Try our new research platform with insights from 80,000+ expert users

Fortify Static Code Analyzer vs Klocwork comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Scalability Issues

No sentiment score available
Sentiment score
7.2
Klocwork demonstrates excellent scalability and adaptability for teams of all sizes, integrating well with various infrastructures and tools.
 

Valuable Features

No sentiment score available
Sentiment score
8.2
Klocwork enhances software quality with static code analysis, integrating smoothly with CI and IDEs for efficient defect detection.
 

Room For Improvement

No sentiment score available
Sentiment score
4.9
Klocwork faces performance, language support, and usability issues, causing false warnings, slow updates, and limited Agile tool integration.
 

Stability Issues

No sentiment score available
Sentiment score
8.6
Klocwork is praised for stability and reliability, despite performance updates and network-related connectivity issues some users experience.
 

Customer Service

No sentiment score available
Sentiment score
5.0
Klocwork offers highly rated, proactive technical support with quick issue resolution, available in over thirty countries.
 

Setup Cost

No sentiment score available
Sentiment score
8.5
Klocwork provides flexible licensing and competitive pricing, justified by its capabilities, suitable for both small and large organizations.
 

Categories and Ranking

Fortify Static Code Analyzer
Ranking in Static Code Analysis
3rd
Average Rating
8.2
Reviews Sentiment
7.8
Number of Reviews
16
Ranking in other categories
No ranking in other categories
Klocwork
Ranking in Static Code Analysis
7th
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
20
Ranking in other categories
Application Security Tools (23rd), Static Application Security Testing (SAST) (16th)
 

Mindshare comparison

As of November 2024, in the Static Code Analysis category, the mindshare of Fortify Static Code Analyzer is 23.2%, up from 18.9% compared to the previous year. The mindshare of Klocwork is 6.2%, up from 6.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Code Analysis
 

Featured Reviews

Vishal Dhamke - PeerSpot reviewer
An expansive platform with comprehensive security rules and patterns to identify vulnerabilities
Setting up Fortify Static Application Security Testing (SAST) involves several steps to ensure that the tool is correctly configured and integrated into your development workflow, for example: installation, license activation, user access and permissions, integration with the development environment, project configuration, custom rules and policies, etc. The initial setup is very easy. I have used the enterprise version and a standalone version. The enterprise version definitely takes an ample amount of time to deploy because it needs to have a server, other logistics, and a proper RBAC in place. The enterprise version would take an ample amount of time, but the standard version is just a few clicks. A team of four to five people is required for the maintenance, and frequent updates are required to keep all the signatures up to date. I would rate the setup a nine out of ten.
AnirbanSarkar - PeerSpot reviewer
Lets you find defects during the development phase, so you don't have to wait till the development is over to find and address flaws
What needs improvement in Klocwork, compared to other products in the market, is the dashboard or reporting mechanisms that need to be a bit more flexible. The Klocwork dashboard could be improved. Though it's good, it's not as good as some of the other products in the market, which is a problem. The reporting could be more detailed and easier to sort out because sorting in Klocwork could be a bit more time-consuming, mainly when sorting defects based on filters, compared to how it's done on other tools such as Coverity. What I'd like added in the next release of Klocwork is the peer code review Cahoots which used to be a part of Klocwork, and the architecture analysis and both have been taken out of Klocwork. I found the two critical for specific deployments, so if those can be brought back to Klocwork, that would be very good.
report
Use our free recommendation engine to learn which Static Code Analysis solutions are best for your needs.
816,636 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
29%
Computer Software Company
13%
Manufacturing Company
11%
Government
6%
Educational Organization
40%
Manufacturing Company
19%
Computer Software Company
9%
Financial Services Firm
3%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Fortify Static Code Analyzer?
Integrating the Fortify Static Code Analyzer into our software development lifecycle was straightforward. It highlights important information beyond just syntax errors. It identifies issues like pa...
What is your experience regarding pricing and costs for Fortify Static Code Analyzer?
I rate the pricing of Fortify Static Code Analyzer as a seven out of ten since it is a bit expensive.
What needs improvement with Fortify Static Code Analyzer?
False positives need improvement in the future. Fortify's vulnerability remediation guidance helps improve code security, but I think they need to improve the focus of the solution, as it still Con...
What do you like most about Klocwork?
It's integrated into our CI, continuous integration.
What is your experience regarding pricing and costs for Klocwork?
Our purchasing department is responsible for tracking costs. It's one of the most widely used tools in our organization. It likely does not have a high price point. I don't have insights into licen...
What needs improvement with Klocwork?
The main problem is that since it only parses the code, the warnings or the problems that are given as a result of the report can sometimes require a lot of effort to analyze. It will show all poss...
 

Also Known As

Fortify Static Code Analysis SAST
No data available
 

Learn More

 

Overview

 

Sample Customers

Information Not Available
ACCESS Co Ltd, Risk-AI, Winbond Electronics, Bristol-Myers Squibb Pharmaceutical Research Institute, University of Southern California, Alebra Technologies, SIMULIA, Risk Management Solutions, Brigham Young University, SRD, HRL
Find out what your peers are saying about Fortify Static Code Analyzer vs. Klocwork and other solutions. Updated: October 2024.
816,636 professionals have used our research since 2012.