Try our new research platform with insights from 80,000+ expert users
Assistant Consultant at a logistics company with 10,001+ employees
Real User
Helped us to improve the code quality of our organization
Pros and Cons
  • "The solution helped us to improve the code quality of our organization."
  • "The solution is quite expensive."

What is our primary use case?

We use the solution for static code analysis. We do static code analysis on our application project code and we use the solution to check the product quality.

How has it helped my organization?

The solution helped us to improve the code quality of our organization.

What needs improvement?

The solution is quite expensive.

There could be little improvements made in the solution's performance, reporting, management, interface, dashboard, etc. 

Their level of support could also be better.  They should be more qualified and quicker to respond, for example. 

It would be beneficial if the dashboard integrated with JIRA.

For how long have I used the solution?

I've been using the solution for a few months.
Buyer's Guide
Application Security Tools
March 2025
Find out what your peers are saying about OpenText, Sonar, Checkmarx and others in Application Security Tools. Updated: March 2025.
842,388 professionals have used our research since 2012.

What do I think about the stability of the solution?

The solution is very stable. We find it pretty robust.

What do I think about the scalability of the solution?

We used it for more than 70-80 products for doing standard code analysis and the scalability was pretty good. We didn't see any performance issues.

How are customer service and support?

Technical support is pretty helpful.

How was the initial setup?

The initial setup is pretty straightforward. You need less than three people to maintain the solution after implementation.

What other advice do I have?

We've been using the private cloud deployment model.

If you need a huge impact, a business impact, then I think I would recommend HP Fortify. However, if a user is looking for a small scale application with less business impact, I would go with a free solution.

I would rate the solution ten out of ten. Aside from the cost, the application is pretty good.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1142943 - PeerSpot reviewer
Business Development Specialist at a computer software company with 11-50 employees
Real User
Secure, versatile cyber security technology
Pros and Cons
  • "We are able to provide out customers with a secure application after development. They are no longer left wondering if they are vulnerable to different threats within the market following deployment."
  • "The licensing can be a little complex."

What is our primary use case?

I work for a local distributor for Micro Focus. We provide customers with a proof of values and we're showing them in deep dive into the main benefits of this highly technical product while trying to patch together different technologies, starting with the developing phase. 

How has it helped my organization?

We are able to provide out customers with a secure application after development. They are no longer left wondering if they are vulnerable to different threats within the market following deployment.

What needs improvement?

The licensing can be a little complex.

For how long have I used the solution?

I have been using this solution for more than 10 years.

What do I think about the stability of the solution?

It is very stable.

What do I think about the scalability of the solution?

This product is scalable. You are able to add licenses depending on your department, how many developers you have, the number of the projects, etc.

There are a few hundred users in my area and we require two people for maintenance. 

How are customer service and support?

We handle first level support for our customers, the vendor will handle anything harder. Their support gas been great throughout the years. They are always willing to solve any issue from the commercial technical point of view.

How was the initial setup?

The initial setup can vary depending on the client's use case. We have a professional service department that handles the POD. This includes installation, configuration, training, deployment, knowledge transfer and support after that if needed. 

What was our ROI?

Our end users ROI should be okay for a minimum of three to five years. Even though they are not able to turn revenue with this product, they are able to Become more aware of a lot of threats and cyber security risks which allows them to reallocate some of their budget to affected areas if needed.

What's my experience with pricing, setup cost, and licensing?

The licensing is very complex, it's project based and can range from $10,000 to $200,000+ depending on the project type and size. 

What other advice do I have?

It has been in the Gartner's Magic Quadrant for many years. It's a very solid technology that is nice to use on the developing site and it is secure and stable.

I would rate this product a ten out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Application Security Tools
March 2025
Find out what your peers are saying about OpenText, Sonar, Checkmarx and others in Application Security Tools. Updated: March 2025.
842,388 professionals have used our research since 2012.
Senior Manager Technical Operations at NeuStar
Real User
Useful default coding languages, reliable, but more coding languages needed
Pros and Cons
  • "The most valuable features of Fortify Application Defender are the code packages that are default."
  • "Fortify Application Defender could improve by supporting more code languages, such as GRAAS and Groovy."

What is most valuable?

The most valuable features of Fortify Application Defender are the code packages that are default.

What needs improvement?

Fortify Application Defender could improve by supporting more code languages, such as GRAAS and Groovy.

For how long have I used the solution?

I have been using Fortify Application Defender for approximately four years.

What do I think about the stability of the solution?

Fortify Application Defender is a stable solution.

What do I think about the scalability of the solution?

The scalability of Fortify Application Defender is good.

How are customer service and support?

I have not used technical support but I have some good feedback.

Which solution did I use previously and why did I switch?

I have not used another similar solution to Fortify Application Defender.

What other advice do I have?

Fortify Application Defender has a few drawbacks, it has its own pros and cons, but it's a good tool to use in any industry.

I would recommend this solution to others.

I rate Fortify Application Defender a seven out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Buyer's Guide
Download our free Application Security Tools Report and find out what your peers are saying about OpenText, Sonar, Checkmarx, and more!
Updated: March 2025
Product Categories
Application Security Tools
Buyer's Guide
Download our free Application Security Tools Report and find out what your peers are saying about OpenText, Sonar, Checkmarx, and more!