We performed a comparison between Fortify on Demand and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable features are the server, scanning, and it has helped identify issues with the security analysis."
"The licensing was good."
"The scanning capabilities, particularly for our repositories, have been invaluable."
"The most valuable features of Micro Focus Fortify on Demand have been SAT analysis and application security."
"It is a very easy tool for developers to use in parallel while they're doing the coding. It does auto scanning as we are progressing with the CI/CD pipeline. It has got very simple and efficient API support."
"The solution is user-friendly."
"It has saved us a lot of time as we focus primarily on programming rather than tool operational work."
"The static code analyzers are the most valuable features of this solution."
"The most valuable feature is Burp Collaborator."
"The most valuable feature of PortSwigger Burp Suite Professional is the Burp Intruder tool."
"The Spider is the most useful feature. It helps to analyze the entire web application, and it finds all the passes and offers an automated identification of security issues."
"The most valuable features are Burp Intruder and Burp Scanner."
"The reporting part is the most valuable. It also has very good features. We use almost all of the features for different kinds of customers and needs."
"The solution is quite helpful for session management and configuration."
"It is a time-saver application."
"The solution has a great user interface."
"Integration to CI/CD pipelines could be improved. The reporting format could be more user friendly so that it is easy to read."
"They have very good support, but there is always room for improvement."
"They could provide features for artificial intelligence similar to other vendors."
"I would like the solution to add AI support."
"With Rapid7 I utilized its reporting capabilities to deliver Client Reports within just a few minutes of checking the data. I believe that HP’s FoD Clients could sell more services to clients if HP put more effort into delivering visually pleasing reporting capabilities."
"Temenos's (T-24) info basic is a separate programming interface, and such proprietary platforms and programming interfaces were not easily supported by the out-of-the-box versions of Fortify."
"Not fully integrated with CIT processes."
"The vulnerability analysis does not always provide guidelines for what the developer should do in order to correct the problem, which means that the code has to be manually inspected and understood."
"If your application uses multi-factor authentication, registration management cannot be automated."
"The solution is not easy to set it up. You need a lot of knowledge."
"If we're running a huge number of scans regularly, it slows down the tool."
"The use of system memory is an area that can be improved because it uses a lot."
"The Iran market does not have after-sales support. PortSwigger Burp Suite Professional needs to provide after-sales support."
"PortSwigger Burp Suite Professional could improve the static code review."
"We'd like to have more integration potential across all versions of the product."
"Scanning APIs using PortSwigger Burp Suite Professional takes a lot of time."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
Fortify on Demand is ranked 8th in Application Security Tools with 57 reviews while PortSwigger Burp Suite Professional is ranked 10th in Application Security Tools with 57 reviews. Fortify on Demand is rated 8.0, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of Fortify on Demand writes "Provides good depth of scanning but is unfortunately not fully integrated with CIT processes ". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". Fortify on Demand is most compared with SonarQube, Veracode, Checkmarx One, Coverity and Fortify WebInspect, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and GitLab. See our Fortify on Demand vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.