For anyone considering Fortify WebInspect, I highly recommend it. It is a valuable tool with many benefits for web applications, especially regardingsecurity. Since many businesses rely on web applications, focusing on their security is crucialto prevent potential threats. Fortify WebInspect helps achieve this by effectively reducing vulnerabilities. Regarding artificial intelligence, integrating AI with Fortify WebInspect would be a significant improvement. It would enhance the tool's ability to detect and analyze vulnerabilities, making it more efficient. Automated learning could help make better decisions on identifying and addressing vulnerabilities, which would result in even better outcomes. Overall, I would rate Fortify WebInspect nine out of ten.
I recommend the solution to its potential users for trial. Fortify WebInspect is a very old product and helps with many use cases owing to its powerful functionalities. I take care of the maintenance part of the product. Three of my colleagues who are engineers also help me with the maintenance phase. Considering the licensing cost of the product, bug-related issues, and difficulty in installation compared to other products, I rate the overall product a seven to eight out of ten.
Senior Manager - IT Security & ISMS at Ericsson
Real User
Top 5
2023-04-25T11:17:08Z
Apr 25, 2023
This is a good scanning tool. I recommend having your application scanned in the early stages of your development so that you don't get into back and forth development cycles and deployment in production can be done more efficiently. I rate this solution eight out of 10.
Consulting Engineer at a consultancy with 11-50 employees
Real User
Top 10
2023-03-21T07:18:35Z
Mar 21, 2023
We are integrators. We're always dealing with the latest version of the solution. The latest would be 22.1. I started with using 20.1. I'd recommend the solution. It's a helpful tool. I would rate the solution overall at an eight out of ten. It will continue to evolve, I'm sure.
Information Security Architect at a real estate/law firm with 1,001-5,000 employees
Real User
2021-11-11T16:34:45Z
Nov 11, 2021
While implementing WebInspect, it is always better to keep all the required software installed and ready. The installation of WebInspect has a lot of dependencies, such as .NET, Java, SQL database, etc. All of the data does not come in-built. So, the moment you start building it, if it creates a problem, you have to remove and reinstall everything from scratch and then come back, which takes a lot of time. So, it is better to have those prerequisites handy, pre-installed, and tested. I would rate it a seven out of 10.
We're just customers. We don't have a business relationship with the company. I would recommend WebInspect to enterprise-level organizations. to use. For a smaller company, I'd recommend something more automated. WebInspect has far more manual work, however, it does have good documentation. Overall, I'd rate the solution eight out of ten.
While we generally like WebINspect, if a client has a smaller budget, we might suggest Acunetix simply because it is cheaper. However, if a customer's priority was better scanning for their application, we would suggest WebInspect. We like to give our clients options and choices. We prefer to provide them with options that meet their needs and address their pain points. Overall, I would rate the solution seven out of ten. If the price was a bit better, I would rate them higher.
Sr. Manager Business Operations Protection at a consumer goods company with 10,001+ employees
Real User
2020-07-19T08:15:55Z
Jul 19, 2020
We are using this WebInspect in conjunction with Fortify. We're not using the client-host based deployment, but rather, a web-based one. The agent is not installed on my machine. The suitability of this product depends on your use case. If you're trying to do what we're doing in QA and security then it's probably great. If, however, you want to do things on external sites then I would suggest an external cloud-based one. I would rate this solution a four out of ten.
Yes, I would recommend WebInspect. It is a good product, comparable to AppScan. It is quite scalable, and good cost/value with the support and backing from Micro Focus. It's good and I definitely recommend it. On a scale of one to ten, I would give it an eight.
Senior Software Developer at a financial services firm with 10,001+ employees
Real User
2019-11-14T06:33:00Z
Nov 14, 2019
We're using the public cloud deployment model. Our provider is Microsoft. We just chose the solutions for dynamic scanning and static scanning, but we haven't performed any scanning yet. I'd recommend it; I'd rate the solution seven out of ten.
Information Security Architect at a real estate/law firm with 1,001-5,000 employees
Real User
2019-06-24T12:13:00Z
Jun 24, 2019
I am currently evolving, going through the product. We have yet to go through all the features and functionalities of the product. The way it checks for vulnerabilities helps a lot. It makes the most of the check for vulnerabilities. The centralized dashboard for the management is good but I'm still looking into it. That and other features we are yet to be discovered. I'm still trying to get to know all the features. Looking at an enterprise level product is good. With it, you get a centralized board, you have a management view, enroll management and access management. Everything is there. But still, check your requirements, what you need. If you use it for a certain amount of applications, you might not need such a heavy tool. Our requirement is 10 or 20 times more than a regular company and hence we went with an enterprise solution and had somebody who could implement this. If your requirement is a little less, it might just call for some other scanners based on your requirements. If you do need such an extensive requirement, ensure that you also have the data servers and systems for such tools. It will be easy to implement in any environment if you do. I would rate this solution 7 out of 10.
Fortify WebInspect is an automated DAST solution that helps security professionals and QA testers uncover security vulnerabilities and configuration concerns by providing complete vulnerability detection. This is accomplished by mimicking real-world external security attacks on a live application in order to discover and prioritize concerns for root-cause study. Fortify WebInspect provides a number of REST APIs for easier integration, as well as the ability to be maintained via an intuitive...
For medium to large enterprises, Fortify WebInspect is a good, stable, and secure solution. I'd rate the solution eight out of ten.
For anyone considering Fortify WebInspect, I highly recommend it. It is a valuable tool with many benefits for web applications, especially regardingsecurity. Since many businesses rely on web applications, focusing on their security is crucialto prevent potential threats. Fortify WebInspect helps achieve this by effectively reducing vulnerabilities. Regarding artificial intelligence, integrating AI with Fortify WebInspect would be a significant improvement. It would enhance the tool's ability to detect and analyze vulnerabilities, making it more efficient. Automated learning could help make better decisions on identifying and addressing vulnerabilities, which would result in even better outcomes. Overall, I would rate Fortify WebInspect nine out of ten.
I recommend the solution to its potential users for trial. Fortify WebInspect is a very old product and helps with many use cases owing to its powerful functionalities. I take care of the maintenance part of the product. Three of my colleagues who are engineers also help me with the maintenance phase. Considering the licensing cost of the product, bug-related issues, and difficulty in installation compared to other products, I rate the overall product a seven to eight out of ten.
This is a good scanning tool. I recommend having your application scanned in the early stages of your development so that you don't get into back and forth development cycles and deployment in production can be done more efficiently. I rate this solution eight out of 10.
We are integrators. We're always dealing with the latest version of the solution. The latest would be 22.1. I started with using 20.1. I'd recommend the solution. It's a helpful tool. I would rate the solution overall at an eight out of ten. It will continue to evolve, I'm sure.
My advice to others using Fortify WebInspect is not to use it, there are better solutions in the market. I rate Fortify WebInspect a five out of ten.
I would rate this solution an eight out of ten.
I would rate this solution 8 out of 10. Fortify WebInspect is always the first tool I recommend for users.
While implementing WebInspect, it is always better to keep all the required software installed and ready. The installation of WebInspect has a lot of dependencies, such as .NET, Java, SQL database, etc. All of the data does not come in-built. So, the moment you start building it, if it creates a problem, you have to remove and reinstall everything from scratch and then come back, which takes a lot of time. So, it is better to have those prerequisites handy, pre-installed, and tested. I would rate it a seven out of 10.
We're just customers. We don't have a business relationship with the company. I would recommend WebInspect to enterprise-level organizations. to use. For a smaller company, I'd recommend something more automated. WebInspect has far more manual work, however, it does have good documentation. Overall, I'd rate the solution eight out of ten.
While we generally like WebINspect, if a client has a smaller budget, we might suggest Acunetix simply because it is cheaper. However, if a customer's priority was better scanning for their application, we would suggest WebInspect. We like to give our clients options and choices. We prefer to provide them with options that meet their needs and address their pain points. Overall, I would rate the solution seven out of ten. If the price was a bit better, I would rate them higher.
We are using this WebInspect in conjunction with Fortify. We're not using the client-host based deployment, but rather, a web-based one. The agent is not installed on my machine. The suitability of this product depends on your use case. If you're trying to do what we're doing in QA and security then it's probably great. If, however, you want to do things on external sites then I would suggest an external cloud-based one. I would rate this solution a four out of ten.
I would rate this solution a seven out of ten.
I would rate this solution an eight out of ten.
Yes, I would recommend WebInspect. It is a good product, comparable to AppScan. It is quite scalable, and good cost/value with the support and backing from Micro Focus. It's good and I definitely recommend it. On a scale of one to ten, I would give it an eight.
We're using the public cloud deployment model. Our provider is Microsoft. We just chose the solutions for dynamic scanning and static scanning, but we haven't performed any scanning yet. I'd recommend it; I'd rate the solution seven out of ten.
I am currently evolving, going through the product. We have yet to go through all the features and functionalities of the product. The way it checks for vulnerabilities helps a lot. It makes the most of the check for vulnerabilities. The centralized dashboard for the management is good but I'm still looking into it. That and other features we are yet to be discovered. I'm still trying to get to know all the features. Looking at an enterprise level product is good. With it, you get a centralized board, you have a management view, enroll management and access management. Everything is there. But still, check your requirements, what you need. If you use it for a certain amount of applications, you might not need such a heavy tool. Our requirement is 10 or 20 times more than a regular company and hence we went with an enterprise solution and had somebody who could implement this. If your requirement is a little less, it might just call for some other scanners based on your requirements. If you do need such an extensive requirement, ensure that you also have the data servers and systems for such tools. It will be easy to implement in any environment if you do. I would rate this solution 7 out of 10.
Currently, I'm satisfied with the solution. I would rate this product a 7 out of 10.