We performed a comparison between Fortify on Demand and GitHub based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution scans our code and provides us with a dashboard of all the vulnerabilities and the criticality of the vulnerabilities. It is very useful that they provide right then and there all the information about the vulnerability, including possible fixes, as well as some additional documentation and links to the authoritative sources of why this is an issue and what's the correct way to deal with it."
"The solution is user-friendly."
"Speed and efficiency are great features."
"The most valuable feature of Micro Focus Fortify on Demand is the information it can provide. There is quite a lot of information. It can pinpoint right down to where the problem is, allowing you to know where to fix it. Overall the features are easy to use, you don't have to be a coder. You can be a manager, or in IT operations, et cetera, anyone can use it. It is quite a well-rounded functional solution."
"The solution saves us a lot of money. We're trying to reduce exposure and costs related to remediation."
"The scanning capabilities, particularly for our repositories, have been invaluable."
"The most important feature of the product is to follow today's technology fast, updated rules and algorithms (of the product)."
"While using Micro Focus Fortify on Demand we have been very happy with the results and findings."
"It is really simple to set up."
"There are no issues. It's simple, easy, and fully compatible from my perspective with Git."
"Even if I'm not in the office, I can access and work on my code from anywhere with my account credentials."
"The most valuable feature is help offered by the community for open-source projects."
"The product has a good UI. It's simple and easy to access, and technical help is easily available. The two-factor authentication security is another valuable feature."
"I use this solution to store my code in a repository so we can manage version control which is useful."
"GitHub provides good time reduction and this is what I value the most."
"The product has a very user-friendly interface and user-friendly security."
"The UI could be better. Fortify should also suggest new packages in the product that can be upgraded. Currently, it shows that, but it's not visible enough. In future versions, I would like more insights about the types of vulnerabilities and the pages associated with the exact CVE."
"It lacks of some important features that the competitors have, such as Software Composition Analysis, full dead code detection, and Agile Alliance's Best Practices and Technical Debt."
"Reporting could be improved."
"Micro Focus Fortify on Demand could improve the reports. They could benefit from being more user-friendly and intuitive."
"Sometimes when we run a full scan, we have a bunch of issues in the code. We should not have any issues."
"Takes up a lot of resources which can slow things down."
"In terms of communication, they can integrate a few more third-party tools. It would be great if we can have more options for microservice communication. They can also improve the securability a bit more because security is one of the biggest aspects these days when you are using the cloud. Some more security features would be really helpful."
"The Visual Studio plugin seems to hang when a scan is run on big projects. I would expect some improvements there."
"GitHub should provide more integration in their next release, including integrating with Jenkins, CI/CD and Jira."
"I would like to see more security where a plugin was available for us to update in relation to security."
"GitHub could have better integration or capability with other solutions."
"There is room for improvement in terms of interface."
"GitHub's issue management could be improved a little from an organization standpoint. It would be helpful to have the ability to organize a work board or a backlog more comprehensively. For organizations migrating to GitHub from arbitrary systems, it's a little bit of a headache to move on to that system."
"I would want to see some form of code security scanning implemented."
"The onboarding process could be simplified."
"The project management sector really needs some improvement for GitHub. I don't know if GitHub made sense for me as a project manager."
Fortify on Demand is ranked 10th in Application Security Tools with 56 reviews while GitHub is ranked 12th in Application Security Tools with 69 reviews. Fortify on Demand is rated 8.0, while GitHub is rated 8.6. The top reviewer of Fortify on Demand writes "Provides good depth of scanning but is unfortunately not fully integrated with CIT processes ". On the other hand, the top reviewer of GitHub writes "Beneficial version control and continuous integration, but guides would be helpful". Fortify on Demand is most compared with SonarQube, Veracode, Checkmarx One, Coverity and Tenable.io Web Application Scanning, whereas GitHub is most compared with Snyk, AWS CodeCommit, Bitbucket, Atlassian SourceTree and Checkmarx One. See our Fortify on Demand vs. GitHub report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
