Try our new research platform with insights from 80,000+ expert users

Fortify Application Defender vs GitHub comparison

OpenText and GitHub are both solutions in the Application Security Tools category. OpenText is ranked #28 with an average rating of 8.0, while GitHub is ranked #7 with an average rating of 9.0. OpenText holds a 0.7% mindshare in AS, compared to GitHub’s 0.9% mindshare. Additionally, 81% of OpenText users are willing to recommend the solution, compared to 100% of GitHub users who would recommend it.
Fortify Application Defender
Read 11 Fortify Application Defender reviews
  • 917 Views
  • 657 Comparison Views
81% willing to recommend
GitHub
Read 94 GitHub reviews
  • 2,247 Views
  • 920 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Apr 6, 2025

GitHub and Fortify Application Defender are products competing within the software development category. Users generally show greater satisfaction with GitHub due to pricing and support, though Fortify Application Defender holds an advantage in security features and value for its price.

Features: GitHub offers collaborative capabilities, including source code management, easy branch creation and merging, and integration with Jira and Jenkins, supporting open-source engagement. Fortify Application Defender provides static code analysis, vulnerability management, and useful insights through its Audit Workbench for superior application security.

Room for Improvement: GitHub needs to enhance integration, improve security, and offer better project management features, as well as streamline its UI for non-technical users. Fortify Application Defender should expand support for multiple programming languages and improve false positive handling, with noted pricing complexity and limited tech stack support to advance.

Ease of Deployment and Customer Service: GitHub's flexible deployment on public and hybrid clouds makes it accessible, though its community-driven technical assistance is praised despite some finding official support lacking. Fortify Application Defender offers on-premises and public cloud deployment, with satisfactory technical support that could improve in responsiveness and expertise.

Pricing and ROI: GitHub's free public repositories and affordable private repository pricing attract small to medium-sized businesses, reducing licensing costs and enhancing ROI through collaboration. Fortify Application Defender's complex, costly licensing is justified by its comprehensive security features, with high cost being a barrier but providing good ROI for businesses prioritizing security.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Fortify Application Defender vs. GitHub Report (Updated: June 2025).
Buyer's Guide
Fortify Application Defender vs. GitHub
June 2025
Download the complete report
Helped 860,168 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortify Application Defender
Ranking in Application Security Tools
28th
Average Rating
7.8
Reviews Sentiment
6.6
Number of Reviews
11
Ranking in other categories
No ranking in other categories
GitHub
Ranking in Application Security Tools
7th
Average Rating
8.8
Reviews Sentiment
7.2
Number of Reviews
94
Ranking in other categories
Version Control (3rd)
 

Mindshare comparison

As of July 2025, in the Application Security Tools category, the mindshare of Fortify Application Defender is 0.7%, up from 0.7% compared to the previous year. The mindshare of GitHub is 0.9%, down from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools
 

Featured Reviews

Saroj-Patnaik - PeerSpot reviewer
Reliable solution with excellent machine learning algorithms but expensive and lacking support
I primarily use Fortify Application Defender to assess whether our products can defend against applications Fortify Application Defender's most valuable features are machine learning algorithms, real-time remediation, and automatic vulnerability notifications. Fortify Application Defender gives…
Read full review
Pervez Roy - PeerSpot reviewer
Very good for collaboration on software projects
We use GitHub for code repository alongside Bitbucket GitHub is very good for collaboration on software projects. We prefer Bitbucket for commercial use, while GitHub is used for open source. You can get the differences, history of changes, and version control for various pull requests. You can…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution helped us to improve the code quality of our organization."
"The most valuable features of Fortify Application Defender are the code packages that are default."
"Its ability to find security defects is valuable."
"I find the configuration of rules in Fortify Application Defender useful. Its integration is also easy."
"We are able to provide out customers with a secure application after development. They are no longer left wondering if they are vulnerable to different threats within the market following deployment."
"The information from Fortify Application Defender on how to fix and solve issues is very good compared to other solutions."
"Fortify Application Defender's most valuable features are machine learning algorithms, real-time remediation, and automatic vulnerability notifications."
"The most valuable feature is the ability to automatically feed it rules what it's coupled with the WebInspect dynamic application scanning technology."
More Fortify Application Defender pros
"The solution is scalable."
"The product has a good UI. It's simple and easy to access, and technical help is easily available. The two-factor authentication security is another valuable feature."
"GitHub is easy, secure, and widely documented."
"The code sharing and updated history are valuable features."
"We use GitHub as a repository."
"GitHub is very straightforward. I really appreciate the versioning capabilities, ease of use, and the ability to host code."
"Any complex banking can be handled very easily in GitHub. It allows us to integrate with tools like Grid, where we can merge and resolve conflicts without any hassle."
"I like the CI/CD features."
More GitHub pros
 

Cons

"Fortify Application Defender gives a lot of false positives."
"The product should integrate industry-standard code review tools internally with its system. This would streamline the coding process, as developers wouldn't need multiple tools for code review and security checks. Many independent and open-source tools are available, from Apache to various libraries. Using multiple DevOps pipeline tools can slow the turnaround time."
"I encountered many false positives for Python applications."
"The false positive rate should be lower."
"The workbench is a little bit complex when you first start using it."
"The solution could improve the time it takes to scan. When comparing it to SonarQube it does it in minutes while in Fortify Application Defender it can take hours."
"The licensing can be a little complex."
"The biggest complaint that I have heard concerns additional platform support because right now, it only supports applications that are written in .NET and Java."
More Fortify Application Defender cons
"GitHub's issue management could be improved a little from an organization standpoint. It would be helpful to have the ability to organize a work board or a backlog more comprehensively. For organizations migrating to GitHub from arbitrary systems, it's a little bit of a headache to move on to that system."
"There is nothing that I find that needs improvement in GitHub."
"I would like to see integration with Slack such that all of the changes made in GitHub are reflected there."
"It would be better if the amount of storage were increased."
"I think it would be valuable to have more security. Some of the data is very open to everyone."
"GitHub could add more security features. I am not sure how secure it is. If they provide more security features, then it can be used in more official applications."
"The development team pushes the code into a repository, and the CI/CD pipeline will perform the build. We need open-source libraries to perform the builds. It would be helpful to have the ability to link to open-source libraries like npm libraries. I don't know if GitHub Actions provides this. I would like to see that in GitHub Actions if they don't."
"The solution needs some more controls for deleting code."
More GitHub cons
 

Pricing and Cost Advice

"The base licensing costs for the SaaS platform is about $900 USD per application, per year."
"I rate the solution's pricing a five out of ten. It comes as an annual cloud subscription. The tool's pricing is around 50 lakhs."
"Fortify Application Defender is very expensive."
"The licensing is very complex, it's project based and can range from $10,000 to $200,000+ depending on the project type and size."
"The price of this solution could be less expensive."
"The product’s price is much higher than other tools."
"Regarding pricing, I'd rate it eight out of ten. It's decent and not too expensive, and small businesses can also afford it. With AWS taking CodeCommit out of the market, I don't see many competitors for small companies in terms of GitHub."
"If I consider the market standards, the product's price is pocket-friendly."
"The licensing model from GitHub is very clear."
"GitHub is an open-source product, but when using the free-to-use version, anyone can see the code we're working on."
"We pay a licensing fee for GitHub, which could be cheaper."
"The private repositories are free, which is very good."
"You don't have to pay for a license if you are using the free version."
"I am using the free version of the solution. However, there are some costs my organization pays."
More GitHub pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
See recommendations
860,168 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
19%
Manufacturing Company
16%
Computer Software Company
13%
Government
9%
Financial Services Firm
13%
Computer Software Company
12%
Manufacturing Company
9%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Fortify Application Defender?
I find the configuration of rules in Fortify Application Defender useful. Its integration is also easy.
See all answers
What needs improvement with Fortify Application Defender?
The product should integrate industry-standard code review tools internally with its system. This would streamline the coding process, as developers wouldn't need multiple tools for code review and...
See all answers
What is your primary use case for Fortify Application Defender?
We use the solution for fast code review. It is integrated into our DevOps pipeline.
See all answers
What do you like most about GitHub?
The control is the most valuable feature as developers can work on a single code.
See all answers
What is your experience regarding pricing and costs for GitHub?
I am not aware about the pricing, so I will not be able to give feedback.
See all answers
What needs improvement with GitHub?
Sometimes we do not get the exact solution, and the suggested solution does not work, so GitHub could improve in that area. We have used GitHub mainly for the code generation part. That is the only...
See all answers
 

Comparisons

Checkmarx One vs Fortify Application Defender Logo
Checkmarx One vs Fortify Application Defender
Compared 22% of the time
SonarQube Server (formerly SonarQube) vs Fortify Application Defender Logo
SonarQube Server (formerly SonarQube) vs Fortify Application Defender
Compared 15% of the time
Coverity vs Fortify Application Defender Logo
Coverity vs Fortify Application Defender
Compared 14% of the time
Qualys Web Application Scanning vs Fortify Application Defender Logo
Qualys Web Application Scanning vs Fortify Application Defender
Compared 11% of the time
CAST Application Intelligence Platform vs Fortify Application Defender Logo
CAST Application Intelligence Platform vs Fortify Application Defender
Compared 10% of the time
More Fortify Application Defender Competitors
Bitbucket vs GitHub Logo
Bitbucket vs GitHub
Compared 16% of the time
Snyk vs GitHub Logo
Snyk vs GitHub
Compared 12% of the time
OpenText Core Application Security vs GitHub Logo
OpenText Core Application Security vs GitHub
Compared 10% of the time
AWS CodeCommit vs GitHub Logo
AWS CodeCommit vs GitHub
Compared 8% of the time
Atlassian SourceTree vs GitHub Logo
Atlassian SourceTree vs GitHub
Compared 7% of the time
More GitHub Competitors
 

Product Reports

Buyer's Guide
Application Security Tools
June 2025
Fortify Application Defender reportDownload Fortify Application Defender product report
Buyer's Guide
GitHub
June 2025
GitHub reportDownload GitHub product report
 

Also Known As

HPE Fortify Application Defender, Micro Focus Fortify Application Defender
No data available
 

Overview

Micro Focus Security Fortify Application Defender is a runtime application self-protection (RASP) solution that helps you manage and mitigate risk from homegrown or third-party applications. It provides centralized visibility into application use and abuse while protecting from software vulnerability exploits and other violations in real time.

OpenText
GitHub is a web-based Git repository hosting service. It offers all of the distributed revision control and source code management (SCM) functionality of Git as well as adding its own features. Unlike Git, which is strictly a command-line tool, GitHub provides a Web-based graphical interface and desktop as well as mobile integration. It also provides access control and several collaboration features such as bug tracking, feature requests, task management, and wikis for every project.
GitHub
 

Sample Customers

ServiceMaster, Saltworks, SAP
Dominion Enterprises, NASA, Braintree, SAP, CyberAgent
Buyer's Guide
Fortify Application Defender vs. GitHub
June 2025
Free Report: Fortify Application Defender vs. GitHub
Find out what your peers are saying about Fortify Application Defender vs. GitHub and other solutions. Updated: June 2025.
DOWNLOAD NOW
860,168 professionals have used our research since 2012.
See our Fortify Application Defender vs. GitHub report.
See our list of best Application Security Tools vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.