We performed a comparison between Fortify WebInspect and Synopsys Code Dx based on real PeerSpot user reviews.
Find out what your peers are saying about HCLTech, OpenText, Rapid7 and others in Dynamic Application Security Testing (DAST)."Technical support has been good."
"It's a well-known platform for doing dynamic application scanning."
"The accuracy of its scans is great."
"There are lots of small settings and tools, like an HTTP editor, that are very useful."
"The user interface is ok and it is very simple to use."
"Good at scanning and finding vulnerabilities."
"I've found the centralized dashboard the most valuable. For the management, it helps a lot to have abilities at the central level."
"Reporting, centralized dashboard, and bird's eye view of all vulnerabilities are the most valuable features."
"The customers were looking for something around static security and dynamic security, and in all those areas, they were looking for an industry leader with a proven solution. Synopsys is a Gartner leader, so I position this particular technology for the technical pre-sales part of it."
"We have often encountered scanning errors."
"I'm not sure licensing, but on the pricing, it's a bit costly. It's a bit overpriced. Though it is an enterprise tool, there are other tools also with similar functionalities."
"It requires improvement in terms of scanning. The application scan heavily utilizes the resources of an on-premise server. 32 GB RAM is very high for an enterprise web application."
"The initial setup was complex."
"We have had a problem with authentification."
"Lately, we've seen more false negatives."
"The solution needs better integration with Microsoft's Azure Cloud or an extension of Azure DevOps. In fact, it should better integrate with any cloud provider. Right now, it's quite difficult to integrate with that solution, from the cloud perspective."
"Not sufficiently compatible with some of our systems."
"The initial setup is a bit challenging because things are not easy. It needs a lot of technology adaptability plus the customer's environment-specific use cases."
Fortify WebInspect is ranked 2nd in Dynamic Application Security Testing (DAST) with 17 reviews while Synopsys Code Dx is ranked 32nd in Static Application Security Testing (SAST) with 1 review. Fortify WebInspect is rated 7.0, while Synopsys Code Dx is rated 0.0. The top reviewer of Fortify WebInspect writes "A powerful tool catering to multiple use cases that provides reasonably good technical support". On the other hand, the top reviewer of Synopsys Code Dx writes "Facilitates continuous assessment of applications, covering both static and dynamic security aspects". Fortify WebInspect is most compared with PortSwigger Burp Suite Professional, Fortify on Demand, Acunetix, OWASP Zap and HCL AppScan, whereas Synopsys Code Dx is most compared with Veracode, Checkmarx One, Coverity and SonarQube.
We monitor all Dynamic Application Security Testing (DAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.