Try our new research platform with insights from 80,000+ expert users

Aqua Cloud Security Platform vs Fortify WebInspect comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jan 7, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Aqua Cloud Security Platform
Ranking in DevSecOps
9th
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
16
Ranking in other categories
Cloud and Data Center Security (12th), Container Security (18th), Cloud Workload Protection Platforms (CWPP) (15th), Cloud-Native Application Protection Platforms (CNAPP) (14th), Software Supply Chain Security (2nd)
Fortify WebInspect
Ranking in DevSecOps
7th
Average Rating
7.2
Reviews Sentiment
6.8
Number of Reviews
20
Ranking in other categories
Dynamic Application Security Testing (DAST) (2nd)
 

Mindshare comparison

As of March 2025, in the DevSecOps category, the mindshare of Aqua Cloud Security Platform is 5.6%, down from 10.5% compared to the previous year. The mindshare of Fortify WebInspect is 7.8%, down from 10.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
DevSecOps
 

Featured Reviews

Burak AKCAGUN - PeerSpot reviewer
A robust and cost-effective solution, excelling in scalability, on-premises support, and responsive technical support, making it well-suited for enterprises navigating stringent regulatory environment
The most crucial aspect is runtime protection, specifically image scanning before preproduction and deployment. Customers find it invaluable to have the ability to check for vulnerabilities in an image before deployment, similar to a sandbox environment. This feature ensures that customers can identify any potential issues with the image, such as misconfigurations or vulnerabilities, before integrating it into their workloads and infrastructure. In their source pipeline, companies can identify issues before deploying changes. This is crucial because customers prefer resolving any problems or misconfigurations before the deployment process. Software change security, including GSPM Cloud, is a key feature customers seek in their infrastructure.
Navin N - PeerSpot reviewer
Effective scanning of diverse file extensions with fast reporting and issue resolution
We develop software packages for clients, and these clients are mostly in the BFSI sector. The packages need to be scanned, and we engage Fortify WebInspect for this.  Customers typically perform their own application pen tests, but in some cases, we have engagements where customers want us to scan…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution was very user-friendly."
"Support is very helpful."
"The CSPM product is great at securing our cloud accounts and I really like the runtime protection for containers and functions too."
"The most valuable feature is the security."
"The most valuable features are that it's easy to use and manage."
"The most valuable feature of Aqua Security is the scanner."
"Their sandboxing service is also really good."
"From what I understand, the initial setup is simple."
"The feature that has been most influential in identifying vulnerabilities is its ability to crawl the website, understand the structure, and analyze the network packets sent and received."
"Reporting, centralized dashboard, and bird's eye view of all vulnerabilities are the most valuable features."
"The solution is able to detect a wide range of vulnerabilities. It's better at it than other products."
"The tool provides comprehensive vulnerability assessments which help ensure our deliverables are as free from vulnerabilities as possible. It has also streamlined our web application vulnerability assessments, assisting us in delivering secure applications to our clients."
"I've found the centralized dashboard the most valuable. For the management, it helps a lot to have abilities at the central level."
"Guided Scan option allows us to easily scan and share reports."
"The most valuable feature is the static analysis."
"The user interface is ok and it is very simple to use."
 

Cons

"Aqua Security could improve the forwarding of logging into Splunk and into other tools, it should be easier."
"I would like Aqua Security to look into is the development of a web security portal."
"They want to release improvements to their product to work with other servers because now there are more focused on the Kubernetes environment. They need to improve the normal servers. I would like to have more options."
"Since we are working from home, we would like to have the proper training for Aqua."
"It's a bit hard to use the user roles. That was a bit confusing."
"Sometimes I got stressed with the UI."
"There's room for improvement, particularly in management capabilities as it may not be comprehensive enough for all customers, and it has been lacking in the realm of cloud security posture management."
"Aqua Security lacks a lot in reporting."
"Lately, we've seen more false negatives."
"We have often encountered scanning errors."
"Creating reports is very slow and it is something that should be improved."
"A localized version, for example, in Korean would be a big improvement to this solution."
"It requires improvement in terms of scanning. The application scan heavily utilizes the resources of an on-premise server. 32 GB RAM is very high for an enterprise web application."
"There are some file extensions, like .SER, that Fortify WebInspect doesn't scan."
"I want to enhance automation. Currently, Fortify WebInspect can scan and find vulnerabilities, but users with specific skills need to interpret the results and understand how to address them."
"I'm not sure licensing, but on the pricing, it's a bit costly. It's a bit overpriced. Though it is an enterprise tool, there are other tools also with similar functionalities."
 

Pricing and Cost Advice

"Aqua Security is not cheap, and it's not very expensive, such as Splunk, they are in the middle."
"They were reasonable with their pricing. They were pretty down-to-earth about the way they pitched their product and the way they tried to close the deal. They were one of the rare companies that approached the whole valuation in a way that made sense for our company, for our needs, and for their own requirements as well... They will accommodate your needs if they are able to understand them and they're stated clearly."
"Dealing with licensing costs isn't my responsibility, but I know that the licenses don't depend on the number of users, but instead are priced according to your workload."
"The pricing of this solution could be improved."
"It comes at a reasonable cost."
"This solution is very expensive."
"Fortify WebInspect is a very expensive product."
"Our licensing is such that you can only run one scan at a time, which is inconvenient."
"The price is okay."
"The pricing is not clear and while it is not high, it is difficult to understand."
"Its price is almost similar to the price of AppScan. Both of them are very costly. Its price could be reduced because it can be very costly for unlimited IT scans, etc. I'm not sure, but it can go up to $40,000 to $50,000 or more than that."
"It’s a fair price for the solution."
report
Use our free recommendation engine to learn which DevSecOps solutions are best for your needs.
839,319 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
25%
Computer Software Company
13%
Manufacturing Company
11%
Government
8%
Financial Services Firm
18%
Computer Software Company
15%
Government
13%
Manufacturing Company
13%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you think of Aqua Security vs Prisma Cloud?
Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valuable feature and their speed of integration is very good. The initial setup was ...
What do you like most about Aqua Security?
Customers find it invaluable to have the ability to check for vulnerabilities in an image before deployment, similar to a sandbox environment.
What is your experience regarding pricing and costs for Aqua Security?
It comes at a reasonable cost. When compared to Prisma Cloud, it is more budget-friendly.
What do you like most about Fortify WebInspect?
The solution's technical support was very helpful.
What is your experience regarding pricing and costs for Fortify WebInspect?
Fortify WebInspect can be a bit expensive. However, considering its stability and reliability in meeting current standards, the cost is justified. Still, making the cost more affordable for multipl...
What needs improvement with Fortify WebInspect?
I would like WebInspect's scanning capability to be quicker. Specifically, being able to scan a particular flow or part of an application more rapidly would be beneficial. Additionally, the cost of...
 

Also Known As

Aqua Security Platform, CloudSploit, Argon
Micro Focus WebInspect, WebInspect
 

Overview

 

Sample Customers

HPE Salesforce Telstra Ellie Mae Cathay Pacific HomeAway
Aaron's
Find out what your peers are saying about Aqua Cloud Security Platform vs. Fortify WebInspect and other solutions. Updated: January 2025.
839,319 professionals have used our research since 2012.