Introducing G2.ai, the future of software buying.Try now
Compare Black Duck and Semgrep 
Featured Products
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
OX Security
Visit Website
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
CAST Highlight
Visit Website
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
Aikido Security
Visit Website
At a Glance
Market Segments
Enterprise (50.0% of reviews)
Enterprise (47.2% of reviews)
Entry-Level Pricing
No pricing available
Starting at $40.00 1 contributor Per Month
Black Duck
Star Rating
(27)4.0 out of 5
Market Segments
Enterprise (50.0% of reviews)
Pros & Cons
Entry-Level Pricing
No pricing available
Learn more about Black DuckSemgrep
Star Rating
(54)4.6 out of 5
Market Segments
Enterprise (47.2% of reviews)
Pros & Cons
Entry-Level Pricing
Starting at $40.00 1 contributor Per Month
Free Trial is available
Learn more about SemgrepBlack Duck vs Semgrep
When assessing the two solutions, reviewers found Semgrep easier to use, set up, and administer. Reviewers also preferred doing business with Semgrep overall.
- Reviewers felt that Semgrep meets the needs of their business better than Black Duck.
- When comparing quality of ongoing product support, reviewers felt that Semgrep is the preferred option.
- For feature updates and roadmaps, our reviewers preferred the direction of Semgrep over Black Duck.
Pricing
Entry-Level Pricing
Black Duck
No pricing availableSemgrep
Semgrep Code, Supply Chain, and Secrets Detection
Starting at $40.00
1 contributor Per Month
Extensible AppSec for growing teams. Choose from Code (SAST), Supply Chain (SCA), and Secrets Detection to eliminate noise out of the box, streamline developer workflows, and give security teams full visibility.
- Choose from SAST, SCA, and Secrets Detection
- Pro Rules and cross-file analysis
- AI Assistant
Free Trial
Black Duck
Free Trial is available
Semgrep
Free Trial is available
Ratings
Meets Requirements
7.9
15
8.8
48
Ease of Use
8.0
15
9.1
49
Ease of Setup
8.1
9
9.4
36
Ease of Admin
8.3
9
9.1
22
Quality of Support
7.7
13
8.8
43
Has the product been a good partner in doing business?
8.3
11
9.6
22
Product Direction (% positive)
6.4
16
9.2
45
Features by Category
Administration
Not enough data
9.0
18
Not enough data
8.2
17
Analysis
Not enough data
8.4
19
Not enough data
9.1
21
Not enough data
9.4
21
Not enough data
9.1
21
Testing
Not enough data
8.7
20
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
7.7
17
Not enough data
7.5
18
Not enough data
8.1
19
Not enough data
7.3
21
Agentic AI - Static Application Security Testing (SAST)
Not enough data
7.9
11
Dynamic Application Security Testing (DAST)Hide 13 FeaturesShow 13 Features
Not enough data
Not enough data
Administration
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Performance
Not enough data
8.2
12
Not enough data
8.0
11
Not enough data
8.0
11
Not enough data
9.0
10
Network
Not enough data
8.5
10
Not enough data
7.8
10
Not enough data
8.0
10
Application
Not enough data
Feature Not Available
Not enough data
8.9
11
Not enough data
8.5
11
Agentic AI - Vulnerability Scanner
Not enough data
6.9
6
Not enough data
7.5
6
Functionality - Software Composition Analysis
Not enough data
8.4
18
8.0
5
8.2
18
Not enough data
8.5
18
Effectiveness - Software Composition Analysis
8.3
5
8.5
18
8.0
5
8.3
18
9.3
5
8.3
18
Documentation
Not enough data
8.9
19
Not enough data
9.3
20
Not enough data
8.2
20
Security
Not enough data
7.4
21
Not enough data
7.9
17
Not enough data
8.9
17
Agentic AI - Static Code Analysis
Not enough data
7.7
10
Not enough data
7.6
9
Not enough data
7.7
10
Performance - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Integration - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Interactive Application Security Testing (IAST)Hide 1 FeatureShow 1 Feature
Not enough data
Not enough data
Agentic AI - Interactive Application Security Testing (IAST)
Not enough data
Not enough data
Categories
Categories
Shared Categories
Black Duck and Semgrep are categorized as AI AppSec Assistants and Software Composition Analysis
Unique Categories
Black Duck has no unique categories
Reviews
Reviewers' Company Size
Black Duck
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Semgrep
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Information Technology and Services
30.8%
Computer Software
30.8%
Computer & Network Security
7.7%
Utilities
3.8%
Telecommunications
3.8%
Other
23.1%
Information Technology and Services
24.5%
Computer Software
20.8%
Financial Services
15.1%
Manufacturing
5.7%
Semiconductors
5.7%
Other
28.3%
Discussions
Black Duck has no discussions with answers
Semgrep has no discussions with answers
Hunting for software insights?
With over 3 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
