We performed a comparison between Fortify on Demand and GitHub based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution saves us a lot of money. We're trying to reduce exposure and costs related to remediation."
"Micro Focus WebInspect and Fortify code analysis tools are fully integrated with SSC portals and can instantly register to error tracking systems, like TFS and JIRA."
"The most important feature of the product is to follow today's technology fast, updated rules and algorithms (of the product)."
"It has saved us a lot of time as we focus primarily on programming rather than tool operational work."
"One of the top features is the source code review for vulnerabilities. When we look at source code, it's hard to see where areas may be weak in terms of security, and Fortify on Demand's source code review helps with that."
"While using Micro Focus Fortify on Demand we have been very happy with the results and findings."
"The scanning capabilities, particularly for our repositories, have been invaluable."
"The SAST feature is the most valuable."
"The most valuable features of GitHub are the ease of integration into Microsoft Azure DevOps. The process that you need to deploy into Microsoft Azure becomes fairly simple and the templates are already available, a lot of the engineers find it easier to use."
"Any complex banking can be handled very easily in GitHub. It allows us to integrate with tools like Grid, where we can merge and resolve conflicts without any hassle."
"The solution can scale."
"Our code is secure."
"GitHub's version control is valuable."
"The code sharing and updated history are valuable features."
"GitHub's merging feature is much better than that of other products because merging is done daily."
"The ease of use is valuable."
"I would like the solution to add AI support."
"Micro Focus Fortify on Demand can improve by having more graphs. For example, to show the improvement of the level of security."
"Micro Focus Fortify on Demand could improve the user interface by making it more user-friendly."
"They have very good support, but there is always room for improvement."
"The products must provide better integration with build tools."
"It would be highly beneficial if Fortify on Demand incorporated runtime analysis, similar to how Contrast Security utilizes agents for proactive application security."
"There's a bit of a learning curve. Our development team is struggling with following the rules and following the new processes."
"The solution has some issues with latency. Sometimes it takes a while to respond. This issue should be addressed."
"I cannot recall coming across any shortcomings of the product."
"We face issues with synchronization while working with teams."
"The user interface on GitLab is better."
"If it had all of the end-to-end integration, then we probably wouldn't have any doubts about what we have installed. However, at this point, we're still trying to figure out how to use it end-to-end."
"The descriptions within Github could be more user-friendly to show the trees of Gitflow."
"I would like to see more security where a plugin was available for us to update in relation to security."
"It is difficult to merge a code or restore it to an older version."
"The stability can be improved."
Fortify on Demand is ranked 10th in Application Security Tools with 56 reviews while GitHub is ranked 12th in Application Security Tools with 69 reviews. Fortify on Demand is rated 8.0, while GitHub is rated 8.6. The top reviewer of Fortify on Demand writes "Provides good depth of scanning but is unfortunately not fully integrated with CIT processes ". On the other hand, the top reviewer of GitHub writes "Beneficial version control and continuous integration, but guides would be helpful". Fortify on Demand is most compared with SonarQube, Veracode, Checkmarx One, Coverity and Tenable.io Web Application Scanning, whereas GitHub is most compared with Snyk, AWS CodeCommit, Bitbucket, Atlassian SourceTree and Checkmarx One. See our Fortify on Demand vs. GitHub report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.