Try our new research platform with insights from 80,000+ expert users

CodeSonar vs Fortify on Demand comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 8, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Customer Service

Sentiment score
5.4
CodeSonar's support team is praised for responsiveness, expertise, and excellent service, often rated four to five stars.
No sentiment score available
Fortify on Demand's customer service is valued for excellence, but technical support responsiveness and coordination can sometimes falter.
 

Room For Improvement

Sentiment score
4.5
CodeSonar needs improved architecture scanning, language support, security features, flexible licensing, and easier setup to compete with Polyspace.
Sentiment score
5.4
Fortify on Demand needs better reporting, faster scans, expanded language support, streamlined UI, CI/CD integration, and improved customer support.
 

Scalability Issues

Sentiment score
8.0
CodeSonar is praised for scalability, performing well across projects, and organizations report no issues scaling its usage.
Sentiment score
8.2
Fortify on Demand is highly scalable, flexible, and suitable for enterprises, despite occasional pricing and scan limitations.
 

Setup Cost

Sentiment score
8.5
CodeSonar is expensive but valued for reliability and ease of use, with costs over $100,000 annually for large projects.
No sentiment score available
Enterprise users report mixed pricing perceptions of Fortify on Demand, citing high cost but valuable features and scalability.
 

Stability Issues

Sentiment score
8.1
CodeSonar is highly stable and dependable, consistently receiving high ratings for its reliability and crash-free performance.
Sentiment score
8.9
Fortify on Demand is stable and reliable, with minor issues, generally meeting user expectations with high stability scores.
 

Valuable Features

Sentiment score
7.8
CodeSonar effectively detects memory leaks, runtime errors, and security threats, ensuring code stability with its user-friendly interface.
Sentiment score
8.5
Fortify on Demand enhances security and efficiency with code scanning, CI/CD integration, real-time dashboards, and detailed reporting.
 

Categories and Ranking

CodeSonar
Ranking in Application Security Tools
20th
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
7
Ranking in other categories
Static Code Analysis (5th)
Fortify on Demand
Ranking in Application Security Tools
9th
Average Rating
8.0
Reviews Sentiment
7.8
Number of Reviews
59
Ranking in other categories
Static Application Security Testing (SAST) (8th)
 

Mindshare comparison

As of November 2024, in the Application Security Tools category, the mindshare of CodeSonar is 1.2%, up from 0.8% compared to the previous year. The mindshare of Fortify on Demand is 5.2%, up from 4.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools
 

Featured Reviews

Mathieu ALBRESPY - PeerSpot reviewer
Nice interface, quick to deploy, and easy to expand
This is the first time I've used this kind of software. It was the only one we could apply to analyze with MISRA rules. At my new company, I tried to use Klocwork. I tried to use it, just once so I cannot compare it exactly with CodeSonar. I also have a plugin for my Visual Studio and I try to make it work. It's not easy, however, I don't think that we have this kind of functionality with CodeSonar. It can do some incremental analysis. However, since this feature is also available on CodeSonar, it would be a good idea to have a plugin on Visual Studio just to have a quick analysis.
Jonathan Steyn - PeerSpot reviewer
Source code analyzer, FPR file generation, reduction of false positives and generates compliance reports, for in-depth analysis
Not challenges with the product itself. The product is very reliable. It does have a steep learning curve. But, again, one thing that Fortify or OpenText does very well is training. There are a lot of free resources and training in the community forums, free training as well as commercial training where users can train on how to use the back-end systems and the scanning engines and how to use command-line arguments because some of the procedures or some of the tools do require a bit of a learning curve. That's the only challenge I've really seen for customers because you have to learn how to use the tool effectively. But Fortify has, in fact, improved its user interface and the way users engage the dashboards and the interfaces. It is intuitive. It's easy to understand. But in some regards, the cybersecurity specialist or AppSec would need a bit of training to engage the user interface and to understand how it functions. But from the point of the reliability index and how powerful the tool is, there's no challenge there. But it's just from a learning perspective; users might need a bit more skill to use the tool. The user interface isn't that tedious. It's not that difficult to understand. When I initially learned how to use the interfaces, I was able to master it within a week and was able to use it quite effectively. So training is required. All skills are needed to learn how to use the tool. I would like to see more enhancements in the dashboards. Dashboards are available. They do need some configuration and settings. But I would like to see more business intelligence capabilities within the tool. It's not particularly a cybersecurity function, but, for instance, business impact analysis or other features where you can actually use business intelligence capabilities within your security tool. That would be remarkable because not only do you have a cybersecurity tool, but you also have a tool that can give you business impact analysis and some other measurements. A bit more intelligence in terms of that from a cybersecurity perspective would be remarkable.
report
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
816,562 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
25%
Computer Software Company
14%
University
9%
Financial Services Firm
6%
Financial Services Firm
20%
Manufacturing Company
14%
Computer Software Company
13%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about CodeSonar?
CodeSonar’s most valuable feature is finding security threats.
What is your experience regarding pricing and costs for CodeSonar?
The application’s pricing is high compared to other tools. I rate its pricing a four out of ten.
What needs improvement with CodeSonar?
Our license model allows one user per license. Currently, we have limitations for VPN profiles. We can’t share the key with other users. There could be a shared licensing model for the users. It wi...
What do you like most about Micro Focus Fortify on Demand?
It helps deploy and track changes easily as per time-to-time market upgrades.
What is your experience regarding pricing and costs for Micro Focus Fortify on Demand?
In comparison with other tools, they're competitive. It is not more expensive than other solutions, but their pricing is competitive. The licenses for Fortify On Demand are generally bought in unit...
What needs improvement with Micro Focus Fortify on Demand?
Not challenges with the product itself. The product is very reliable. It does have a steep learning curve. But, again, one thing that Fortify or OpenText does very well is training. There are a lot...
 

Also Known As

No data available
Micro Focus Fortify on Demand
 

Overview

 

Sample Customers

Viveris, Micrel Medical Devices, Olympus, SOFTEQ, SONY
SAP, Aaron's, British Gas, FICO, Cox Automative, Callcredit Information Group, Vital and more.
Find out what your peers are saying about CodeSonar vs. Fortify on Demand and other solutions. Updated: October 2024.
816,562 professionals have used our research since 2012.