Try our new research platform with insights from 80,000+ expert users

FortiWeb Web Application Firewall (WAF) vs Sucuri comparison

Fortinet and Sucuri Security are both solutions in the Web Application Firewall (WAF) category. Fortinet is ranked #16 with an average rating of 8.2, while Sucuri Security is ranked #24 with an average rating of 8.0. Fortinet holds a 1.0% mindshare in WAF, compared to Sucuri Security’s 0.7% mindshare. Additionally, 91% of Fortinet users are willing to recommend the solution, compared to 100% of Sucuri Security users who would recommend it.
FortiWeb Web Application Fi...
Read 24 FortiWeb Web Application Firewall (WAF) reviews
  • 491 Views
  • 272 Comparison Views
91% willing to recommend
Sucuri
Read 6 Sucuri reviews
  • 683 Views
  • 269 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jan 1, 2025

Sucuri and FortiWeb Web Application Firewall are web application security solutions. FortiWeb is seen as more robust due to its advanced features, which some find worth the higher cost.

Features: Sucuri is noted for ease of use, malware removal, and targeted website protection. FortiWeb features advanced threat detection, data leak prevention, and custom rule creation, making it suitable for complex security needs.

Room for Improvement: Sucuri could enhance integration capabilities with more platforms, improve detection algorithms, and expand reporting features. FortiWeb might benefit from streamlining its deployment process, enhancing customer service accessibility for smaller businesses, and simplifying its management interface for non-expert users.

Ease of Deployment and Customer Service: Sucuri's deployment is straightforward and complemented by responsive customer service. FortiWeb, despite its sophisticated deployment model, can be complex to implement and its customer service, while efficient, may be less accessible to smaller businesses.

Pricing and ROI: Sucuri is cost-effective, focusing on good ROI through comprehensive protection. FortiWeb, although higher priced, offers substantial returns through advanced threat management, justifying the investment for extensive security needs.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed FortiWeb Web Application Firewall (WAF) vs. Sucuri Report (Updated: June 2025).
Buyer's Guide
FortiWeb Web Application Firewall (WAF) vs. Sucuri
June 2025
Download the complete report
Helped 859,129 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

FortiWeb Web Application Fi...
Ranking in Web Application Firewall (WAF)
16th
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
24
Ranking in other categories
No ranking in other categories
Sucuri
Ranking in Web Application Firewall (WAF)
24th
Average Rating
8.4
Reviews Sentiment
7.5
Number of Reviews
6
Ranking in other categories
Distributed Denial-of-Service (DDoS) Protection (15th), Domain Name System (DNS) Security (13th)
 

Mindshare comparison

As of June 2025, in the Web Application Firewall (WAF) category, the mindshare of FortiWeb Web Application Firewall (WAF) is 1.0%, up from 0.3% compared to the previous year. The mindshare of Sucuri is 0.7%, down from 0.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Web Application Firewall (WAF)
 

Featured Reviews

Martin Ellmann - PeerSpot reviewer
Provides users with ease of policy configuration and good integration capabilities
The solution helps protect our company's web applications against common threats up to 99 percent. We feel very safe with the tool. Speaking about how the tool has effectively mitigated web security threats for an application, I would say that it is an application behind the web portal, so there are about a hundred or thousand people who can access a website. If it is a sensitive application, and we have to watch every access to it to make it really safe, that is the reason why we need WAF on the application. My company doesn't use AI with the tool. I recommend the product to others. I would say that others need to have it if they have a shopping website or something similar. I know it is hard to sell because we find it quite hard whenever my company tries to do so. The solution offers 100 percent integration with other Fortinet security products. The ease of policy configuration in the tool is okay. I rate the tool a nine to ten out of ten.
Read full review
Akshit Malik - PeerSpot reviewer
Provides website security, safeguarding against various threats and effective protection against DDoS attacks
The initial setup is moderate because it's neither too easy nor too hard. Sucuri provides us with many ways to set up our site, handle the routing, and perform the necessary configurations. It's deployed on the cloud. We used the managed service of Sucuri and then routed all the requests from Sucuri to our AWS platform.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The features of FortiWeb Web Application Firewall (WAF) that have proven most effective in protecting web applications include web filtering, DDoS protection, geo-location blocking, and blocking SQL injection attacks."
"The tool secures our critical applications, especially the mobile money application, which is often targeted by attacks. The solution provides rapid protection and has proven reliable against various threats."
"The machine learning on FortiWeb WAF is valuable."
"The platform's stability is good."
"The product's initial setup phase was easy."
"The most valuable features of the solution are SD-WAN, filtration, web filter, application filter, and IPS."
"FortiWeb Web Application Firewall blocks attacks from application layers and provides protection."
"FortiWeb identified potential DDoS attacks and suspicious domain activity, showcasing the value of its machine-learning capabilities."
More FortiWeb Web Application Firewall (WAF) pros
"I use it as a WAF, which is basically a web firewall to monitor and block traffic to our web server."
"The initial setup was straightforward. Straight forward because the plugin can simply be installed and then it does its job. It's not complex, there is no learning curve. The online scan is simple, you put in the website address and the scan gives us a report on the browser itself. It's simple to use."
"It significantly eases the workload and streamlines the initial setup required to protect a website."
"The initial setup was very easy."
"The most valuable part is the analytics and visualization."
"Domain name scanning since it allows us to scan all our domain names and determine whether it has malware or if is reported as phishing."
 

Cons

"We have encountered issues with webhooks and management of FortiWeb Web Application Firewall's on-premise version."
"For users not familiar with Fortinet, it could be beneficial to provide more user-friendly analytics and reporting."
"There could be ADC offering as well."
"FortiWeb Web Application Firewall's signature database updates could be improved."
"It would be good if the solution integrated with other solutions, like SAP."
"We haven't faced any significant issues with FortiWeb Web Application Firewall. But they can lower the pricing, since it is a concern, especially in South Africa and the technical support, could be more responsive at times."
"FortiWeb WAF's tuning causes trouble. It's complicated. The solution needs to improve the signature feature as well."
"WAF needs more signatures on FortiWeb and updates the database continuously to protect against new attacks."
More FortiWeb Web Application Firewall (WAF) cons
"In terms of improvement, the cost factor is always there."
"Sucuri could provide help for specific security alerts in-line instead of requiring users to search for it in the help section."
"The main improvement I would like to see is support for .NET applications. If they could include this feature, I would include more sites in the protection."
"Confident score: Currently it does not have one and there are cases that most websites flagged are false-positives."
"I would rate this solution an eight out of ten. The reason is that we have found sometimes customers or Google saying that there is something wrong with the website but Sucuri says that the site is clean so we do have to look at the site manually which means that the Sucuri scan does not pick up anything and everything."
"It would greatly benefit customers if they implemented an online chat or messaging system for quicker assistance."
 

Pricing and Cost Advice

"The tool is really expensive."
"I would rate the pricing a four out of ten."
"The product provides very good prices to customers. The price is set well and offers great value for money."
"The licensing cost of the product is pretty high compared to other OEMs in the market."
"FortiWeb has a good presence because of its price."
"FortiWeb Web Application Firewall is not expensive."
"FortiWeb Web Application Firewall's pricing is suited for small or medium organizations."
"I rate the product price a four on a scale of one to ten, where one is a high price, and ten is a low price."
More FortiWeb Web Application Firewall (WAF) pricing and cost advice
"I’d simply say it’s really worth it."
"Sucuri offers different plans, both the standard plan and an advanced plan. So there are different plans to choose from."
"The ROI has been very good. Because of the solution, I have a tax break. The site developers were not always experienced people. We used to pay more for cleaning up the site when it was infected. Now, we have peace of mind knowing that the solution will clean up the site and that we won't have to go through the unnecessary process of restoring it from a backup. The protection on the WAF and the measures for backups have also prevented our site from going down."
"It stands out as a more cost-effective option compared to other cloud-based security services like Cloudflare or JetPass."
report
See which vendors are best for you
Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
See recommendations
859,129 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
13%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
8%
Educational Organization
23%
Computer Software Company
11%
Manufacturing Company
10%
Real Estate/Law Firm
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about FortiWeb Web Application Firewall (WAF)?
The most valuable features of the solution are SD-WAN, filtration, web filter, application filter, and IPS.
See all answers
What is your experience regarding pricing and costs for FortiWeb Web Application Firewall (WAF)?
The pricing for FortiWeb Web Application Firewall (WAF) is reasonable. That said, it depends on how many websites we need to protect. The licensing is based on the number of websites or individuall...
See all answers
What needs improvement with FortiWeb Web Application Firewall (WAF)?
Their AI technology is good. Overall, Fortinet is only good. The improvement needed is in their response time. In the past three to four years, whenever we called for support, they responded quickl...
See all answers
What do you like most about Sucuri?
The initial setup was very easy.
See all answers
What is your experience regarding pricing and costs for Sucuri?
The pricing is very reasonable. Sucuri offer other features as an add-on, such as backup, but these have an additional cost. We host the sites ourselves, so I don't take it because it was redundant.
See all answers
What needs improvement with Sucuri?
The main improvement I would like to see is support for .NET applications. If they could include this feature, I would include more sites in the protection. In future releases, perhaps Sucuri could...
See all answers
 

Comparisons

F5 Advanced WAF vs FortiWeb Web Application Firewall (WAF) Logo
F5 Advanced WAF vs FortiWeb Web Application Firewall (WAF)
Compared 34% of the time
Imperva Web Application Firewall vs FortiWeb Web Application Firewall (WAF) Logo
Imperva Web Application Firewall vs FortiWeb Web Application Firewall (WAF)
Compared 17% of the time
AWS WAF vs FortiWeb Web Application Firewall (WAF) Logo
AWS WAF vs FortiWeb Web Application Firewall (WAF)
Compared 15% of the time
Azure Front Door vs FortiWeb Web Application Firewall (WAF) Logo
Azure Front Door vs FortiWeb Web Application Firewall (WAF)
Compared 10% of the time
NGINX App Protect vs FortiWeb Web Application Firewall (WAF) Logo
NGINX App Protect vs FortiWeb Web Application Firewall (WAF)
Compared 10% of the time
More FortiWeb Web Application Firewall (WAF) Competitors
Cloudflare vs Sucuri Logo
Cloudflare vs Sucuri
Compared 47% of the time
SiteLock vs Sucuri Logo
SiteLock vs Sucuri
Compared 19% of the time
AWS WAF vs Sucuri Logo
AWS WAF vs Sucuri
Compared 15% of the time
Imperva DDoS vs Sucuri Logo
Imperva DDoS vs Sucuri
Compared 11% of the time
Cloudflare Web Application Firewall vs Sucuri Logo
Cloudflare Web Application Firewall vs Sucuri
Compared 8% of the time
More Sucuri Competitors
 

Product Reports

Buyer's Guide
FortiWeb Web Application Firewall (WAF)
June 2025
FortiWeb Web Application Firewall (WAF) reportDownload FortiWeb Web Application Firewall (WAF) product report
Buyer's Guide
Sucuri
May 2025
Sucuri reportDownload Sucuri product report
 

Overview

FortiWeb Web Application Firewall uses machine learning to reduce false positives, detects zero-day threats, and blocks DDoS attacks. It integrates with existing security infrastructure and provides SD-WAN capabilities, offering protection for websites and mobile applications.

FortiWeb WAF secures web applications with features like machine learning-based threat detection, DDoS attack mitigation, and robust integration capabilities. Additionally, it manages HTTP traffic and offers SD-WAN functionalities. Built for GDPR compliance, it supports API protection and bot mitigation while enabling secure mobile and cloud application access. Users implement it across multi-cloud environments and in data centers offering advanced security and compliance, including PCI DSS. Despite feature-rich abilities, users seek enhanced database updates, better enterprise integration, and more accessible analytics. Improvements in support response, documentation, and scalability are desired to strengthen its robust security offering.

What are the key features of FortiWeb WAF?
  • Machine Learning: Reduces false positives and detects zero-day attacks.
  • DDoS Protection: Blocks distributed denial of service attacks.
  • Integration: Seamlessly fits with existing infrastructure.
  • GDPR Compliance: Ensures data privacy and protection standards.
  • SD-WAN Capabilities: Manages network distribution effectively.
  • Mobile and API Security: Protects applications and APIs efficiently.
What benefits and ROI can users expect?
  • Cost-Effectiveness: Offers a balance between features and pricing.
  • User-Friendly: Easy to navigate and manage deployments.
  • Global Deployment: Supports multi-cloud and cross-data center usage.
  • Security Compliance: Meets standards like PCI DSS for secure operations.
  • Enhanced Application Security: Provides comprehensive protection for apps.

FortiWeb WAF is widely implemented in data centers and financial industries, ensuring robust protection for web applications and sites. It supports multi-cloud environments on platforms like AWS and Azure, providing secure access while meeting compliance standards. Users benefit from enhanced application security and load balancing capabilities, making it a preferred choice in financial sectors that require VPN and SD-WAN consistency.

Fortinet
Sucuri gives website owners peace of mind with solutions that prevent hackers from abusing websites, and professional response services to those compromised. Sucuri is dedicated to researching the latest and emerging threats affecting websites like yours. Website security should be attainable for all website owners; we focus on making that a reality. Get back to running awesome WordPress websites. Our services are built around three principles – People. Process. Technology.
Sucuri Security
 

Sample Customers

Information Not Available
The Loft Salon, Tom McFarlin, WPBeginner, Taylor Town, Everything Everywhere, Financial Ducks in a Row, Chubstr, Real Advice Gal, Sujan Patel, Wallao, List25, School the World
Buyer's Guide
FortiWeb Web Application Firewall (WAF) vs. Sucuri
June 2025
Free Report: FortiWeb Web Application Firewall (WAF) vs. Sucuri
Find out what your peers are saying about FortiWeb Web Application Firewall (WAF) vs. Sucuri and other solutions. Updated: June 2025.
DOWNLOAD NOW
859,129 professionals have used our research since 2012.
See our FortiWeb Web Application Firewall (WAF) vs. Sucuri report.
See our list of best Web Application Firewall (WAF) vendors.

We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.