, processes, and technology to intelligently address software risks across your portfolio and at all stages of the application lifecycle. Pricing listed is for Black Duck Binary Analysis - contact Black Duck for additional products and Private Offer pricing.
Highlights
- Secure code as fast as you write it: Find and fix security defects in both your code and open source dependencies, directly within the IDE, with Code Sight.
- Automate testing without compromising velocity: Integrate and automate security, quality, and compliance analysis source code, binaries, and IaC into your CI pipelines with Coverity SAST, Black Duck SCA and Black Duck Binary Analysis. Automate testing and detection of vulnerabilities and data leakage issues in cloud applications and microservices with Seeker IAST. Identify hidden zero-day vulnerabilities and reliability defects in IoT and network device software with Defensics Fuzzing.
- Identify and focus on the highest risk security defects: Cut through the noise of AST findings with Software Risk Manager machine learning-based vulnerability correlation and prioritization that focuses remediation efforts on issues that pose the highest business risk. Correlate and prioritize findings across your AST tools and activities with Software Risk Manager to focus remediation efforts where they will have the greatest impact.
Details
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on contract duration. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Dimension | Description | Cost/12 months |
|---|---|---|
BD Binary Cloud - 50 | Black Duck Binary Cloud 50 Team Members Annual License | $52,500.00 |
Vendor refund policy
All fees are non-refundable
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
Online, email and phone support available.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Black Duck SCA
By Black Duck Software, Inc.
Black Duck SCA helps security and development teams identify and mitigate open source related risks across application portfolios.
Black on Amazon Linux 2023 with maintenance support by Apps4Rent
By Apps4rent LLC
This product has charges associated with it for technical support and maintenance provided by Apps4Rent. The usage charges are USD 0.1/hour.
Black on Ubuntu Debain12 with maintenance support by Apps4Rent
By Apps4rent LLC
This product has charges associated with it for technical support and maintenance provided by Apps4Rent. The usage charges are USD 0.1/hour.
Black on Ubuntu 24.04LTS with maintenance support by Apps4Rent
By Apps4rent LLC
This product has charges associated with it for technical support and maintenance provided by Apps4Rent. The usage charges are USD 0.1/hour.
Customer reviews
Ali s.
Good security, Stable and feature rich.
Reviewed on Nov 22, 2021
Review provided by G2
What do you like best about the product?
Black duck software composition analysis works amazing on Mac, It has a good security and excellent features that protects and examines our source code from compliance issues.
What do you dislike about the product?
Black duck should add features like packet analysis and binary analysis for better performance.
What problems is the product solving and how is that benefiting you?
We use black duck to audit our source code to protect from liscence and open source compliance. It is easy to use, stable, and well recognized in the industry.
Leave a comment0 comments
Pratik H.
Legal and Operational risks management tool.
Reviewed on Nov 03, 2021
Review provided by G2
What do you like best about the product?
It has impressive features for both legal & security 3rd party software compliance. UI is easy to understand. It helps us to analyze the code in a timely and accurate manner.
What do you dislike about the product?
According to me it has all the features required. It is fast and easy to use.
What problems is the product solving and how is that benefiting you?
The support team is always available to resolve the problem if any. Rest it helps us to know what's in your code and analyze your code in a timely and accurate manner.
Information Technology and Services
What's there in your code?
Reviewed on Nov 02, 2021
Review provided by G2
What do you like best about the product?
Blackduck is part of Devonshire which provides us automatic scanning. Black duck is not just for devops but also Secops. Blackduck has the most extensive open source KB in the industry
What do you dislike about the product?
I am expecting better governance of teams. I have various teams using the capacity and I need to know which team is using how much. Black duck can come up with tenancy.
What problems is the product solving and how is that benefiting you?
Black duck being rich in its knowledge base about the vulnerabilities and license issues of open source components, quickly compares the identified inventory to the Black duck knowledge base and lists all the vulnerabilities and license issues in the code
Recommendations to others considering the product:
Well suited:. Easily come out of pain to manage open source components. No worries, Black duck is to the rescue, it takes care of your pen source components in terms of license and security. Also SecOps eases with the super Black duck
Less suited: can't really come up with a scenario, where it can be less suited. Until you stop using open source components in your code, quite impossible
Less suited: can't really come up with a scenario, where it can be less suited. Until you stop using open source components in your code, quite impossible
Shayna A.
SecOps made easy
Reviewed on Oct 29, 2021
Review provided by G2
What do you like best about the product?
Quick inventory scan, Security and License risk management, integration for automatic scanning.
What do you dislike about the product?
It is slow, outdated design and is to expensive.
What problems is the product solving and how is that benefiting you?
Black Duck being well established about the vulnerabilities and license issues of open source components, quickly compares the identified inventory to the Black Duck knowledge base and lists all the vulnerabilities and license issues in the code.
SAILEE J.
Need of today’s market
Reviewed on Oct 03, 2021
Review provided by G2
What do you like best about the product?
Black duck is certainly an industry leader in open source scanning primarily due to the fact that it is simpler to use and hence eliminate majority open source vulnerabilities and bugs and licensing issues. Should there be any enhancement request Blackduck is fairly adaptive and responsive towards implementing the same.
What do you dislike about the product?
The reporting could be enhanced as it does not provide the output the way one would expect it to be owing to which, it adds additional overhead to present the result in a better way
What problems is the product solving and how is that benefiting you?
It is very quick and responsive I remember including us small sized code from a random source and Blackduck immediately identified it