GuardRails is a security platform that empowers developers to build secure applications by giving them continuous...
Software Advice offers objective, independent research and verified user reviews. We may earn a referral fee when you visit a vendor through our links.
Learn more
About Fortify
Fortify is an application security platform designed to help organizations address the evolving threats of today and tomorrow. By combining established next-gen technologies with best practices, Fortify allows organizations to increase their security posture while accelerating DevOps initiatives. Fortify helps prevent web applications from being hacked by providing a suite of products that can be deployed across DevOps and IT operations to secure, automate, execute and manage security at every stage of the application lifecycle.
Fortify pricing
Fortify does not have a free version and does not offer a free trial.
Starting Price:
Not provided by vendor
Free Version:
No
Free trial:
No
Alternatives to Fortify
Aikido is a security management system that aids businesses in streamlining their security operations across codes and...
Syxsense is a leading Unified Security and Endpoint Management (USEM) solution that delivers real-time monitoring and...
Kiuwan is a powerful, end-to-end application security platform designed to identify and remediate vulnerabilities...
BuildPiper is a microservices and Kubernetes delivery platform. It helps businesses with the entire software delivery...
Action1 reinvents patching with an infinitely scalable, highly secure, cloud-native platform configurable in 5 minutes...
Fortify Reviews
Feature rating
2 reviews of 2
Mukeshkumar
- Industry: Information Technology & Services
- Company size: 10,000+ Employees
- Used Weekly for 2+ years
-
Review Source
5
Reviewed on 23/02/2023
Fortify is the most widely used product for vulnerability detection in code and security...
Overall, it's a great and must have tool for every organization working on software development.
Pros
Fortify can be integrated into popular IDEs like Visual Studio, eclipse, IntelliJ Idea. It can also be integrated into GitLab, Jenkins CICD pipeline, bitbucket etc. It makes static code analysis very easy. It supports very wide range of security checks including both static and dynamic code analysis to detect vulnerabilities. Very easy to use and integrate. Very user-friendly dashboard to check all the issues. Good support from Microfocus.
Cons
It sometimes gives false positives which wastes effort and time of developers. Might be little bit costly for small organizations but used widely by many organizations. Might fail to detect certain vulnerabilities so we cannot fully rely on it.
Naveen
- Industry: Information Technology & Services
- Company size: 201–500 Employees
- Used Daily for 6-12 months
-
Review Source
5
Reviewed on 11/12/2022
A Perfect SAST Solution
A Perfect SAST Solution to implement in an DevSecOps pipeline. The tool is matured and perfect on its own flow.If your budget meets the cost, you can just go for it as it is a perfect SAST solution.
Pros
The user-friendly UI, easy connection with CI/CD, and excellent customer assistance are all highlighted along with the details of the code analysis of the problems. The fact that this software is compatible with practically all programming languages is what I enjoy most about it.
Cons
We have not discovered any issues with the tool; rather it is good and extremely comfortable using it, therefore we are pleased with how it has evolved.
