We changed our name from IT Central Station: Here's why

Fortify WebInspect vs Klocwork comparison

Cancel
You must select at least 2 products to compare!
Fortify WebInspect Logo
8,054 views|5,383 comparisons
Klocwork Logo
6,606 views|4,387 comparisons
Featured Review
Find out what your peers are saying about Fortify WebInspect vs. Klocwork and other solutions. Updated: January 2022.
566,121 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The user interface is ok and it is very simple to use.""The solution is easy to use.""Reporting, centralized dashboard, and bird's eye view of all vulnerabilities are the most valuable features.""The solution is able to detect a wide range of vulnerabilities. It's better at it than other products.""The most valuable feature is the static analysis.""The accuracy of its scans is great.""It is scalable and very easy to use."

More Fortify WebInspect Pros →

"Technical support is quite good.""The most valuable feature is the Incremental analysis."

More Klocwork Pros →

Cons
"The scanner could be better.""The installation could be a bit easier. Usually it's simple to use, but the installation is painful and a bit laborious and complex.""Our biggest complaint about this product is that it freezes up, and literally doesn't work for us.""It requires improvement in terms of scanning. The application scan heavily utilizes the resources of an on-premise server. 32 GB RAM is very high for an enterprise web application.""It took us between eight and ten hours to scan an entire site, which is somewhat slow and something that I think can be improved.""Lately, we've seen more false negatives.""Creating reports is very slow and it is something that should be improved."

More Fortify WebInspect Cons →

"Every update that we receive requires of us a lengthy and involved process.""I believe it should support more languages, such as Python and JavaScript."

More Klocwork Cons →

Pricing and Cost Advice
  • "The pricing is not clear and while it is not high, it is difficult to understand."
  • "Our licensing is such that you can only run one scan at a time, which is inconvenient."
  • "Its price is almost similar to the price of AppScan. Both of them are very costly. Its price could be reduced because it can be very costly for unlimited IT scans, etc. I'm not sure, but it can go up to $40,000 to $50,000 or more than that."
  • More Fortify WebInspect Pricing and Cost Advice →

  • "When it comes to licensing, the solution has two packages, one for a fixed and the other for a floating server, with the former being more cost effective than the latter."
  • "Licensing fees are paid annually, but they also have a perpetual license."
  • More Klocwork Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Application Security Testing (AST) solutions are best for your needs.
    566,121 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: 
    I would like to recommend Checkmarx. With Checkmarx, you are able to have an all in one solution for SAST and SCA as well. Veracode is only a cloud solution. Hope this helps.
    Top Answer: 
    Reporting, centralized dashboard, and bird's eye view of all vulnerabilities are the most valuable features.
    Top Answer: 
    Its price is almost similar to the price of AppScan. Both of them are very costly. Its price could be reduced because it can be very costly for unlimited IT scans, etc. I'm not sure, but it can go up… more »
    Ask a question

    Earn 20 points

    Ranking
    Views
    8,054
    Comparisons
    5,383
    Reviews
    6
    Average Words per Review
    421
    Rating
    7.0
    Views
    6,606
    Comparisons
    4,387
    Reviews
    0
    Average Words per Review
    369
    Rating
    N/A
    Comparisons
    Also Known As
    Micro Focus WebInspect, WebInspect
    Learn More
    Overview
    Most enterprises rely heavily on the Web to conduct their normal operations, whether providing services, a mechanism for retail sales, or a host of other functions. Yet, most still struggle with efficiently managing their application security risks. For one thing, they need solutions of scale that can be used to manage thousands of active sites and assessments while also tracking discovered vulnerabilities, retesting procedures, and more. They need to perform repeated security tests to address compliance with regulations, legislation, and internal security policies and also see how their risk posture has changed over time. The enterprises have to protect their data, brand, and bottom line from the harsh impacts of what successful vulnerability exploitation could bring. Micro Focus WebInspect Enterprise enables organizations to solve these security problems quickly, efficiently, and intelligently.

    Klocwork detects security, safety, and reliability issues in real-time by using this static code analysis toolkit that works alongside developers, finding issues as early as possible, and integrates with teams, supporting continuous integration and actionable reporting.

    Offer
    Learn more about Fortify WebInspect
    Learn more about Klocwork
    Sample Customers
    Aaron's
    ACCESS Co Ltd, Risk-AI, Winbond Electronics, Bristol-Myers Squibb Pharmaceutical Research Institute, University of Southern California, Alebra Technologies, SIMULIA, Risk Management Solutions, Brigham Young University, SRD, HRL
    Top Industries
    VISITORS READING REVIEWS
    Computer Software Company33%
    Comms Service Provider15%
    Government12%
    Financial Services Firm9%
    VISITORS READING REVIEWS
    Computer Software Company27%
    Manufacturing Company21%
    Comms Service Provider14%
    Government6%
    Company Size
    REVIEWERS
    Small Business18%
    Midsize Enterprise9%
    Large Enterprise73%
    REVIEWERS
    Small Business36%
    Midsize Enterprise9%
    Large Enterprise55%
    Find out what your peers are saying about Fortify WebInspect vs. Klocwork and other solutions. Updated: January 2022.
    566,121 professionals have used our research since 2012.

    Fortify WebInspect is ranked 10th in Application Security Testing (AST) with 7 reviews while Klocwork is ranked 21st in Application Security Testing (AST) with 2 reviews. Fortify WebInspect is rated 7.0, while Klocwork is rated 9.0. The top reviewer of Fortify WebInspect writes "Good reporting and vulnerability management, but needs better performance and resource utilization". On the other hand, the top reviewer of Klocwork writes "Mature, saves time in finding defects, and is simple to maintain". Fortify WebInspect is most compared with PortSwigger Burp Suite Professional, Micro Focus Fortify on Demand, OWASP Zap, Veracode and HCL AppScan, whereas Klocwork is most compared with SonarQube, Coverity, Veracode, Checkmarx and Polyspace Code Prover. See our Fortify WebInspect vs. Klocwork report.

    See our list of best Application Security Testing (AST) vendors.

    We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.