Black Duck Hub

Black Duck Hub

door Black Duck

Wie gebruikt Black Duck Hub?

Jenkins, SonarQube, Artifactory, Nexus, Eclipse, Maven, Rational Team Concert Integration, Team City, IntelliJ IDEA

Wat is Black Duck Hub?

Organizations worldwide use Black Duck Softwares industry-leading products to secure and manage open source software, eliminating the pain related to security vulnerabilities, open source license compliance and operational risk.
Black Duck is headquartered in Burlington, MA, and has offices in Mountain View, CA, London, Frankfurt, Hong Kong, Tokyo, Seoul and Beijing. For more information, visit www.blackducksoftware.com.

Black Duck Hub - Details

Black Duck

http://www.blackducksoftware.com

Opgericht in 2002

Black Duck Hub - Prijsoverzicht

Black Duck Hub heeft geen gratis versie maar biedt wel een gratis proefperiode. Black Duck Hub betaalde versie vanaf US$ 5.000,00.

Beginprijs

US$ 5.000,00

Gratis versie

Nee

Gratis proef

Ja

Implementatie

Cloud, SaaS, Web

Geïnstalleerd - Windows

Training

Webinars

Documentatie

Ondersteuning

24/7 (contact met medewerker)

Kantooruren

Online

Functies van Black Duck Hub

IT-asset management software
Auditbeheer
Compliance bijhouden
Configuratiebeheer
Contract- en licentiebeheer
Inkoopbeheer
Kosten bijhouden
Leveranciersbeheer
Onderhoudsbeheer
Voorraadbeheer
Vorderingenbeheer
Knooppuntbeheer
Kopieerbeveiliging
Licentie voor draagbaar apparaat
Licenties bijhouden
Productactivering
Proeflicentie
Firewalls
Inbraakdetectiesysteem
Rapportage en analyse
Reactie op dreigingen
Scannen op kwetsbaarheden
Toegangsbeheer
Toezicht op activiteiten
VPN
Bandbreedtecontrole
Baselinemanager
Controle op internetgebruik
Dashboard
IP-adressen controleren
Netwerk diagnose
Netwerklocatiebeheer
SLA-controle
Servercontrole
Uptimecontrole
Webverkeerrapportage
Antispam
Antivirus
Audittrail
Bescherming van kwetsbaarheden
Beveiliging van financiële gegevens
Beveiligingsgebeurtenissen registreren
Compliancebeheer
Controle van databasebeveiliging
Onderhoudsplanning
Realtime controle
Toegangsbeheer voor bestanden
Update van virusdefinities

Reviews van Black Duck Hub

5 van 28 reviews worden weergegeven

In totaal
4,2/5
Gebruiksgemak
3,7/5
Klantenservice
4,1/5
Functies
4/5
Waar voor je geld
3,8/5
Geverifieerde reviewer
Consulting Partner, Cyber Security Delivery - Africa
Informatietechnologie en -diensten, 2-10 werknemers
Heeft de software gebruikt voor: 1+ jaar
  • Totaalscore
    5/5
  • Gebruiksgemak
    5/5
  • Functies en functionaliteit
    5/5
  • Klantenondersteuning
    4/5
  • Waar voor je geld
    5/5
  • Waarschijnlijkheid van aanbeveling
    10/10
  • Bron van de reviewer 
  • Bron: GetApp
  • Beoordeeld op 10-4-2018

"Ease of Use and extensible integration availability"

Pluspunten: The integrations points are quite very wide and cater to whatever type of CI/ CDthat you may want to use, also, the IDE integrations are quite easy to deploy, thereby not locking you into a corner if your DevOps team are fixed on one particular type of technologies. Also, the accuracy and detection capability seems to be very solid

Minpunten: not sure if there is something that i did not really like, maybe initially it did not have the code snippets, but that has been taken care of now ; giving the solution better capability and usage experience

  • Bron van de reviewer 
  • Bron: GetApp
  • Beoordeeld op 10-4-2018
Rajiv A.
senior specialist cloud architect
Heeft de software gebruikt voor: 6-12 maanden
  • Totaalscore
    5/5
  • Gebruiksgemak
    5/5
  • Functies en functionaliteit
    5/5
  • Klantenondersteuning
    3/5
  • Waar voor je geld
    5/5
  • Waarschijnlijkheid van aanbeveling
    10/10
  • Bron van de reviewer 
  • Beoordeeld op 29-8-2017

"The ease of identifying and managing the open source code vulnerabilities and license risks. "

Opmerkingen: Ease in identifying the security exposures and hidden vulnerabilities created by open source components.
Time to market is faster for identifying the vulnerabilities early during the development stage.
open source license management becomes so easy now.

Pluspunten: The ease of identifying and managing the open source code and as well examining the source code for vulnerabilities and specifically the hidden security vulnerabilities is amazing. This is the product that every organization should look out to manage the source code for identifying quickly about vulnerabilities, open source code license management which can be lethal if ignored. Easily integrates with your current CI engines and sets the pace for your time to market. Ease in identifying the security exposures and hidden vulnerabilities created by open source components.
Time to market is faster for identifying the vulnerabilities early during the development stage.
open source license management becomes so easy now.
The product is really amazing already. Hub knowledge bases are huge and growing day by day.

Minpunten: Improve in reporting, and better API experience. Black Duck is a duckling and is growing fast.Suggest black duck to update the KBs quickly.

  • Bron van de reviewer 
  • Beoordeeld op 29-8-2017
Pete T.
Infrastructure & Security Manager
Bankwezen, 1.001-5.000 werknemers
Heeft de software gebruikt voor: 6-12 maanden
  • Totaalscore
    3/5
  • Gebruiksgemak
    3/5
  • Functies en functionaliteit
    3/5
  • Klantenondersteuning
    2/5
  • Waar voor je geld
    2/5
  • Waarschijnlijkheid van aanbeveling
    7/10
  • Bron van de reviewer 
  • Beoordeeld op 26-7-2017

"Great software which I believe in, but not a pain free experience."

Opmerkingen: Ability to detect open source vulnerabilities in our code.

Pluspunten: Ability to detect open source vulnerabilities in our code. Pre-sales contact & support was good (demo, trial etc). Clean interface. Performance improved in v4.0.0.

Minpunten: Difficult installation process, made more complicated with the introduction of Docker in v4.0.0 & with introduction of mandatory SSL/TLS web server certificate which requires troubleshooting trust issues. Support team are reluctant to pick up the phone or enter into telephone support, with sporadic email communication being the favoured option. Some gaps in documentation. Why is there no pre-built Black Duck Hub virtual appliance that I can drop into VMware? No documentation for implementing with vSphere Integrated Containers (VIC), only documentation for Docker & Openshift. Reporting improvements still to be made.

Antwoord van de leverancier

van Black Duck op 31-7-2017

Thank you for providing feedback about your experience with Black Duck Hub. We¿re so sorry you are having issues ¿ and we¿d like to work together to fix that. We have escalated your case so that we can resolve it quickly.

Our customer support team strives to provide support in the way that works best for you, so we noted in your account that you prefer to be reached via phone. A senior support representative will reach out to you via phone.

Many of the issues you experienced during deployment were due to our old AppMgr architecture. The new Docker deployment is a more stable environment built to fix many of the issues you experienced. The Docker deployment can be harder to implement and run the first time; our senior support representative will be guiding you through this process. We will do better next time you have an issue; please escalate any issues you have to your Customer Success Manager.

  • Bron van de reviewer 
  • Beoordeeld op 26-7-2017
Marco I.
System Analyst
Computersoftware, 1.001-5.000 werknemers
Heeft de software gebruikt voor: 1-5 maanden
  • Totaalscore
    5/5
  • Gebruiksgemak
    5/5
  • Functies en functionaliteit
    4/5
  • Klantenondersteuning
    5/5
  • Waar voor je geld
    5/5
  • Waarschijnlijkheid van aanbeveling
    10/10
  • Bron van de reviewer 
  • Beoordeeld op 30-9-2017

"Using Black Duck HUB for Open Source Governance in software projects."

Opmerkingen: We are working in improving Open Source Culture in our Company and Customers: Black Duck HUB is a very good tool for awareness about legal, security and operational risks in using Open Source Components.

Pluspunten: We are working in improving Open Source Culture in our Company and Customers: Black Duck HUB is a very good tool for awareness about legal, security and operational risks in using Open Source Components.
A very good thing is that it provide features for code scanning, independently from language and technology, also integrated with CI/CD tools like Jenkins.
The GUI is very easy to use and intuitive, the dashboard give a lot of information about Open Source Components in the project and you can take advantage of notification about new vulnerability.
In the latest versions Back Duck Hub is also improved in remediation suggestions about vulnerability.
Black Duck provide also good reports and you can customize it using restful API and direct access to a Report Database.
What is more it is really easy to install, we use the docker compose version: just install Docker, download images and run a command to set up the environment or upgrade to a new version!
Last but not least the technical support and customer care is really good.

Minpunten: Black Duck HUB is a quite new product, despite it has very famous and consolidate ancestors like Protex. So some features can improve and better meet users needs, especially about reports and API. Also documentation can improve .

  • Bron van de reviewer 
  • Beoordeeld op 30-9-2017
Emmanuel C.
Project Manager, Technology
Heeft de software gebruikt voor: 6-12 maanden
  • Totaalscore
    5/5
  • Gebruiksgemak
    5/5
  • Functies en functionaliteit
    4/5
  • Klantenondersteuning
    5/5
  • Waar voor je geld
    3/5
  • Waarschijnlijkheid van aanbeveling
    Zonder beoordeling
  • Bron van de reviewer 
  • Beoordeeld op 25-7-2017

"Excellent open source governance tool!"

Pluspunten: I love the speed and overall simplicity of the application. It does a good job of finding most open source packages and performs identification automatically. It is very useful to see where a component is being used across my organization, as well as see other factors beyond license risk like security and operational risk.

Minpunten: The application is expensive due to the billing model that enforces a quota on amount of code scanned. This disincentivizes me to use the application when I would ordinarily want to scan as much of my code as possible due to its ease of use. It has fewer features when compared to Protex, but Black Duck is slowly resolving this.

Antwoord van de leverancier

van Black Duck op 28-8-2017

Thank you for your feedback, we love hearing from our customers. You are correct ¿ Hub features are continually improved and we hope you are staying up to date and enjoying the new features. We have been working hard to close the gap on feature differences, and most will be available in Hub by end of the year. Additionally, Hub has many features not available in Protex, including showing security vulnerabilities. If you haven¿t already checked it out, check out one of our favorite new features in this video (https://www.youtube.com/watch?v=_4v2WwVQs1I) ¿ Hub Detect!

  • Bron van de reviewer 
  • Beoordeeld op 25-7-2017