Fortify Application Defender vs. Klocwork

Fortify Application Defender is ranked 19th in Application Security with 1 review vs Klocwork which is ranked 10th in Application Security with 5 reviews. The top reviewer of Fortify Application Defender writes "Its ability to find security defects is valuable. However, support for older compilers/IDEs is lacking". The top reviewer of Klocwork writes "The product has a low false positive rate, but they could loosen up on their licensing". Fortify Application Defender is most compared with SonarQube, Coverity and Checkmarx. Klocwork is most compared with SonarQube, Coverity and Checkmarx.
Cancel
You must select at least 2 products to compare!
+Add products to compare
Most Helpful Review
Find out what your peers are saying about CA Technologies, Checkmarx, SonarQube and others in Application Security.
291,767 professionals have used our research since 2012.

Quotes From Members Comparing Fortify Application Defender vs. Klocwork

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Pros
Its ability to find security defects is valuable.

Read more »

I like not having to dig through false positives. Chasing down a false positive can take anywhere from five minutes for a small easy one, then something that is complicated and goes through a whole bunch of different class cases, and it can take up to 45 minutes to an hour to find out if it is a false positive or not.The ability to create custom checkers is a plus.The tool helps the team to think beforehand about corner cases or potential bugs that might arise in real-time.We like using the static analysis and code refactoring, which are very valuable because of our requirements to meet safety critical levels and reliability.

Read more »

Cons
Support for older compilers/IDEs is lacking.

Read more »

Klocwork does have a problem with true positives. It only found 30% of true positives in the Juliet test case.We bought Klocwork, but it was limited to one little program, but the program is now sort of failing. So, we have a license for usage on a program that is sort of failing, and we really can't use the license on anything else.I hope that in each new release they add new features relating to the addition of checkers, improving their analysis engines etc.The way to define the rules is too complex. The definition/rules for static analysis could be automated according to various SILs, so as to avoid confusion.

Read more »

Pricing and Cost Advice
Information Not Available
Klocwork is still tight on their licensing. If Klocwork would loosen up on the licensing, and where the license could be used, and how many different programs could be run on it, then we have several development programs that I would love to be able to use it for going forward.Klocwork should not to be quite so heavy handed on the licensing for very specific programs.The limitation that we have is that Klocwork is licensed to certain programs, and if you want to license them to other programs, you have to pay more money.

Read more »

report
Use our free recommendation engine to learn which Application Security solutions are best for your needs.
291,767 professionals have used our research since 2012.
Ranking
RANKING
Views
440
Comparisons
398
Reviews
1
Followers
52
Avg. Rating
7.0
Views
4,534
Comparisons
2,846
Reviews
6
Followers
216
Avg. Rating
7.8
Top Comparisons
Top ComparisonsSee more Fortify Application Defender competitors »
Compared 44% of the time.
Compared 14% of the time.
Compared 10% of the time.
See more Klocwork competitors »
Also Known As
Also Known AsHPE Fortify Application Defender, Micro Focus Fortify Application Defender
Website/Video
Website/VideoMicro Focus
Rogue Wave
Overview
OverviewMicro Focus Security Fortify Application Defender is a runtime application self-protection (RASP) solution that helps you manage and mitigate risk from homegrown or third-party applications. It provides centralized visibility into application use and abuse while protecting from software vulnerability exploits and other violations in real time.

Klocwork detects security, safety, and reliability issues in real-time by using this static code analysis toolkit that works alongside developers, finding issues as early as possible, and integrates with teams, supporting continuous integration and actionable reporting.

OFFER
Learn more about Fortify Application Defender
Learn more about Klocwork
Sample Customers
Sample Customers
Information Not Available
ACCESS Co Ltd, Risk-AI, Winbond Electronics, Bristol-Myers Squibb Pharmaceutical Research Institute, University of Southern California, Alebra Technologies, SIMULIA, Risk Management Solutions, Brigham Young University, SRD, HRL
Find out what your peers are saying about CA Technologies, Checkmarx, SonarQube and others in Application Security.
Download now
291,767 professionals have used our research since 2012.
We monitor all Application Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.

Sign Up with Email