Fortify WebInspect Room for Improvement

Kibeom Kim - PeerSpot reviewer
General Manager at Inexion Co.

Fortify WebInspect's shortcoming stems from the fact that it is a very expensive product in Korea, which makes it difficult for its potential customers to introduce the product in their IT environment. The pricing of the product is an area that can be considered for improvement. In the future, Fortify WebInspect should be made available at a cheaper rate since, in Korea, there are many other cheap alternatives available.

View full review »
FP
Senior Manager - IT Security & ISMS at Ericsson

We were not able to host or install Fortify in some of our systems due to incompatibility. For a core company like ours using products like AppRizzo and similar technologies, the integration or installation of Fortify within the use tools would offer an upper hand relative to other scanning tools. Most organizations want a very seamless integration or installation with the many different technologies they use for their respective units.

View full review »
Ilyas Sadibekov - PeerSpot reviewer
Consulting Engineer at a consultancy with 11-50 employees

We have had a problem with authentification. Most applications need authentication to scan to show results correctly. It doesn't allow for various types of authentications.

We have had some bugs on the solution.

The on-premises deployment does not scale. 

View full review »
Buyer's Guide
Fortify WebInspect
March 2024
Learn what your peers think about Fortify WebInspect. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.
MS
Information Security Architect at a real estate/law firm with 1,001-5,000 employees

It requires improvement in terms of scanning. The application scan heavily utilizes the resources of an on-premise server. 32 GB RAM is very high for an enterprise web application.

Its installation and maintenance are not easy. Its updates and upgrades are hard.

Its performance needs to be stabilized. It should also be able to find more vulnerabilities than other tools.

It is expensive. Its price needs to be improved.

View full review »
PW
Security Analyst at a retailer with 10,001+ employees

Fortify WebInspect could improve user-friendliness. Additionally, it is very bulky to use.

View full review »
Kibeom Kim - PeerSpot reviewer
General Manager at Inexion Co.

A localized version, for example, in Korean would be a big improvement to this solution. 

View full review »
HS
Sr. Manager Business Operations Protection at a consumer goods company with 10,001+ employees

Our biggest complaint about this product is that it freezes up, and literally doesn't work for us. It may be in part the way we have it set up, or how we've licensed it.

It is awkward and not very friendly to work with.

The version that I am using is not capable of generating reports to HTML or PDF, so I can't share them. I have to get somebody else to log into the application and view the results themselves. Simply, I can't output a report that I can easily share.

View full review »
SH
Senior Security Consaulant

The solution is on the expensive side. It's something that clients comment on. If they could make it more reasonable, it would be better.

Lately, we've seen more false negatives.

View full review »
KW
Assoc. Director at a tech services company with 10,001+ employees

Right now, it's kind of bulky. There are a lot of newer generation tools coming out that are easier.

Also, when it comes to the installation and deployment, they inspect the enterprise. It was ok with the scale, but still I think they can make it a little lighter in nature.

View full review »
MS
Information Security Architect at a real estate/law firm with 1,001-5,000 employees

The solution needs improvements from the scanning and the technical perspective.

In the next release, we would love to see smooth scale mobile testing - if it has similar to testing with wider applications for different technologies as well because people are moving towards mobile. If the solution can integrate AI and also understand the application by itself, this will be great.

View full review »
it_user1441263 - PeerSpot reviewer
Security Engineer at Secure Network

The scanner could be better. 

The out of bounds channel is missing and it makes it hard to nail down the vulnerabilities.

View full review »
CV
Senior Software Developer at a financial services firm with 10,001+ employees

The solution needs better integration with Microsoft's Azure Cloud or an extension of Azure DevOps. In fact, it should better integrate with any cloud provider. Right now, it's quite difficult to integrate with that solution, from the cloud perspective.

View full review »
RP
Ops Risk Lead at a tech services company with 10,001+ employees

One thing I would like to see them introduce is a cloud-based platform.

View full review »
FV
Senior Information Technology Architect at a computer software company with 11-50 employees

Creating reports is very slow and it is something that should be improved.

In the future, I would like to see better integration between static analysis and dynamic analysis.

View full review »
AB
Security Researcher at a financial services firm with 5,001-10,000 employees

There were times when we had to run the login sequence several times in order to capture it properly.

It took us between eight and ten hours to scan an entire site, which is somewhat slow and something that I think can be improved.

View full review »
it_user1021815 - PeerSpot reviewer
Senior Consultant at a tech services company with 1,001-5,000 employees

The service can be improved by creating a reduction of false positives.

View full review »
Buyer's Guide
Fortify WebInspect
March 2024
Learn what your peers think about Fortify WebInspect. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.