Kiuwan Reviews

Kiuwan sast review

Pros:

Open source vulnerability and reporting part of critical vulnerabilities.

Cons:

The remediation should be elaborated and detailed report should be there.

Easy to use DevSecOps static analysis tool

Comments: Kiuwan has a very simple UI that is easier to understand and monitor the applications for improving the overall security posture.

Pros:

It has simple-to-use plug-in support for IDE and our DevOps environment.

Cons:

Faced difficulty in assigning users and roles, other than that its a great tool.

A nice security tool

Pros:

You can start monitoring your software very fast and easy

Cons:

The configuration of the users and its roles

A must use tool for development

Comments: Overall experience has been great specially taken care of legacy code wich needed our attention.

Pros:

Great tool for developers to validate code compliance. Management for oversight progress and forecasting. Also easy integration on CD / CI environment.

Cons:

Something simple, but a separate user license for K4D users on Android Studio environment.

Kiuwan Code Analisys

Comments: Our applications are old and have passed by a lot of technology upgrades, also we have poorly organized rules for coding which ailed with a big movement of in and out of resources created a very low performance environment.
With Kiuwan we now have the ability to analyse and block bad code and start in a easy and clean way to optimize our code and fasten our applications.

Pros:

Clear and simple dashboard Easy to understand the problems of the code Customization is a plus

Cons:

Restrictions on technologys were can be applied

Powerfull & Usefull, even with a small team.

Comments: Summarising... in general, it's a great tool to analyse and improve the security of a product. Sometimes you don't have enough resources to use big tools like checkmarx, and this tool is a great alternative.

Pros:

It's simple. You don't need a big team to get all potential of this tool. It can be used by 2 or 3 people. That's great for small pentesting teams or product teams.

Cons:

It's new and... it's simple. The same pro could be used as Con. Maybe it's just matter of time, but Kiuwan should improve its performance and features.

Kiuwan Review

Pros:

Kiuwan give you the ability to integrate the scanner with almost all the Editors and also in your pipelines. Vulnerabilities are well described in the report. You can integrate it with Jira which give you a centralized visibility.

Cons:

The line of codes limitations are strict and it could fail your build if you exceed the limitation with only 1 line in plus.

Best Code Security tool in the market

Pros:

Most and most valid vulnerabilities picked up

Cons:

None at this time of the project. All requirements solved with the tool

Code Analysis matters

Comments: We are solving issues like backdoors that in-house developers or third parts could have or do. Always we are looking for very high and high security bugs that could compromise the security, integrity and confidentiality of the information.
We have been finding bugs in development tine and in preproduction phase. Every bug is always a good way to learn and dont repeat it in the future.

Pros:

I like a lot that Kiuwan it’s easy to use, by the other side, it helps a lot to development teams and QA members to find new opportunities to enrich the source code of every application.

Cons:

I think it could help that results of the analysis could show a little more of the code involved, I mean, in the moment we see a bug details, you just can see the very specific line of code. I little more of code could help and sometimes avoid to go to the file.

Kiuwn can play an important role in Secure SDLC

Comments: Awesome. Helps developers identify code security flaws in quick manner to improve the security of the application against various standards e.g. OWASP Top 10 and SANS Top 25 etc.

Pros:

Ease of use and user friendliness. Most of the options are self-explanatory. Also, cloud and local analyzer enables users to use it inflexibly manner

Cons:

Custom calender for project view. Wont give you more than 2 months view

A very complete and user-friendly tool to check your code and vulnerabilities

Comments: We are solving a lot of problems in terms of security in appplications developed for the banking business. They require very strong solutions in terms of safety.

Pros:

It's very user-friendly. It provides a lot of information about your code and supports a lot of languages even for mobility.

Cons:

There are other tools like HP Fortify, and I consider that some vulnerabilities are not detected in Kiuwan.

Kiuwan Review

Pros:

The capacity of analysis and the vulnerabilities database.

Cons:

The interface it's not very clear. The review of the results is complicated for initial users.

Good product

Comments: Every day kiuwan help me about dame activity

Pros:

I Think that source analysis code is perfect

Cons:

The speed of work is most slow, you have to performance The speed.

Great App

Pros:

Everything Works perfect, no stress at all.

Cons:

Didn't get anything that i didn't like until now.

Kiuwan security

Comments: It is being great, it was pretty easy to get into it and to integrate with our project.

Pros:

It integrates well with our stack, the Java-spring stack, it traces pretty well the vulnerabilities your software has, indicating the source of the problem and where it originated.

Cons:

Some of the scans don't do such a great job when looking for the flow of the code, for example, we implemented a Spring filter that was not being caught by the scanned, giving so false positives.

Code analysis during Runtime. So code is not being uploaded . Also there is no limit to lines of Cod

Comments: Its super agile. Instant code inspection.

Pros:

There are 12 Security Standards. Sonarqube only offers 2. Code does not get uploaded in the cloud.Only the report does. Its quick to start.Best suited for QA. No need for any additional software for setup. Setup for Sonarquebe is tedious.

Cons:

Its not in Gartner´s list of security tools.This makes it difficult to convince prospective clients for making a purchase.

What a beautiful discovery!

Comments: This product helps us to improve quality of our software.

Pros:

It finds many defects in your code. It helps you to fix defects with clear explanations.

Cons:

Applications and portfolio configuration isn't user friendly.

Kiuwan Code Security

Comments: We have helped our customers to identify problems in their source code, build an efficient solution path and implement the tasks to solve problems using the Kiuwan Code Security product.

Pros:

- great summary and overview - easy to mark false positives - good scanner, many supported langauges

Cons:

- local analyzer should always be used but this is not mentioned in the documentation

It needs to evolve towards a more focused view of the security review

Pros:

Quick and easy to use, it is comfortable and efficient

Cons:

It is very devotional oriented, so it is not flexible to extract full reports of results, where all the information jumps. The governance module is very powerful but it is complicated to do some information filtering.

Kiuwan Code Security review

Comments: We have reduced the technical debt in less than 2 years significantly

Pros:

Visibility of code quality at the management level. We have reduced the technical debt in less than 2 .years significantly

Cons:

We have reduced the technical debt in less than 2 years significantly

Usefull for big all king of projects

Pros:

We use Kiuwan for all of our projects and it help us to verify and increase the quality of our code.

Cons:

It would be nice if Angular project could be analysed.

Incredible functionality

Pros:

The software gives you feedback about the code that is susceptible for a improvement.

Cons:

Sometimes it takes a lot of time to load the software

Code analysis for everything

Pros:

The quick support The functionality The dashboard The integration with Github

Cons:

No support for GOLANG No support for Slack The price

Great to control the quality of our deployments

Comments: Kiuwan is letting us controlling th quality of the different versions our vendors implement

Pros:

Everything can be configured according with our needs

Cons:

It requires a little bit deep knowledge to customize some configurations

Kiuwan is Amazing in Code Analysis

Comments: Company where I work has many projects with large numbers of code, Kiuwan allowed to improve the quality of it

Pros:

Easy to use Deep code analysis Very fast Report of results easy to understand

Cons:

No cons in kiuwan use, we are very happy whith it