*Business Need / Required Functionality Veracode Static Analysis is a Static Application Security Testing (SAST) tool that helps identify and fix security vulnerabilities in code. It analyzes both source code and binary code to find flaws like those that could lead to injection attacks or other vulnerabilities. Veracode offers different scan methods, including IDE scans, Pipeline scans, and Policy scans, to integrate security testing at various points in the Software Development Life Cycle (SDLC). Veracode Dynamic Analysis, also known as DAST (Dynamic Application Security Testing), is a security testing method that analyzes web applications and APIs while they are running, detecting runtime vulnerabilities and potential exploitable flaws. It simulates real-world attacks and tests various aspects of the application, including user interactions, hidden attributes like cookies and headers, and even external dependencies. 50 Licenses: Veracode Static Analysis - Per Developer; Veracode Software Composition Analysis - Per Developer; 100 Licenses Veracode Dynamic Analysis - Per URL; Installation and Trainins Services: Veracode eLearning: Application Security Track - Per Seat (Qty 10); Manufacturer's Software Warranty / Maintenance: Veracode Technical & Program Support – Premium (Qty 1)
