We primarily use the solution to test web applications regularly.
Fortify WebInspect Review
Great vulnerability detection and pretty stable, but an expensive option
Oct 13 2020
What is our primary use case?
What is most valuable?
The solution is able to detect a wide range of vulnerabilities. It's better at it than other products.
What needs improvement?
The solution is on the expensive side. It's something that clients comment on. If they could make it more reasonable, it would be better.
Lately, we've seen more false negatives.
For how long have I used the solution?
I've been dealing with the solution for three years at this point.
What do I think about the stability of the solution?
The solution is largely stable. We've only noticed recently that there are more false negatives. I'm not sure if that means there's an issue or not.
What do I think about the scalability of the solution?
In terms of scalability, many of our customers only have 20-30 websites and therefore one scanner fulfills their requirement. In that sense, we've never really tried to scale the product.
How are customer service and technical support?
For the most part, WebInspect has pretty good technical support. Not all Micro Focus products have equally good support.
Which solution did I use previously and why did I switch?
We suggest different solutions to our clients. Some might use Acunetix. We've also used ForeSite in the past as well.
What's my experience with pricing, setup cost, and licensing?
The solution is rather expensive. It's not cheap. If you compare it to, for example, Acunetix, Acunetix is cheaper.
What other advice do I have?
While we generally like WebINspect, if a client has a smaller budget, we might suggest Acunetix simply because it is cheaper. However, if a customer's priority was better scanning for their application, we would suggest WebInspect. We like to give our clients options and choices. We prefer to provide them with options that meet their needs and address their pain points.
Overall, I would rate the solution seven out of ten. If the price was a bit better, I would rate them higher.
Which deployment model are you using for this solution?
On-premises
**Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
More Fortify WebInspect reviews from users...at Large Enterprises
...who compared it with Acunetix Vulnerability Scanner
Find out what your peers are saying about Micro Focus, HCL, PortSwigger and others in Application Security Testing (AST). Updated: January 2021.
456,812 professionals have used our research since 2012.
Author
reviewer966825
Senior Security Consaulant
Reseller
Highlights
Pros
The solution is able to detect a wide range of vulnerabilities. It's better at it than other products.
Cons
Lately, we've seen more false negatives.
Product Categories
Application Security Testing (AST)Popular Comparisons
Micro Focus Fortify on Demand
OWASP Zap
PortSwigger Burp
HCL AppScan
Acunetix Vulnerability Scanner
Veracode
Qualys Web Application Scanning
Netsparker Web Application Security Scanner
Checkmarx
Rapid7 AppSpider
WhiteHat Sentinel
Contrast Security Assess
Buyer's Guide
Download our free Application Security Testing (AST) Report and find out what your peers are saying about Micro Focus, HCL, PortSwigger, and more!
Quick Links
Learn More: Questions:
- What alternatives are there for Fortify WebInspect and Fortify SCA?
- When evaluating Application Security Testing, what aspect do you think is the most important to look for?
- What are the OWASP top 10 in 2020?
- SAST vs. DAST: Which is better for application security testing?
- What tools do you rely on for building a DevSecOps pipeline?