Try our new research platform with insights from 80,000+ expert users
Fortify Application Defender Logo

Fortify Application Defender pros and cons

Vendor: OpenText
3.9 out of 5
Leave a review

Pros & Cons summary

Fortify Application Defender identifies security defects, enhancing code quality by analyzing data in real-time with WebInspect technology. It improves security post-deployment and offers features like machine learning and vulnerability notifications to save cost and time. Integration is simple, with easy rule configuration. However, it lacks support for older compilers, mainly supports .NET and Java, and generates false positives, especially with Python. Licensing complexity and slow scanning time compared to alternatives are notable concerns.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the category report

Prominent pros & cons

PROS

Fortify Application Defender effectively identifies security defects, enhancing overall application safety.
It improves code quality, ensuring organizations develop more robust software.
The real-time data analysis feature provides immediate insights into application performance and security concerns.
Its integration with WebInspect allows for dynamic application scanning and efficient rule automation.
The software composition analysis feature is particularly beneficial for .NET applications, helping to pinpoint and address library vulnerabilities.

CONS

Support for older compilers/IDEs is lacking.
Fortify Application Defender is quite expensive.
The time it takes to scan could be improved, as it can take hours compared to minutes in SonarQube.
Fortify Application Defender could benefit from supporting more code languages, such as GRAAS and Groovy.
Fortify Application Defender gives a lot of false positives, particularly for Python applications.
 

Fortify Application Defender Pros review quotes

BD
Bob Dean
Principle Engineer at MTSI
Apr 9, 2018
Its ability to find security defects is valuable.
Read full review
GM
Grandin Major
Assistant Consultant at a logistics company with 10,001+ employees
Aug 22, 2019
The solution helped us to improve the code quality of our organization.
Read full review
DP
Durgesh Pathak
DevOps Engineer at a energy/utilities company with 10,001+ employees
Mar 5, 2020
The most valuable feature is that it analyzes data in real-time.
Read full review
Buyer's Guide
Application Security Tools
January 2026
Download Free Report
Find out what your peers are saying about OpenText, SonarSource Sàrl, Checkmarx and others in Application Security Tools. Updated: January 2026.
DOWNLOAD NOW
881,082 professionals have used our research since 2012.
TH
Tom Haakma
Director of Security at Merito
Sep 21, 2020
The most valuable feature is the ability to automatically feed it rules what it's coupled with the WebInspect dynamic application scanning technology.
Read full review
WW
Warayuth Wongpaiboonwattana
System Quality Assurance Manager at AIS - Advanced Info Services Plc.
Sep 7, 2021
The information from Fortify Application Defender on how to fix and solve issues is very good compared to other solutions.
Read full review
reviewer1142943 - PeerSpot reviewer
reviewer1142943
Business Development Specialist at a computer software company with 11-50 employees
Jan 4, 2022
We are able to provide out customers with a secure application after development. They are no longer left wondering if they are vulnerable to different threats within the market following deployment.
Read full review
KP
Karthik PS
Senior Manager Technical Operations at NeuStar
Jun 26, 2022
The most valuable features of Fortify Application Defender are the code packages that are default.
Read full review
Saroj-Patnaik - PeerSpot reviewer
Saroj-Patnaik
Software Development Engineer 3 at a consultancy with 10,001+ employees
Feb 13, 2023
Fortify Application Defender's most valuable features are machine learning algorithms, real-time remediation, and automatic vulnerability notifications.
Read full review
HisaoOgata - PeerSpot reviewer
HisaoOgata
Department Manger at Hitachi Channel
May 24, 2023
The product saves us cost and time.
Read full review
AS
Abner Santos
Senior Security Analyst (AppSec) at ELETROBRAS
Apr 1, 2024
The tool's most valuable feature is software composition analysis. This feature works well with my .NET applications, providing a better understanding of library vulnerabilities.
Read full review
Show 1 more reviews (out of 11)
 

Fortify Application Defender Cons review quotes

BD
Bob Dean
Principle Engineer at MTSI
Apr 9, 2018
Support for older compilers/IDEs is lacking.
Read full review
GM
Grandin Major
Assistant Consultant at a logistics company with 10,001+ employees
Aug 22, 2019
The solution is quite expensive.
Read full review
DP
Durgesh Pathak
DevOps Engineer at a energy/utilities company with 10,001+ employees
Mar 5, 2020
The workbench is a little bit complex when you first start using it.
Read full review
Buyer's Guide
Application Security Tools
January 2026
Download Free Report
Find out what your peers are saying about OpenText, SonarSource Sàrl, Checkmarx and others in Application Security Tools. Updated: January 2026.
DOWNLOAD NOW
881,082 professionals have used our research since 2012.
TH
Tom Haakma
Director of Security at Merito
Sep 21, 2020
The biggest complaint that I have heard concerns additional platform support because right now, it only supports applications that are written in .NET and Java.
Read full review
WW
Warayuth Wongpaiboonwattana
System Quality Assurance Manager at AIS - Advanced Info Services Plc.
Sep 7, 2021
The solution could improve the time it takes to scan. When comparing it to SonarQube it does it in minutes while in Fortify Application Defender it can take hours.
Read full review
reviewer1142943 - PeerSpot reviewer
reviewer1142943
Business Development Specialist at a computer software company with 11-50 employees
Jan 4, 2022
The licensing can be a little complex.
Read full review
KP
Karthik PS
Senior Manager Technical Operations at NeuStar
Jun 26, 2022
Fortify Application Defender could improve by supporting more code languages, such as GRAAS and Groovy.
Read full review
Saroj-Patnaik - PeerSpot reviewer
Saroj-Patnaik
Software Development Engineer 3 at a consultancy with 10,001+ employees
Feb 13, 2023
Fortify Application Defender gives a lot of false positives.
Read full review
HisaoOgata - PeerSpot reviewer
HisaoOgata
Department Manger at Hitachi Channel
May 24, 2023
The false positive rate should be lower.
Read full review
AS
Abner Santos
Senior Security Analyst (AppSec) at ELETROBRAS
Apr 1, 2024
I encountered many false positives for Python applications.
Read full review
Show 1 more reviews (out of 11)

Product Categories

Product Categories
Application Security Tools

Popular Comparisons

Popular Comparisons
SonarQube vs Fortify Application Defender Logo
SonarQube vs Fortify Application Defender
Snyk vs Fortify Application Defender Logo
Snyk vs Fortify Application Defender
Checkmarx One vs Fortify Application Defender Logo
Checkmarx One vs Fortify Application Defender
Veracode vs Fortify Application Defender Logo
Veracode vs Fortify Application Defender
GitHub Advanced Security vs Fortify Application Defender Logo
GitHub Advanced Security vs Fortify Application Defender
OpenText Core Application Security vs Fortify Application Defender Logo
OpenText Core Application Security vs Fortify Application Defender
Mend.io vs Fortify Application Defender Logo
Mend.io vs Fortify Application Defender
Sonatype Lifecycle vs Fortify Application Defender Logo
Sonatype Lifecycle vs Fortify Application Defender
GitGuardian Platform vs Fortify Application Defender Logo
GitGuardian Platform vs Fortify Application Defender
Qualys Web Application Scanning vs Fortify Application Defender Logo
Qualys Web Application Scanning vs Fortify Application Defender
Klocwork vs Fortify Application Defender Logo
Klocwork vs Fortify Application Defender
CodeSonar vs Fortify Application Defender Logo
CodeSonar vs Fortify Application Defender
Tenable.io Web Application Scanning vs Fortify Application Defender Logo
Tenable.io Web Application Scanning vs Fortify Application Defender
Contrast Security Assess vs Fortify Application Defender Logo
Contrast Security Assess vs Fortify Application Defender
Kiuwan vs Fortify Application Defender Logo
Kiuwan vs Fortify Application Defender
See all alternatives

Product Categories

Product Categories
Application Security Tools

Popular Comparisons

Popular Comparisons
SonarQube vs Fortify Application Defender Logo
SonarQube vs Fortify Application Defender
Snyk vs Fortify Application Defender Logo
Snyk vs Fortify Application Defender
Checkmarx One vs Fortify Application Defender Logo
Checkmarx One vs Fortify Application Defender
Veracode vs Fortify Application Defender Logo
Veracode vs Fortify Application Defender
GitHub Advanced Security vs Fortify Application Defender Logo
GitHub Advanced Security vs Fortify Application Defender
OpenText Core Application Security vs Fortify Application Defender Logo
OpenText Core Application Security vs Fortify Application Defender
Mend.io vs Fortify Application Defender Logo
Mend.io vs Fortify Application Defender
Sonatype Lifecycle vs Fortify Application Defender Logo
Sonatype Lifecycle vs Fortify Application Defender
GitGuardian Platform vs Fortify Application Defender Logo
GitGuardian Platform vs Fortify Application Defender
Qualys Web Application Scanning vs Fortify Application Defender Logo
Qualys Web Application Scanning vs Fortify Application Defender
Klocwork vs Fortify Application Defender Logo
Klocwork vs Fortify Application Defender
CodeSonar vs Fortify Application Defender Logo
CodeSonar vs Fortify Application Defender
Tenable.io Web Application Scanning vs Fortify Application Defender Logo
Tenable.io Web Application Scanning vs Fortify Application Defender
Contrast Security Assess vs Fortify Application Defender Logo
Contrast Security Assess vs Fortify Application Defender
Kiuwan vs Fortify Application Defender Logo
Kiuwan vs Fortify Application Defender
See all alternatives
Related questions
  • 318
What is the Biggest Difference Between Checkmarx and Fortify?
  • 137
If you had to both encrypt and compress data during transmission, which would you do first and why?
  • 44
When evaluating Application Security, what aspect do you think is the most important to look for?
  • 101
What are the Top 5 cybersecurity trends in 2022?
  • 128
What are the threats associated with using ‘bogus’ cybersecurity tools?
  • 54
We're evaluating Tripwire, what else should we consider?
  • 39
Which application security solutions include both vulnerability scans and quality checks?
  • 393
Is SonarQube the best tool for static analysis?
  • 39
Why Do I Need Application Security Software?
  • 77
Which Email Security enterprise solution would you choose: Cisco Secure Email vs Forcepoint Email Security vs Barracuda Email Security Gateway?