OpenText Core Application Security and Fortify Application Defender compete in the application security management category. Fortify seems to have the upper hand due to its comprehensive scanning capabilities and broader recognition in complex environments.
Features: Fortify Application Defender offers comprehensive scanning capabilities, including static and dynamic scans. It is known for its integration with CI/CD pipelines and detecting vulnerabilities in open-source libraries. OpenText Core is valued for its automated real-time data analysis, static code reviews, and correlation with WebInspect for targeted rule application.
Room for Improvement: Fortify has challenges with false positives, lengthy scan times, and limited support for some newer languages. Users seek better tool integrations and reduced false positives. OpenText Core struggles with outdated compiler support, impacting legacy systems analysis. Enhanced language support and better tool integration would improve its efficiency.
Ease of Deployment and Customer Service: OpenText Core provides on-premises and hybrid cloud deployment options, accompanied by good technical support, though response times can vary. Fortify also offers on-premises and cloud deployments. It generally receives praise for technical support but sometimes encounters delays in resolution. Both report satisfactory customer service, but Fortify's integration issues might necessitate extra support.
Pricing and ROI: OpenText Core is considered cost-effective with flexible subscription-based pricing aligned with enterprise needs. Despite higher premiums, they correlate with the breadth of its features. Fortify's pricing is regarded as high and complex, justified by its extensive feature set, leading to reduced security incidents. Both solutions ultimately offer significant ROI in mitigating security risks.
Micro Focus Security Fortify Application Defender is a runtime application self-protection (RASP) solution that helps you manage and mitigate risk from homegrown or third-party applications. It provides centralized visibility into application use and abuse while protecting from software vulnerability exploits and other violations in real time.
OpenText Core Application Security offers robust features like static and dynamic scanning, real-time vulnerability tracking, and seamless integration with development platforms, designed to enhance code security and reduce operational costs.
OpenText Core Application Security is a cloud-based, on-demand service providing accurate and deep scanning capabilities with detailed reporting. Its integrations with development platforms ensure an enhanced security layer in the development lifecycle, benefiting users by lowering operational costs and facilitating efficient remediation. The platform addresses needs for intuitive interfaces, API support, and comprehensive vulnerability assessments, helping improve code security and accelerate time-to-market. Despite its strengths, challenges exist around false positives, report clarity, and language support, alongside confusing pricing and package options. Enhancements are sought in areas like CI/CD pipeline configuration, report visualization, scan times, and integration with third-party tools such as GitLab, container scanning, and software composition analysis.
What features define OpenText Core Application Security?Industries like mobile applications, e-commerce, and banking leverage OpenText Core Application Security for its ability to identify vulnerabilities such as SQL injections. Integrating seamlessly with DevSecOps and security auditing processes, this tool supports developers in writing safer code, ensuring secure application deployment and enhancing software assurance.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
