We performed a comparison between Fortinet FortiWeb and Rapid7 AppSpider based on real PeerSpot user reviews.
Find out what your peers are saying about Amazon Web Services (AWS), F5, Microsoft and others in Web Application Firewall (WAF)."One of the big advantages of using Fortinet FortiWeb is all the Fortinet family solutions use the same user interface and logic. This makes it easy to use, configure, manage, and understand if you have used one of their solutions before or are wanting to implement other Fortinet solutions in the future. Additionally, all Fortinet solutions can be managed with one application called FortiManager."
"The solution has a very simple deployment."
"It is easy to install and to maintain."
"It offers some feedback and suggestions that guide our system development while helping our vendors to update their applications and fix any issues or bugs."
"Security Fabric integration. This is really a value-added feature as FortiWeb can interact with the rest of the client’s Fortinet pack to provide an intelligent security layer like (FortiSIEM for central log management and correlation, FortiGate, FortiSandbox for malware analysis, etc.)."
"FortiGate is a stable product."
"Other than the additional security with exploit protection, we have simpler certificate handling, as we can keep internal servers using internal certificates continuously distributed and updated by Active Directory Group Policy, while the public certificates become updated only in a single place, FortiWeb itself."
"The support services, performance, and pricing are all valuable features. The performance is excellent."
"The setup is usually straightforward."
"I would say that it is stable, as I am not aware of any major issues."
"It scans all the components developed within a web application."
"When it is set up properly, it can do scanning on web apps with multiple engines automatically."
"I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us."
"AppSpider's most valuable feature is reporting - everything is stored in the local database so it can be sent to other machines."
"The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all the reports exactly what we want in a flexible way."
"The most valuable feature is the reporting, which is compliant with international standards."
"The false positives are annoying."
"I would like to see the Application Delivery Control (ADC) and Web Application Firewall (WAF) combined in one device."
"New releases and old releases have some bugs, some features do not work as good as we want but every new release the Fortinet team fixes up problems."
"For advanced users, it would be really useful to have access and the ability to manipulate packets. If we can access and manipulate the contents of packets, even encrypted packets... that would be powerful. Since we're looking at packets arriving at our network, we would have the private key to access those packets and their information."
"The integration with other products should be improved."
"The upgrade process could be a bit smoother."
"A user interface or dashboard for troubleshooting is needed."
"The Layer 7 DDoS attacks need improvement, it could be better."
"The enterprise interface is too simple. It should be more customizable."
"This price of this solution is a little bit expensive."
"Support response times are slow and can be improved."
"The dashboard and interface are crucial and they need some improvement."
"The product needs to be able to scale for large companies, like ours. We have millions of IP addresses that need to be scanned, and the scalability is not great."
"It needs better integration with mobile applications."
"The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution."
"The solution is too slow. It could take a full day to scan. Competitors are much faster."
Fortinet FortiWeb is ranked 4th in Web Application Firewall (WAF) with 83 reviews while Rapid7 AppSpider is ranked 26th in Static Application Security Testing (SAST) with 13 reviews. Fortinet FortiWeb is rated 8.0, while Rapid7 AppSpider is rated 7.8. The top reviewer of Fortinet FortiWeb writes "Cost-effective, easy to configure, and works very well as a single solution for multiple environments". On the other hand, the top reviewer of Rapid7 AppSpider writes "Useful vulnerability reporting data, flexible, and simple implementation". Fortinet FortiWeb is most compared with F5 Advanced WAF, Fortinet FortiADC, AWS WAF, Azure Web Application Firewall and Imperva Web Application Firewall, whereas Rapid7 AppSpider is most compared with Rapid7 InsightAppSec, OWASP Zap, Acunetix, Invicti and Qualys Web Application Scanning.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.