Fortify WebInspect Review

Easy to use with a simple interface, but we sometimes had trouble capturing login sequences

What is our primary use case?

We use WebInspect for performance network application testing to be sure that we aren't creating any security issues.

What is most valuable?

The most valuable feature is the performance.

The user interface is ok and it is very simple to use.

What needs improvement?

There were times when we had to run the login sequence several times in order to capture it properly.

It took us between eight and ten hours to scan an entire site, which is somewhat slow and something that I think can be improved.

For how long have I used the solution?

I have been using WebInspect for about one year.

What do I think about the stability of the solution?

The stability is good.

What do I think about the scalability of the solution?

Scalability has only been an issue in that larger sites take a lot longer to scan.

How are customer service and technical support?

I have not been in contact with technical support.

Which solution did I use previously and why did I switch?

I have used Qualys in the past but more for vulnerability management in the infrastructure, as opposed to web application security.

How was the initial setup?

The initial setup is straightforward and very simple. I simply download the file on my home laptop and started testing with it.

What about the implementation team?

I can deploy this solution on my own.

Which other solutions did I evaluate?

I have been told by friends and colleagues that Acunetix is better, so I will be evaluating that solution in the future.

What other advice do I have?

I would rate this solution a seven out of ten.

Which deployment model are you using for this solution?

Public Cloud
**Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
More Fortify WebInspect reviews from users
...who compared it with Acunetix by Invicti
Find out what your peers are saying about Micro Focus, HCL, PortSwigger and others in Application Security Testing (AST). Updated: July 2021.
523,535 professionals have used our research since 2012.
Add a Comment
ITCS user