Compare Fortify WebInspect vs. ShiftLeft

Cancel
You must select at least 2 products to compare!
Veracode Logo
69,536 views|37,424 comparisons
Fortify WebInspect Logo
7,983 views|5,311 comparisons
ShiftLeft Logo
16 views|10 comparisons
Most Helpful Review
Find out what your peers are saying about Veracode, Checkmarx, PortSwigger and others in Application Security Testing (AST). Updated: June 2021.
510,204 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pricing and Cost Advice
"For the value we get out of it, coupled with the live defect review sessions, we find it an effective value for the money. We are a larger organization.""I don't really know about the pricing, but I'd say it's worth whatever Veracode is charging, because the solution is that good.""Veracode's price is high. I would like them to better optimize their pricing.""If I compare the pricing with other software tools, then it is quite competitive. Whatever the price is, they have always given us a good discount.""Veracode is expensive. Some of its products are expensive. I don't think it's way more expensive than its competitors. The dynamic is definitely worth it, as I think it's cheaper than the competitors. The static scan is a little bit more expensive, around 20 percent more expensive. The manual pen test is more expensive, but it is an expensive service because it's a manual pen test and we also do retests. I don't think it is way more expensive than the competitors, but it's about 15 to 20 percent more expensive.""We use this product per project rather than per developer... Your development model will really determine what the best fit is for you in terms of licensing, because of the project-based licensing. If you do a few projects, that's more attractive. If you have a large number of developers, that would also make the product a little more attractive.""The pricing is really fair compared to a lot of other tools on the market.""It is very reasonably priced compared to what we were paying our previous vendor. For the same price, we are getting much more value and reducing our AppSec costs from 40 to 50 percent."

More Veracode Pricing and Cost Advice »

"The pricing is not clear and while it is not high, it is difficult to understand.""Our licensing is such that you can only run one scan at a time, which is inconvenient."

More Fortify WebInspect Pricing and Cost Advice »

Information Not Available
report
Use our free recommendation engine to learn which Application Security Testing (AST) solutions are best for your needs.
510,204 professionals have used our research since 2012.
Questions from the Community
Top Answer: It's comprehensive from a feature standpoint.
Top Answer: I would recommend them. They have the ability to cover multiple languages and come with all the features you would… more »
Top Answer: SonarQube depends on completely what you configure the Rules. You will have the option of the Profile creation and can… more »
Top Answer: I would like to recommend Checkmarx. With Checkmarx, you are able to have an all in one solution for SAST and SCA as… more »
Top Answer: The solution is rather expensive. It's not cheap. If you compare it to, for example, Acunetix, Acunetix is cheaper.
Ask a question

Earn 20 points

Popular Comparisons
Also Known As
Micro Focus WebInspect, WebInspect
Learn More
Overview

Veracode covers all your Application Security needs in one solution through a combination of five analysis types; static analysis, dynamic analysis, software composition analysis, interactive application security testing, and penetration testing. Unlike on-premise solutions that are hard to scale and focused on finding rather than fixing, Veracode comprises a unique combination of SaaS technology and on-demand expertise that enables DevSecOps through integration with your pipeline, and empowers developers to find and fix security defects.

Most enterprises rely heavily on the Web to conduct their normal operations, whether providing services, a mechanism for retail sales, or a host of other functions. Yet, most still struggle with efficiently managing their application security risks. For one thing, they need solutions of scale that can be used to manage thousands of active sites and assessments while also tracking discovered vulnerabilities, retesting procedures, and more. They need to perform repeated security tests to address compliance with regulations, legislation, and internal security policies and also see how their risk posture has changed over time. The enterprises have to protect their data, brand, and bottom line from the harsh impacts of what successful vulnerability exploitation could bring. Micro Focus WebInspect Enterprise enables organizations to solve these security problems quickly, efficiently, and intelligently.

Shipping secure code is painful and time-consuming – slowing down development teams and AppSec teams alike. ShiftLeft is on a mission to make vulnerabilities history. Our revolutionary Code Property Graph (CPG) enables us to seamlessly insert 10x faster code analysis, prioritized OSS vulnerability findings and real-time security education in one single SaaS platform integrated directly into modern development workflows. Combining our OWASP-benchmark dominating NG-SAST, Intelligent SCA, instant secrets detection, and contextual security education, ShiftLeft CORE code security platform turns every developer into an AppSec expert.

Offer
Learn more about Veracode
Learn more about Fortify WebInspect
Learn more about ShiftLeft
Sample Customers
State of Missouri, Rekner
Aaron's
Information Not Available
Top Industries
REVIEWERS
Financial Services Firm29%
Insurance Company10%
Computer Software Company10%
Healthcare Company7%
VISITORS READING REVIEWS
Computer Software Company31%
Comms Service Provider16%
Financial Services Firm10%
Manufacturing Company6%
VISITORS READING REVIEWS
Computer Software Company36%
Comms Service Provider14%
Government13%
Financial Services Firm8%
No Data Available
Company Size
REVIEWERS
Small Business23%
Midsize Enterprise25%
Large Enterprise52%
VISITORS READING REVIEWS
Small Business22%
Midsize Enterprise29%
Large Enterprise50%
REVIEWERS
Small Business20%
Midsize Enterprise10%
Large Enterprise70%
No Data Available
Find out what your peers are saying about Veracode, Checkmarx, PortSwigger and others in Application Security Testing (AST). Updated: June 2021.
510,204 professionals have used our research since 2012.

Fortify WebInspect is ranked 13th in Application Security Testing (AST) with 9 reviews while ShiftLeft is ranked 32nd in Application Security Testing (AST). Fortify WebInspect is rated 7.0, while ShiftLeft is rated 0.0. The top reviewer of Fortify WebInspect writes "Great centralized dashboard but is a bit overpriced". On the other hand, Fortify WebInspect is most compared with OWASP Zap, PortSwigger Burp Suite Professional, Micro Focus Fortify on Demand, HCL AppScan and Acunetix Vulnerability Scanner, whereas ShiftLeft is most compared with .

See our list of best Application Security Testing (AST) vendors.

We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.