We performed a comparison between Fortify on Demand and ShiftLeft based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools."Its ability to perform different types of scans, keep everything in one place, and track the triage process in Fortify SSC stands out."
"The licensing was good."
"There is not only one specific feature that we find valuable. The idea is to integrate the solution in DevSecOps which we were able to do."
"Fortify on Demand is easy to use and the reporting is good."
"The most valuable feature is the capacity to be able to check vulnerabilities during the development process. The development team can check whether the code they are using is vulnerable to some type of attack or there is some type of vulnerability so that they can mitigate it. It helps us in achieving a more secure approach towards internal applications. It is an intuitive solution. It gives all the information that a developer needs to remediate a vulnerability in the coding process. It also gives you some examples of how to remediate a vulnerability in different programming languages. This solution is pretty much what we were searching for."
"The SAST feature is the most valuable."
"It has saved us a lot of time as we focus primarily on programming rather than tool operational work."
"The quality of application security testing reduces risk and gives very few false positives."
"When it comes to ShiftLeft, the most valuable feature is definitely its ease of use and cost-effectiveness."
"Micro Focus Fortify on Demand could improve the user interface by making it more user-friendly."
"An improvement would be the ability to get vulnerabilities flowing automatically into another system."
"The products must provide better integration with build tools."
"Micro Focus Fortify on Demand can improve by having more graphs. For example, to show the improvement of the level of security."
"There is room for improvement in the integration process."
"The Visual Studio plugin seems to hang when a scan is run on big projects. I would expect some improvements there."
"I would like the solution to add AI support."
"There are many false positives identified by the solution."
"Having support from senior management is crucial in making it mandatory for teams to collaborate with the security team throughout the development process."
Fortify on Demand is ranked 11th in Application Security Tools with 56 reviews while ShiftLeft is ranked 26th in Application Security Tools with 1 review. Fortify on Demand is rated 8.0, while ShiftLeft is rated 10.0. The top reviewer of Fortify on Demand writes "Provides good depth of scanning but is unfortunately not fully integrated with CIT processes ". On the other hand, the top reviewer of ShiftLeft writes "Effectively in identify and fix bugs early in the development lifecycle". Fortify on Demand is most compared with SonarQube, Checkmarx One, Veracode, Coverity and Fortify WebInspect, whereas ShiftLeft is most compared with SonarQube, Black Duck and Semgrep Supply Chain.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.