Try our new research platform with insights from 80,000+ expert users
Fortify Application Defender Logo

Fortify Application Defender pros and cons

Vendor: OpenText
3.9 out of 5
101 followers
Post review

Pros & Cons summary

Fortify Application Defender identifies security defects, enhancing code quality by analyzing data in real-time with WebInspect technology. It improves security post-deployment and offers features like machine learning and vulnerability notifications to save cost and time. Integration is simple, with easy rule configuration. However, it lacks support for older compilers, mainly supports .NET and Java, and generates false positives, especially with Python. Licensing complexity and slow scanning time compared to alternatives are notable concerns.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the category report

Prominent pros & cons

PROS

Fortify Application Defender effectively identifies security defects, enhancing overall application safety.
It improves code quality, ensuring organizations develop more robust software.
The real-time data analysis feature provides immediate insights into application performance and security concerns.
Its integration with WebInspect allows for dynamic application scanning and efficient rule automation.
The software composition analysis feature is particularly beneficial for .NET applications, helping to pinpoint and address library vulnerabilities.

CONS

Support for older compilers/IDEs is lacking.
Fortify Application Defender is quite expensive.
The time it takes to scan could be improved, as it can take hours compared to minutes in SonarQube.
Fortify Application Defender could benefit from supporting more code languages, such as GRAAS and Groovy.
Fortify Application Defender gives a lot of false positives, particularly for Python applications.
 

Fortify Application Defender Pros review quotes

TH
Sep 21, 2020
The most valuable feature is the ability to automatically feed it rules what it's coupled with the WebInspect dynamic application scanning technology.
Read full review
VS
Apr 23, 2024
I find the configuration of rules in Fortify Application Defender useful. Its integration is also easy.
Read full review
DP
Mar 5, 2020
The most valuable feature is that it analyzes data in real-time.
Read full review
Buyer's Guide
Application Security Tools
November 2024
Download Free Report
Find out what your peers are saying about OpenText, Sonar, Checkmarx and others in Application Security Tools. Updated: November 2024.
DOWNLOAD NOW
816,406 professionals have used our research since 2012.
reviewer1142943 - PeerSpot reviewer
Jan 4, 2022
We are able to provide out customers with a secure application after development. They are no longer left wondering if they are vulnerable to different threats within the market following deployment.
Read full review
HisaoOgata - PeerSpot reviewer
May 24, 2023
The product saves us cost and time.
Read full review
Saroj-Patnaik - PeerSpot reviewer
Feb 13, 2023
Fortify Application Defender's most valuable features are machine learning algorithms, real-time remediation, and automatic vulnerability notifications.
Read full review
GM
Aug 22, 2019
The solution helped us to improve the code quality of our organization.
Read full review
WW
Sep 7, 2021
The information from Fortify Application Defender on how to fix and solve issues is very good compared to other solutions.
Read full review
Abner Silva - PeerSpot reviewer
Apr 1, 2024
The tool's most valuable feature is software composition analysis. This feature works well with my .NET applications, providing a better understanding of library vulnerabilities.
Read full review
BD
Apr 9, 2018
Its ability to find security defects is valuable.
Read full review
Show 1 more reviews (out of 11)
 

Fortify Application Defender Cons review quotes

TH
Sep 21, 2020
The biggest complaint that I have heard concerns additional platform support because right now, it only supports applications that are written in .NET and Java.
Read full review
VS
Apr 23, 2024
The product should integrate industry-standard code review tools internally with its system. This would streamline the coding process, as developers wouldn't need multiple tools for code review and security checks. Many independent and open-source tools are available, from Apache to various libraries. Using multiple DevOps pipeline tools can slow the turnaround time.
Read full review
DP
Mar 5, 2020
The workbench is a little bit complex when you first start using it.
Read full review
Buyer's Guide
Application Security Tools
November 2024
Download Free Report
Find out what your peers are saying about OpenText, Sonar, Checkmarx and others in Application Security Tools. Updated: November 2024.
DOWNLOAD NOW
816,406 professionals have used our research since 2012.
reviewer1142943 - PeerSpot reviewer
Jan 4, 2022
The licensing can be a little complex.
Read full review
HisaoOgata - PeerSpot reviewer
May 24, 2023
The false positive rate should be lower.
Read full review
Saroj-Patnaik - PeerSpot reviewer
Feb 13, 2023
Fortify Application Defender gives a lot of false positives.
Read full review
GM
Aug 22, 2019
The solution is quite expensive.
Read full review
WW
Sep 7, 2021
The solution could improve the time it takes to scan. When comparing it to SonarQube it does it in minutes while in Fortify Application Defender it can take hours.
Read full review
Abner Silva - PeerSpot reviewer
Apr 1, 2024
I encountered many false positives for Python applications.
Read full review
BD
Apr 9, 2018
Support for older compilers/IDEs is lacking.
Read full review
Show 1 more reviews (out of 11)

Product Categories

Product Categories
Application Security Tools

Popular Comparisons

Popular Comparisons
SonarQube Server (formerly SonarQube) vs Fortify Application Defender Logo
SonarQube Server (formerly SonarQube) vs Fortify Application Defender
Veracode vs Fortify Application Defender Logo
Veracode vs Fortify Application Defender
Checkmarx One vs Fortify Application Defender Logo
Checkmarx One vs Fortify Application Defender
Snyk vs Fortify Application Defender Logo
Snyk vs Fortify Application Defender
Fortify on Demand vs Fortify Application Defender Logo
Fortify on Demand vs Fortify Application Defender
Sonatype Lifecycle vs Fortify Application Defender Logo
Sonatype Lifecycle vs Fortify Application Defender
Acunetix vs Fortify Application Defender Logo
Acunetix vs Fortify Application Defender
PortSwigger Burp Suite Professional vs Fortify Application Defender Logo
PortSwigger Burp Suite Professional vs Fortify Application Defender
Qualys Web Application Scanning vs Fortify Application Defender Logo
Qualys Web Application Scanning vs Fortify Application Defender
Tenable.io Web Application Scanning vs Fortify Application Defender Logo
Tenable.io Web Application Scanning vs Fortify Application Defender
Contrast Security Protect vs Fortify Application Defender Logo
Contrast Security Protect vs Fortify Application Defender
Digital.ai Application Security vs Fortify Application Defender Logo
Digital.ai Application Security vs Fortify Application Defender
Onapsis vs Fortify Application Defender Logo
Onapsis vs Fortify Application Defender
See all alternatives

Product Categories

Product Categories
Application Security Tools

Popular Comparisons

Popular Comparisons
SonarQube Server (formerly SonarQube) vs Fortify Application Defender Logo
SonarQube Server (formerly SonarQube) vs Fortify Application Defender
Veracode vs Fortify Application Defender Logo
Veracode vs Fortify Application Defender
Checkmarx One vs Fortify Application Defender Logo
Checkmarx One vs Fortify Application Defender
Snyk vs Fortify Application Defender Logo
Snyk vs Fortify Application Defender
Fortify on Demand vs Fortify Application Defender Logo
Fortify on Demand vs Fortify Application Defender
Sonatype Lifecycle vs Fortify Application Defender Logo
Sonatype Lifecycle vs Fortify Application Defender
Acunetix vs Fortify Application Defender Logo
Acunetix vs Fortify Application Defender
PortSwigger Burp Suite Professional vs Fortify Application Defender Logo
PortSwigger Burp Suite Professional vs Fortify Application Defender
Qualys Web Application Scanning vs Fortify Application Defender Logo
Qualys Web Application Scanning vs Fortify Application Defender
Tenable.io Web Application Scanning vs Fortify Application Defender Logo
Tenable.io Web Application Scanning vs Fortify Application Defender
Contrast Security Protect vs Fortify Application Defender Logo
Contrast Security Protect vs Fortify Application Defender
Digital.ai Application Security vs Fortify Application Defender Logo
Digital.ai Application Security vs Fortify Application Defender
Onapsis vs Fortify Application Defender Logo
Onapsis vs Fortify Application Defender
See all alternatives
Related questions
  • 1,434
What is the Biggest Difference Between Checkmarx and Fortify?
  • 997
If you had to both encrypt and compress data during transmission, which would you do first and why?
  • 104
When evaluating Application Security, what aspect do you think is the most important to look for?
  • 212
What are the Top 5 cybersecurity trends in 2022?
  • 175
What are the threats associated with using ‘bogus’ cybersecurity tools?
  • 28
Which application security solutions include both vulnerability scans and quality checks?
  • 78
We're evaluating Tripwire, what else should we consider?
  • 2,251
Is SonarQube the best tool for static analysis?
  • 48
Why Do I Need Application Security Software?
  • 94
Which Email Security enterprise solution would you choose: Cisco Secure Email vs Forcepoint Email Security vs Barracuda Email Security Gateway?