Try our new research platform with insights from 80,000+ expert users

Fortify Software Security Center vs GitGuardian Platform comparison

OpenText and GitGuardian are both solutions in the Static Application Security Testing (SAST) category. OpenText is ranked #28 with an average rating of 8.0, while GitGuardian is ranked #4 with an average rating of 8.8. OpenText holds a 0.5% mindshare in SAST, compared to GitGuardian’s 0.7% mindshare. Additionally, 100% of OpenText users are willing to recommend the solution, compared to 100% of GitGuardian users who would recommend it.
Fortify Software Security C...
Read 7 Fortify Software Security Center reviews
  • 593 Views
  • 534 Comparison Views
100% willing to recommend
GitGuardian Platform
Read 32 GitGuardian Platform reviews
  • 4,006 Views
  • 1,843 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jul 28, 2025

Fortify Software Security Center and GitGuardian Platform compete in the software security category. GitGuardian leads with advanced features tailored for fast-paced development environments despite Fortify's favorable pricing.

Features: Fortify Software Security Center specializes in code scanning, vulnerability detection, and integration into the CI/CD process for comprehensive assessments. GitGuardian Platform emphasizes secret detection, immediate alerts for leaked secrets, and a "Dev in the loop" feature for quick remediation. It also supports end-to-end workflow management for secret resolution.

Room for Improvement: Fortify Software Security Center could enhance its cloud deployment options, flexibility in rule pack updates, and streamlined reporting processes. GitGuardian Platform may need to reduce false positives, expand its integration with various development tools, and improve the granularity of filtering capabilities for better management of alerts.

Ease of Deployment and Customer Service: Fortify Software Security Center favors enterprises with its on-premise deployment, offering greater control and security. GitGuardian Platform enables agile integration with its cloud-based deployment. It excels with quick onboarding and developer-focused solutions, providing a responsive support system that aids speedy issue resolution.

Pricing and ROI: Fortify Software Security Center is a cost-effective choice with lower initial costs appealing to budget-conscious enterprises. It aligns with traditional resource allocation strategies ensuring a balanced ROI. GitGuardian Platform requires a higher initial investment but promises greater ROI through specialized features enhancing security efficiency and long-term value.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Fortify Software Security Center vs. GitGuardian Platform Report (Updated: September 2025).
Buyer's Guide
Fortify Software Security Center vs. GitGuardian Platform
September 2025
Download the complete report
Helped 869,566 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortify Software Security C...
Ranking in Static Application Security Testing (SAST)
28th
Average Rating
7.8
Reviews Sentiment
5.7
Number of Reviews
7
Ranking in other categories
No ranking in other categories
GitGuardian Platform
Ranking in Static Application Security Testing (SAST)
4th
Average Rating
8.8
Reviews Sentiment
7.3
Number of Reviews
32
Ranking in other categories
Application Security Tools (9th), Data Loss Prevention (DLP) (6th), Threat Intelligence Platforms (TIP) (5th), Software Supply Chain Security (6th), DevSecOps (3rd), Non-Human Identity Management (NHIM) (3rd)
 

Mindshare comparison

As of October 2025, in the Static Application Security Testing (SAST) category, the mindshare of Fortify Software Security Center is 0.5%, up from 0.3% compared to the previous year. The mindshare of GitGuardian Platform is 0.7%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST) Market Share Distribution
ProductMarket Share (%)
GitGuardian Platform0.7%
Fortify Software Security Center0.5%
Other98.8%
Static Application Security Testing (SAST)
 

Featured Reviews

Jonathan Steyn - PeerSpot reviewer
Comprehensive vulnerability analysis and customization features with decent pricing
Software Security Center is highly customizable and helps me test all vulnerability data against the latest conventions like OWASP Top Ten, CVE Top twenty-five, and several other legal compliances. WebInspect supports a number of APIs and web endpoints. I find its feature of macro recording allows for testing vulnerabilities during multi-factor authentication sessions very valuable. I appreciate the ability to further analyze data with tools like Audit Workbench.
Read full review
Ney Roman - PeerSpot reviewer
Facilitates efficient secret management and improves development processes
Regarding the exceptions in GitGuardian Platform, we know that within the platform we have a way to accept a path or a directory from a repository, but it is not that visible at the very beginning. You have to figure out where to search for it, and once you have it, it is really good, but it is not that visible at the beginning. This should be made more exposed. The documentation could be better because it was not that comprehensively documented. When we started working with GitGuardian Platform, it was difficult to find some specific use cases, and we were not aware of that. It might have improved now, but at that time, it was not something we would recommend.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Software Security Center is highly customizable and helps me test all vulnerability data against the latest conventions like OWASP Top Ten, CVE Top twenty-five, and several other legal compliances."
"The overall rating for this tool is ten out of ten."
"The reporting is very useful because you can always view an entire list of the issues that you have."
"This is a stable solution at the end of the day."
"Fortify Analytics' AI function helps scan and provides more detailed explanations and recommendations about vulnerabilities."
"You can easily download the tool's rule packs and update them."
"I like the explanation of issues provided by Fortify Software Security Center."
"The stability of the GitGuardian Platform is excellent."
"Presently, we find the pre-commit hooks more useful."
"When they give you a description of what happened, it's really easy to follow and to retest. And the ability to retest is something that you don't have in other solutions. If a secret was detected, you can retest if it is still there. It will show you if it is in the history."
"My impression of the GitGuardian Platform's capability to detect secrets in real time has been really amazing, because it lets us protect or block the pipelines in which we deploy new applications so we can acknowledge when a secret is hardcoded in a repository, or when we have already hardcoded secrets within templates in our repos."
"The most valuable feature is the general incident reporting system."
"It's also worth mentioning that GitGuardian is unique because they have a free tier that we've been using for the first twelve months. It provides full functionality for smaller teams. We're a smaller company and have never changed in size, but we got to the point where we felt the service brought us value, and we want to pay for it. We also wanted an SLA for technical support and whatnot, so we switched to a paid plan. Without that, they had a super-generous, free tier, and I was immensely impressed with it."
"GitGuardian public leak detection significantly enhances our organization's data security by continuously monitoring public repositories."
"GitGuardian Platform has helped save significant time for the security team by eliminating the need to seek out development teams and work with them on exposed secrets, as much of this is now handled proactively."
More GitGuardian Platform pros
 

Cons

"We are having issues with false positives that need to be resolved."
"This solution is difficult to implement, and it should be made more comfortable for the end-users."
"The product's overlap feature is restrictive and requires more customization efforts, which can be expensive."
"I am not satisfied with the percentage of false positives, which is around eighteen percent."
"Improvements needed for Software Security Center include better aggregation views of datasets."
"Improvements needed for Software Security Center include better aggregation views of datasets."
"Fortify Software Security Center's setup is really painful."
"It could be easier. They have a CLI tool that engineers can run on their laptops, but getting engineers to install the tool is a manual process. I would like to see them have it integrated into one of those developer tools, e.g., VS Code or JetBrains, so developers don't have to think about it."
"I would like to see improvement in some of the user interface features... When one secret is leaked in multiple files or multiple repositories, it will appear on the dashboard. But when you click on that secret, all the occurrences will appear on the page. It would be better to have one secret per occurrence, directly, so that we don't have to click to get to the list of all the occurrences."
"It took us a while to get new patterns introduced into the pattern reporting process."
"The analytics in GitGuardian Platform have a significant opportunity to better reflect the value provided to security teams and demonstrate actual activity occurring."
"The documentation could be improved because when we started working with GitGuardian, it was difficult to find specific use cases."
"For some repositories, there are a lot of incidents. For example, one repository says 255 occurrences, so I assume these are 255 alerts and nobody is doing anything about them. These could be false positives. However, I cannot assess it correctly, because I haven't been closing these false positives myself. From the dashboard, I can see that for some of the repositories, there have been a lot of closing of these occurrences, so I would assume there are a lot of false positives. A ballpark estimate would be 60% being false positives. One of the arguments from the developers against this tool is the number of false positives."
"GitGuardian could have more detailed information on what software engineers can do. It only provides some highly generic feedback when a secret is detected. They should have outside documentation. We send this to our software engineers, who are still doing the commits. It's the wrong way to work, but they are accustomed to doing it this way. When they go into that ticket, they see a few instructions that might be confusing. If I see a leaked secret committed two years ago, it's not enough to undo that commit. I need to go in there, change all my code to utilize GitHub secrets, and go on AWS to validate my key."
"GitGuardian encompasses many secrets that companies might have, but we are a Microsoft-only organization, so there are some limitations there in terms of their honey tokens. I'd like for it to not be limited to Amazon-based tokens. It would be nice to see a broader set of providers that you could pick from."
More GitGuardian Platform cons
 

Pricing and Cost Advice

"As a Fortify partner company providing technical support, I find the product expensive in our country, where local, inexpensive products are available."
"The solution is priced fair."
"This is a costly solution that could be cheaper."
"It's a little bit expensive."
"We have seen a return on investment. The amount of time that we would have spent manually doing this definitely outpaces the cost of GitGuardian. It is saving us about $35,000 a year, so I would say the ROI is about $20,000 a year."
"It's competitively priced compared to others. Overall, the secret detection sector is expensive, but we are very happy with the value we get."
"It's fairly priced, as it performs a lot of analysis and is a valuable tool."
"The internal side is cheap per user. It is annual pricing based on the number of users."
"We don't have a huge number of users, but its yearly rate was quite reasonable when compared to other per-seat solutions that we looked at... Having a free plan for a small number of users was really great. If you're a small team, I don't see why you wouldn't want to get started with it."
"With GitGuardian, we didn't need any middlemen."
"The pricing and licensing are fair. It isn't very expensive and it's good value."
More GitGuardian Platform pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
See recommendations
869,566 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
20%
Financial Services Firm
15%
Computer Software Company
10%
Government
8%
Government
19%
Computer Software Company
18%
Financial Services Firm
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business3
Midsize Enterprise1
Large Enterprise3
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise9
Large Enterprise13
 

Questions from the Community

What is your experience regarding pricing and costs for Micro Focus Software Security Center?
In the beginning, it was difficult for me to verify that our usage of Fortify Software Security Center corresponded to the license and criteria. Now, we have negotiated a number of details to respe...
See all answers
What needs improvement with Micro Focus Software Security Center?
I would like the false positive issue to diminish. I have experienced a lot of false positives, but I think this is due to using an older version. I hope the new version will resolve my problem.
See all answers
What is your primary use case for Micro Focus Software Security Center?
They use it to scan applications and fix bugs, which are my customers' main use cases for Fortify Software Security Center. As a reseller, I sell this product to provide application security becaus...
See all answers
What do you like most about GitGuardian Internal Monitoring ?
It's also worth mentioning that GitGuardian is unique because they have a free tier that we've been using for the first twelve months. It provides full functionality for smaller teams. We're a smal...
See all answers
What is your experience regarding pricing and costs for GitGuardian Internal Monitoring ?
It's competitively priced compared to others. Overall, the secret detection sector is expensive, but we are happy with the value we get.
See all answers
What needs improvement with GitGuardian Internal Monitoring ?
GitGuardian Platform does what it is designed to do, but it still generates many false positives. We utilize the automated playbooks from GitGuardian Platform, and we are enhancing them. We will pr...
See all answers
 

Comparisons

OpenText Core Application Security vs Fortify Software Security Center Logo
OpenText Core Application Security vs Fortify Software Security Center
Compared 41% of the time
Acunetix vs Fortify Software Security Center Logo
Acunetix vs Fortify Software Security Center
Compared 32% of the time
Semgrep vs Fortify Software Security Center Logo
Semgrep vs Fortify Software Security Center
Compared 15% of the time
GitLab vs Fortify Software Security Center Logo
GitLab vs Fortify Software Security Center
Compared 12% of the time
More Fortify Software Security Center Competitors
Snyk vs GitGuardian Platform Logo
Snyk vs GitGuardian Platform
Compared 18% of the time
SonarQube Server (formerly SonarQube) vs GitGuardian Platform Logo
SonarQube Server (formerly SonarQube) vs GitGuardian Platform
Compared 16% of the time
SafeGuard Cyber Security vs GitGuardian Platform Logo
SafeGuard Cyber Security vs GitGuardian Platform
Compared 14% of the time
Microsoft Purview Data Loss Prevention vs GitGuardian Platform Logo
Microsoft Purview Data Loss Prevention vs GitGuardian Platform
Compared 12% of the time
GitHub Advanced Security vs GitGuardian Platform Logo
GitHub Advanced Security vs GitGuardian Platform
Compared 11% of the time
More GitGuardian Platform Competitors
 

Product Reports

Buyer's Guide
Static Application Security Testing (SAST)
September 2025
Fortify Software Security Center reportDownload Fortify Software Security Center product report
Buyer's Guide
GitGuardian Platform
September 2025
GitGuardian Platform reportDownload GitGuardian Platform product report
 

Also Known As

Micro Focus Software Security Center, Application Security Center, HPE Application Security Center, WebInspect
GitGuardian Internal Monitoring, GitGuardian Public Monitoring
 

Overview

Software Security Center enables management, development, and security teams to work together to triage, track, validate, automate, and manage software security activities.
OpenText

GitGuardian is an advanced secrets security platform that strengthens Non-Human Identity security and ensures compliance with industry standards by detecting and managing secrets in development environments.

GitGuardian integrates Secrets Security and Secrets Observability, facilitating the detection of compromised secrets and managing legitimate secrets' lifecycle. Supporting over 450 types of secrets, the platform offers public monitoring for leaked data and employs honeytokens as an added defense. Trusted by over 600,000 developers, organizations such as Snowflake and ING rely on GitGuardian for robust secrets protection.

What features define GitGuardian?

  • Internal Monitoring: Tracks confidential data like IDs and tokens.
  • Dev in the Loop: Rapid alerts for leaks.
  • Detection Capabilities: High accuracy with a low false-positive rate.
  • Integrations: Supports seamless integration with multiple platforms.
  • Customized Detectors: Offers tailored security solutions.
  • Multi-Vault Support: Facilitates efficient issue management.

What are the key benefits when evaluating GitGuardian?

  • Comprehensive Detection: Identifies AWS keys and other hardcoded secrets.
  • Efficient Remediation: Swiftly resolves issues.
  • Improved Security: Prevents accidental leaks of sensitive data.
  • Seamless Integration: Compatible with platforms like GitHub and Azure DevOps.

In sectors like healthcare and telecommunications, GitGuardian is implemented for detecting and managing the exposure of sensitive information in code repositories. Teams benefit from its ability to integrate with platforms such as GitHub, allowing for immediate alerts and efficient remediation of security risks, enhancing application security by safeguarding operational environments.

GitGuardian
 

Sample Customers

Neosecure, Acxiom, Skandinavisk Data Center A/S, Parkeon
Widely adopted by developer communities, GitGuardian is used by over 600 thousand developers and leading companies, including Snowflake, Orange, Iress, Mirantis, Maven Wave, ING, BASF, and Bouygues Telecom.
Buyer's Guide
Fortify Software Security Center vs. GitGuardian Platform
September 2025
Free Report: Fortify Software Security Center vs. GitGuardian Platform
Find out what your peers are saying about Fortify Software Security Center vs. GitGuardian Platform and other solutions. Updated: September 2025.
DOWNLOAD NOW
869,566 professionals have used our research since 2012.
See our Fortify Software Security Center vs. GitGuardian Platform report.
See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.