Try our new research platform with insights from 80,000+ expert users

Fortify Application Defender vs GitLab comparison

OpenText and GitLab are both solutions in the Application Security Tools category. OpenText is ranked #28 with an average rating of 8.0, while GitLab is ranked #10 with an average rating of 8.6. OpenText holds a 0.7% mindshare in AS, compared to GitLab’s 2.7% mindshare. Additionally, 81% of OpenText users are willing to recommend the solution, compared to 97% of GitLab users who would recommend it.
Fortify Application Defender
Read 11 Fortify Application Defender reviews
  • 917 Views
  • 657 Comparison Views
81% willing to recommend
GitLab
Read 85 GitLab reviews
  • 3,135 Views
  • 2,310 Comparison Views
97% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024

Fortify Application Defender and GitLab compete in the software security and collaboration space. GitLab maintains the upper hand due to its superior features, though Fortify Application Defender excels in pricing and support satisfaction from its focused capabilities.

Features: Fortify Application Defender is known for its robust security capabilities, providing effective application defense, focused capabilities, and competitive pricing. GitLab offers a wide range of DevOps features, ensuring efficient collaboration and integration with versatile application capabilities.

Room for Improvement: Fortify Application Defender needs more intuitive configuration options, enhanced usability, and improved customer support quality. GitLab could improve its troubleshooting aspects, enhance stability, and better address performance for seamless usability.

Ease of Deployment and Customer Service: Fortify Application Defender is noted for straightforward deployment but receives mixed feedback on customer support quality. GitLab offers efficient deployment processes with responsive customer service, favorably impacting productivity.

Pricing and ROI: Fortify Application Defender offers competitive pricing with clear ROI, appealing to cost-sensitive users. GitLab, despite a higher investment, provides substantial long-term ROI via its comprehensive feature set and enhanced productivity, justifying the cost.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Fortify Application Defender vs. GitLab Report (Updated: June 2025).
Buyer's Guide
Fortify Application Defender vs. GitLab
June 2025
Download the complete report
Helped 860,592 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortify Application Defender
Ranking in Application Security Tools
28th
Average Rating
7.8
Reviews Sentiment
6.6
Number of Reviews
11
Ranking in other categories
No ranking in other categories
GitLab
Ranking in Application Security Tools
10th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
85
Ranking in other categories
Build Automation (1st), Release Automation (2nd), Static Application Security Testing (SAST) (7th), Rapid Application Development Software (11th), Software Composition Analysis (SCA) (5th), Enterprise Agile Planning Tools (2nd), Fuzz Testing Tools (2nd), DevSecOps (1st)
 

Mindshare comparison

As of July 2025, in the Application Security Tools category, the mindshare of Fortify Application Defender is 0.7%, up from 0.7% compared to the previous year. The mindshare of GitLab is 2.7%, down from 2.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Security Tools
 

Featured Reviews

Saroj-Patnaik - PeerSpot reviewer
Reliable solution with excellent machine learning algorithms but expensive and lacking support
I primarily use Fortify Application Defender to assess whether our products can defend against applications Fortify Application Defender's most valuable features are machine learning algorithms, real-time remediation, and automatic vulnerability notifications. Fortify Application Defender gives…
Read full review
Rohit Kesharwani - PeerSpot reviewer
Improved agility and time to market with CI/CD enhancements
The CI/CD pipelines in GitLab ( /products/gitlab-reviews ) are highly valuable. Another important feature is the single source of repository, allowing efficient repository management and source code management. GitLab provides manageability by allowing us to manage source code effectively through separate repositories. Additionally, GitLab enables the creation of individual CI/CD pipelines for each repository, making software more agile. By integrating GitLab as a DevOps platform, we have enhanced agility, improved our time to market, and different teams can work collaboratively on various projects.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The tool's most valuable feature is software composition analysis. This feature works well with my .NET applications, providing a better understanding of library vulnerabilities."
"I find the configuration of rules in Fortify Application Defender useful. Its integration is also easy."
"The most valuable features of Fortify Application Defender are the code packages that are default."
"The information from Fortify Application Defender on how to fix and solve issues is very good compared to other solutions."
"Its ability to find security defects is valuable."
"The most valuable feature is that it analyzes data in real-time."
"We are able to provide out customers with a secure application after development. They are no longer left wondering if they are vulnerable to different threats within the market following deployment."
"The most valuable feature is the ability to automatically feed it rules what it's coupled with the WebInspect dynamic application scanning technology."
More Fortify Application Defender pros
"CI/CD is very good. The version control system is also good. These are the two features that we use."
"The stability of GitLab is impressive."
"The dashboard and interface make it easy to use."
"By integrating GitLab as a DevOps platform, we have enhanced agility, improved our time to market, and different teams can work collaboratively on various projects."
"The most valuable functionality of GitLab, for me, is the DevOps. Besides the normal source control based on Git, I find the Auto DevOps features most important in the solution."
"GitLab's source control is excellent."
"It scales well."
"It's a great toolbox where the CI/CD pipeline is the fundamental component, but there are so many other features that you can pull from, which makes it a very powerful tool. My current client is using AWS, and they can, of course, use AWS CodePipeline, but GitLab is much more mature than that, and it also gives you the freedom to decide to go to another platform or have a multi-cloud strategy and things like that. That freedom for me is also very valuable."
More GitLab pros
 

Cons

"The product should integrate industry-standard code review tools internally with its system. This would streamline the coding process, as developers wouldn't need multiple tools for code review and security checks. Many independent and open-source tools are available, from Apache to various libraries. Using multiple DevOps pipeline tools can slow the turnaround time."
"The biggest complaint that I have heard concerns additional platform support because right now, it only supports applications that are written in .NET and Java."
"I encountered many false positives for Python applications."
"The solution could improve the time it takes to scan. When comparing it to SonarQube it does it in minutes while in Fortify Application Defender it can take hours."
"Fortify Application Defender could improve by supporting more code languages, such as GRAAS and Groovy."
"The false positive rate should be lower."
"Fortify Application Defender gives a lot of false positives."
"The solution is quite expensive."
More Fortify Application Defender cons
"I would like more Agile features in the Premium version. The Premium version should have all Agile features that exist in the Ultimate version. IBM AOM has a complete Agile implementation, but in GitLab, you only have these features if you buy the Ultimate version. It would be good if we can use these in the Premium version."
"Currently, GitLab is not easy to scale because GitLab has specific deployment instructions. We deploy it on one of the VMs."
"The integration and storage capabilities could be better."
"The self-hosted version of GitLab is not very stable when under load. It slows down and requires restarts every few days."
"Merge conflicts and repository maintenance could improve. If there is someone new to the system they would not know if there is a conflict."
"Some of the scripts that we encountered in GitLab were not fully functional and threw up errors."
"There are missing search features, particularly when searching repositories or applying filters. Additionally, I have encountered issues with the deployment of CI/CD pipelines, especially dealing with variable environments."
"Regarding improvements, making task management is something that GitLab can potentially make easier, similar to what DevOps or Jira does."
More GitLab cons
 

Pricing and Cost Advice

"The base licensing costs for the SaaS platform is about $900 USD per application, per year."
"Fortify Application Defender is very expensive."
"The product’s price is much higher than other tools."
"The price of this solution could be less expensive."
"The licensing is very complex, it's project based and can range from $10,000 to $200,000+ depending on the project type and size."
"I rate the solution's pricing a five out of ten. It comes as an annual cloud subscription. The tool's pricing is around 50 lakhs."
"We are using its free version, and we are evaluating its Premium version. Its Ultimate version is very expensive."
"I'm not sure if they have some kind of discount. I've been negotiating with them on prices before, and I believe they weren't too happy to give discounts, but list prices are $19 per user, per month for Premium and $99 per user, per month for Ultimate. So, the difference between Premium and Ultimate is a bit bigger, and in most companies, you need to build some type of business case."
"Its price is fine. It is on the cheaper side and not expensive. You have to pay additionally for GitLab CI/CD minutes. Initially, we used the free version. When we ran out of GitLab minutes, we migrated to the paid version."
"GitLab's pricing is good compared to others on the market."
"The solution's standard license is paid annually. They have changed the pricing model and it used to be better. There is a free version available."
"I'm not aware of the licensing costs because those were covered by the customer."
"In total, I believe we have more than 300 licenses spread over about 100 users, though I can't comment on the costs involved."
"On a scale of one to ten, where one is cheap, and ten is expensive, I rate the pricing a five out of ten."
More GitLab pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
See recommendations
860,592 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
19%
Manufacturing Company
16%
Computer Software Company
13%
Government
9%
Financial Services Firm
13%
Computer Software Company
13%
Educational Organization
12%
Government
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Fortify Application Defender?
I find the configuration of rules in Fortify Application Defender useful. Its integration is also easy.
See all answers
What needs improvement with Fortify Application Defender?
The product should integrate industry-standard code review tools internally with its system. This would streamline the coding process, as developers wouldn't need multiple tools for code review and...
See all answers
What is your primary use case for Fortify Application Defender?
We use the solution for fast code review. It is integrated into our DevOps pipeline.
See all answers
What do you like most about GitLab?
I find the features and version control history to be most valuable for our development workflow. These aspects provide us with a clear view of changes and help us manage requests efficiently.
See all answers
What is your experience regarding pricing and costs for GitLab?
The pricing and cost are on par with other tools and are neither too expensive nor cheap.
See all answers
What needs improvement with GitLab?
One significant feature we lack is the configuration that enforces code reviews, which simplifies the development life cycle. Unfortunately, this is available only at a higher license level than we...
See all answers
 

Comparisons

Checkmarx One vs Fortify Application Defender Logo
Checkmarx One vs Fortify Application Defender
Compared 22% of the time
SonarQube Server (formerly SonarQube) vs Fortify Application Defender Logo
SonarQube Server (formerly SonarQube) vs Fortify Application Defender
Compared 15% of the time
Coverity vs Fortify Application Defender Logo
Coverity vs Fortify Application Defender
Compared 14% of the time
Qualys Web Application Scanning vs Fortify Application Defender Logo
Qualys Web Application Scanning vs Fortify Application Defender
Compared 11% of the time
CAST Application Intelligence Platform vs Fortify Application Defender Logo
CAST Application Intelligence Platform vs Fortify Application Defender
Compared 10% of the time
More Fortify Application Defender Competitors
Microsoft Azure DevOps vs GitLab Logo
Microsoft Azure DevOps vs GitLab
Compared 24% of the time
GitHub CoPilot vs GitLab Logo
GitHub CoPilot vs GitLab
Compared 16% of the time
SonarQube Server (formerly SonarQube) vs GitLab Logo
SonarQube Server (formerly SonarQube) vs GitLab
Compared 6% of the time
TeamCity vs GitLab Logo
TeamCity vs GitLab
Compared 5% of the time
Tekton vs GitLab Logo
Tekton vs GitLab
Compared 5% of the time
More GitLab Competitors
 

Product Reports

Buyer's Guide
Application Security Tools
June 2025
Fortify Application Defender reportDownload Fortify Application Defender product report
Buyer's Guide
GitLab
June 2025
GitLab reportDownload GitLab product report
 

Also Known As

HPE Fortify Application Defender, Micro Focus Fortify Application Defender
Fuzzit
 

Overview

Micro Focus Security Fortify Application Defender is a runtime application self-protection (RASP) solution that helps you manage and mitigate risk from homegrown or third-party applications. It provides centralized visibility into application use and abuse while protecting from software vulnerability exploits and other violations in real time.

OpenText

GitLab is a complete DevOps platform that enables teams to collaborate and deliver software faster. 

It provides a single application for the entire DevOps lifecycle, from planning and development to testing, deployment, and monitoring. 

With GitLab, teams can streamline their workflows, automate processes, and improve productivity.

GitLab
 

Sample Customers

ServiceMaster, Saltworks, SAP
1. NASA  2. IBM  3. Sony  4. Alibaba  5. CERN  6. Siemens  7. Volkswagen  8. ING  9. Ticketmaster  10. SpaceX  11. Adobe  12. Intuit  13. Autodesk  14. Rakuten  15. Unity Technologies  16. Pandora  17. Electronic Arts  18. Nordstrom  19. Verizon  20. Comcast  21. Philips  22. Deutsche Telekom  23. Orange  24. Fujitsu  25. Ericsson  26. Nokia  27. General Electric  28. Cisco  29. Accenture  30. Deloitte  31. PwC  32. KPMG
Buyer's Guide
Fortify Application Defender vs. GitLab
June 2025
Free Report: Fortify Application Defender vs. GitLab
Find out what your peers are saying about Fortify Application Defender vs. GitLab and other solutions. Updated: June 2025.
DOWNLOAD NOW
860,592 professionals have used our research since 2012.
See our Fortify Application Defender vs. GitLab report.
See our list of best Application Security Tools vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.