Fortify Application Defender Reviews

Filter by:Reset all filters
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Durgesh Pathak
Real User
DevOps Engineer at a energy/utilities company with 10,001+ employees
Mar 10 2020

What is most valuable?

The most valuable feature is that it analyzes data in real-time. The Audit Workbench allows us to analyze and see if things are okay on our end, giving us the option to manipulate the rules if needed. The intelligence behind the static code analysis is really amazing. When we used to do code reviews… more»

What needs improvement?

There are a couple of vulnerabilities not covered by the solution and we are working on how we can improve on these things. An example of this is when we have a static value that is stored in a database. We need to use a workaround when a value is not exposed directly to the code base, where we… more»

Which solution did I use previously and why did I switch?

I have been using SonarQube for about a year and a half.

What other advice do I have?

This is a great tool and the kind of support it provides is very helpful. It is easy to adopt for any technology and integrates well with any kind of small platform. I would rate this solution a nine out of ten.
Grandin Major
Real User
Solution Architect at a logistics company with 10,001+ employees
Aug 22 2019

How has it helped my organization?

The solution helped us to improve the code quality of our organization.

What needs improvement?

The solution is quite expensive. There could be little improvements made in the solution's performance, reporting, management, interface, dashboard, etc. Their level of support could also be better. They should be more qualified and quicker to respond, for example. It would be beneficial if the dashboard integrated with JIRA.

What other advice do I have?

We've been using the private cloud deployment model. If you need a huge impact, a business impact, then I think I would recommend HP Fortify. However, if a user is looking for a small scale application with less business impact, I would go with a free solution. I would rate the solution ten out of ten. Aside from the cost, the application is pretty good.
Find out what your peers are saying about Micro Focus, SonarQube, Synopsys and others in Application Security. Updated: March 2020.
408,459 professionals have used our research since 2012.
Bob Dean
Real User
Principle Engineer at MTSI
Aug 06 2018

What is most valuable?

Its ability to find security defects is valuable. The elimination of security defects is my top priority. Of secondary importance is finding coding defects.

How has it helped my organization?

It is a good product when support for environments is included. It finds several items and is also good at not reporting false positives.

What needs improvement?

Support for older compilers/IDEs is lacking. Many developers are still using environments that are known for having security issues. For example, Visual Studio 2005, 2008, and older, gcc 1.x, etc. are still being used. However, we cannot analyze a project using these older compilers because they are no longer supported by Fortify. If I can't find security issues injected by the development… more»

Articles

User Assessments By Topic About Fortify Application Defender

Find out what your peers are saying about Micro Focus, SonarQube, Synopsys and others in Application Security. Updated: March 2020.
408,459 professionals have used our research since 2012.

Fortify Application Defender Questions

What is Fortify Application Defender?

Micro Focus Security Fortify Application Defender is a runtime application self-protection (RASP) solution that helps you manage and mitigate risk from homegrown or third-party applications. It provides centralized visibility into application use and abuse while protecting from software vulnerability exploits and other violations in real time.
Also known as
HPE Fortify Application Defender, Micro Focus Fortify Application Defender