Fortify Application Defender vs. Klocwork

Fortify Application Defender is ranked 17th in Application Security with 1 review vs Klocwork which is ranked 9th in Application Security with 6 reviews. The top reviewer of Fortify Application Defender writes "Its ability to find security defects is valuable. However, support for older compilers/IDEs is lacking". The top reviewer of Klocwork writes "The product has a low false positive rate, but they could loosen up on their licensing". Fortify Application Defender is most compared with SonarQube, Coverity and Checkmarx. Klocwork is most compared with SonarQube, Coverity and Checkmarx.
Cancel
You must select at least 2 products to compare!
Most Helpful Review
Use Null Product? Share your opinion.
Find out what your peers are saying about CA Technologies, Checkmarx, SonarQube and others in Application Security.
305,759 professionals have used our research since 2012.

Quotes From Members Comparing Fortify Application Defender vs. Klocwork

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Pros
Its ability to find security defects is valuable.

Read more »

The ability to create custom checkers is a plus.I like not having to dig through false positives. Chasing down a false positive can take anywhere from five minutes for a small easy one, then something that is complicated and goes through a whole bunch of different class cases, and it can take up to 45 minutes to an hour to find out if it is a false positive or not.The tool helps the team to think beforehand about corner cases or potential bugs that might arise in real-time.We like using the static analysis and code refactoring, which are very valuable because of our requirements to meet safety critical levels and reliability.

Read more »

Read more »

Cons
Support for older compilers/IDEs is lacking.

Read more »

I hope that in each new release they add new features relating to the addition of checkers, improving their analysis engines etc.Klocwork does have a problem with true positives. It only found 30% of true positives in the Juliet test case.We bought Klocwork, but it was limited to one little program, but the program is now sort of failing. So, we have a license for usage on a program that is sort of failing, and we really can't use the license on anything else.The way to define the rules is too complex. The definition/rules for static analysis could be automated according to various SILs, so as to avoid confusion.

Read more »

Read more »

Pricing and Cost Advice
Information Not Available
Klocwork is still tight on their licensing. If Klocwork would loosen up on the licensing, and where the license could be used, and how many different programs could be run on it, then we have several development programs that I would love to be able to use it for going forward.Klocwork should not to be quite so heavy handed on the licensing for very specific programs.The limitation that we have is that Klocwork is licensed to certain programs, and if you want to license them to other programs, you have to pay more money.

Read more »

Information Not Available
report
Use our free recommendation engine to learn which Application Security solutions are best for your needs.
305,759 professionals have used our research since 2012.
Ranking
Views
725
Comparisons
665
Reviews
1
Followers
56
Avg. Rating
7.0
Views
5,340
Comparisons
2,984
Reviews
6
Followers
216
Avg. Rating
8.2
Unranked
In Application Security
Top Comparisons
See more Fortify Application Defender competitors »
Compared 43% of the time.
Compared 15% of the time.
Compared 9% of the time.
See more Klocwork competitors »
Compared 29% of the time.
Also Known As
HPE Fortify Application Defender, Micro Focus Fortify Application Defender
Learn how it works
Micro Focus
Rogue Wave
Null Vendor
Video Not Available
Overview
Micro Focus Security Fortify Application Defender is a runtime application self-protection (RASP) solution that helps you manage and mitigate risk from homegrown or third-party applications. It provides centralized visibility into application use and abuse while protecting from software vulnerability exploits and other violations in real time.

Klocwork detects security, safety, and reliability issues in real-time by using this static code analysis toolkit that works alongside developers, finding issues as early as possible, and integrates with teams, supporting continuous integration and actionable reporting.

Information Not Available
OFFER
Learn more about Fortify Application Defender
Learn more about Klocwork
Learn more about Null Product
Sample Customers
Information Not Available
ACCESS Co Ltd, Risk-AI, Winbond Electronics, Bristol-Myers Squibb Pharmaceutical Research Institute, University of Southern California, Alebra Technologies, SIMULIA, Risk Management Solutions, Brigham Young University, SRD, HRL
Information Not Available
Find out what your peers are saying about CA Technologies, Checkmarx, SonarQube and others in Application Security.
Download now
305,759 professionals have used our research since 2012.
We monitor all Application Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.

Sign Up with Email