Try our new research platform with insights from 80,000+ expert users

Fortify Software Security Center vs Synopsys Software Risk Manager comparison

OpenText and Black Duck are both solutions in the Static Application Security Testing (SAST) category. OpenText is ranked #30 with an average rating of 8.0, while Black Duck is ranked #35. OpenText holds a 0.4% mindshare in SAST, compared to Black Duck’s 0.4% mindshare. Additionally, 100% of OpenText users are willing to recommend the solution.
Fortify Software Security C...
Read 6 Fortify Software Security Center reviews
  • 550 Views
  • 490 Comparison Views
100% willing to recommend
Synopsys Software Risk Manager
Read 1 Synopsys Software Risk Manager review
  • 664 Views
  • 578 Comparison Views
0% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Fortify Software Security Center and Synopsys Software Risk Manager based on real PeerSpot user reviews.

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Static Application Security Testing (SAST) Report (Updated: July 2025).
Buyer's Guide
Static Application Security Testing (SAST)
July 2025
Download the complete report
Helped 862,543 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortify Software Security C...
Ranking in Static Application Security Testing (SAST)
30th
Average Rating
7.8
Reviews Sentiment
8.3
Number of Reviews
6
Ranking in other categories
No ranking in other categories
Synopsys Software Risk Manager
Ranking in Static Application Security Testing (SAST)
35th
Average Rating
0.0
Reviews Sentiment
7.0
Number of Reviews
1
Ranking in other categories
Software Composition Analysis (SCA) (27th), Application Security Posture Management (ASPM) (11th)
 

Mindshare comparison

As of July 2025, in the Static Application Security Testing (SAST) category, the mindshare of Fortify Software Security Center is 0.4%, up from 0.2% compared to the previous year. The mindshare of Synopsys Software Risk Manager is 0.4%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST)
 

Featured Reviews

Jonathan Steyn - PeerSpot reviewer
Comprehensive vulnerability analysis and customization features with decent pricing
Software Security Center is highly customizable and helps me test all vulnerability data against the latest conventions like OWASP Top Ten, CVE Top twenty-five, and several other legal compliances. WebInspect supports a number of APIs and web endpoints. I find its feature of macro recording allows for testing vulnerabilities during multi-factor authentication sessions very valuable. I appreciate the ability to further analyze data with tools like Audit Workbench.
Read full review
Saravanan_Radhakrishnan - PeerSpot reviewer
Facilitates continuous assessment of applications, covering both static and dynamic security aspects
Code Dx lacks one aspect, the dynamic security part, known as DAST. It's not an on-premise solution; it's in the cloud now. There are compliance standards and data standards where the customer might need to have the data on-premises for dynamic security testing. So that is one shortfall. An area of improvement could be developing an on-premise DAST solution. The current one is a complete cloud-based solution, and that can be one of the areas of improvement.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Fortify Analytics' AI function helps scan and provides more detailed explanations and recommendations about vulnerabilities."
"Software Security Center is highly customizable and helps me test all vulnerability data against the latest conventions like OWASP Top Ten, CVE Top twenty-five, and several other legal compliances."
"The overall rating for this tool is ten out of ten."
"You can easily download the tool's rule packs and update them."
"I like the explanation of issues provided by Fortify Software Security Center."
"The reporting is very useful because you can always view an entire list of the issues that you have."
"This is a stable solution at the end of the day."
"The customers were looking for something around static security and dynamic security, and in all those areas, they were looking for an industry leader with a proven solution. Synopsys is a Gartner leader, so I position this particular technology for the technical pre-sales part of it."
 

Cons

"I am not satisfied with the percentage of false positives, which is around eighteen percent."
"The product's overlap feature is restrictive and requires more customization efforts, which can be expensive."
"Improvements needed for Software Security Center include better aggregation views of datasets."
"This solution is difficult to implement, and it should be made more comfortable for the end-users."
"Fortify Software Security Center's setup is really painful."
"We are having issues with false positives that need to be resolved."
"Improvements needed for Software Security Center include better aggregation views of datasets."
"The initial setup is a bit challenging because things are not easy. It needs a lot of technology adaptability plus the customer's environment-specific use cases."
 

Pricing and Cost Advice

"As a Fortify partner company providing technical support, I find the product expensive in our country, where local, inexpensive products are available."
"This is a costly solution that could be cheaper."
"The solution is priced fair."
"It is more of an enterprise solution for budget-conscious customers. So, it's moderately priced. It's not for everybody."
report
See which vendors are best for you
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
See recommendations
862,543 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
16%
Financial Services Firm
15%
Computer Software Company
11%
Government
7%
Financial Services Firm
19%
Manufacturing Company
15%
Computer Software Company
11%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What do you like most about Micro Focus Software Security Center?
You can easily download the tool's rule packs and update them.
See all answers
What is your experience regarding pricing and costs for Micro Focus Software Security Center?
In the beginning, it was difficult for me to verify that our usage of Fortify Software Security Center corresponded to the license and criteria. Now, we have negotiated a number of details to respe...
See all answers
What needs improvement with Micro Focus Software Security Center?
I would like the false positive issue to diminish. I have experienced a lot of false positives, but I think this is due to using an older version. I hope the new version will resolve my problem.
See all answers
What do you like most about Synopsys Code Dx?
The customers were looking for something around static security and dynamic security, and in all those areas, they were looking for an industry leader with a proven solution. Synopsys is a Gartne...
See all answers
What is your experience regarding pricing and costs for Synopsys Code Dx?
I would rate the pricing model an eight out of ten, where one is low and ten is high. Because it is more of an enterprise solution for budget-conscious customers. So, it's moderately priced. It's n...
See all answers
What needs improvement with Synopsys Code Dx?
Code Dx lacks one aspect, the dynamic security part, known as DAST. It's not an on-premise solution; it's in the cloud now. There are compliance standards and data standards where the customer migh...
See all answers
 

Comparisons

OpenText Core Application Security vs Fortify Software Security Center Logo
OpenText Core Application Security vs Fortify Software Security Center
Compared 49% of the time
Acunetix vs Fortify Software Security Center Logo
Acunetix vs Fortify Software Security Center
Compared 39% of the time
HCL AppScan vs Fortify Software Security Center Logo
HCL AppScan vs Fortify Software Security Center
Compared 12% of the time
More Fortify Software Security Center Competitors
Veracode vs Synopsys Software Risk Manager Logo
Veracode vs Synopsys Software Risk Manager
Compared 51% of the time
Checkmarx One vs Synopsys Software Risk Manager Logo
Checkmarx One vs Synopsys Software Risk Manager
Compared 18% of the time
SonarQube Server (formerly SonarQube) vs Synopsys Software Risk Manager Logo
SonarQube Server (formerly SonarQube) vs Synopsys Software Risk Manager
Compared 18% of the time
Acunetix vs Synopsys Software Risk Manager Logo
Acunetix vs Synopsys Software Risk Manager
Compared 13% of the time
More Synopsys Software Risk Manager Competitors
 

Product Reports

Buyer's Guide
Static Application Security Testing (SAST)
July 2025
Fortify Software Security Center reportDownload Fortify Software Security Center product report
Buyer's Guide
Application Security Posture Management (ASPM)
July 2025
Synopsys Software Risk Manager reportDownload Synopsys Software Risk Manager product report
 

Also Known As

Micro Focus Software Security Center, Application Security Center, HPE Application Security Center, WebInspect
Code Dx
 

Overview

Software Security Center enables management, development, and security teams to work together to triage, track, validate, automate, and manage software security activities.
OpenText

Software Risk Manager is an application security posture management (ASPM) solution that enables security and development teams to manage their application security programs at enterprise scale. By unifying policy, test orchestration, correlation, prioritization, and built-in static application security testing (SAST) and software composition analysis (SCA) engines, organizations can streamline their security activities across the enterprise.

Black Duck
 

Sample Customers

Neosecure, Acxiom, Skandinavisk Data Center A/S, Parkeon
Discover why companies like: CGI said, "Synopsys and Software Risk Manager have provided the results we’re looking for".
Buyer's Guide
Static Application Security Testing (SAST)
July 2025
Download Free Report
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST). Updated: July 2025.
DOWNLOAD NOW
862,543 professionals have used our research since 2012.
See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.