Introducing G2.ai, the future of software buying.Try now
Compare OpenText Core Application Security and Semgrep 
Featured Products
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
Endor Labs
Visit Website
Sponsored
You’re seeing this ad based on the product’s relevance to this page. Sponsored content does not receive preferential treatment in any of G2’s ratings.
Aikido Security
Visit Website
At a Glance
Market Segments
Enterprise (41.2% of reviews)
Enterprise (47.2% of reviews)
Entry-Level Pricing
No pricing available
Starting at $40.00 1 contributor Per Month
OpenText Core Application Security
Star Rating
(34)4.1 out of 5
Market Segments
Enterprise (41.2% of reviews)
Pros & Cons
Not enough data
Entry-Level Pricing
No pricing available
Learn more about OpenText Core Application SecuritySemgrep
Star Rating
(54)4.6 out of 5
Market Segments
Enterprise (47.2% of reviews)
Pros & Cons
Entry-Level Pricing
Starting at $40.00 1 contributor Per Month
Free Trial is available
Learn more about SemgrepSummary
AI Generated Summary
AI-generated. Powered by real user reviews.
- Users report that OpenText Fortify On Demand has a solid API and integration capabilities, scoring 8.3, which allows for better connectivity with existing systems, while Semgrep excels in extensibility with a score of 8.7, enabling users to customize their security checks more effectively.
- Reviewers mention that Semgrep shines in ease of use with a score of 9.3, making it more accessible for teams without extensive security expertise, whereas OpenText Fortify On Demand, with a score of 8.2, may require more training and familiarity to navigate effectively.
- G2 users highlight that OpenText Fortify On Demand has a robust issue tracking feature, scoring 9.2, which helps teams manage vulnerabilities efficiently, while Semgrep's issue tracking is also strong but slightly lower at 9.0, indicating a more streamlined experience with Fortify.
- Users on G2 report that Semgrep's automated scans are particularly effective, contributing to its high detection rate of 7.5, while OpenText Fortify On Demand has a lower detection rate of 6.9, which may lead to more manual intervention in vulnerability management.
- Reviewers say that OpenText Fortify On Demand provides comprehensive remediation suggestions with a score of 8.2, which helps teams address vulnerabilities quickly, while Semgrep's suggestions are perceived as less detailed, impacting the speed of remediation.
- Users report that Semgrep's documentation is highly praised for clarity and thoroughness, contributing to its ease of setup score of 9.6, while OpenText Fortify On Demand's documentation is seen as less user-friendly, which may hinder new users during the initial setup phase.
Pricing
Entry-Level Pricing
OpenText Core Application Security
No pricing availableSemgrep
Semgrep Code, Supply Chain, and Secrets Detection
Starting at $40.00
1 contributor Per Month
Extensible AppSec for growing teams. Choose from Code (SAST), Supply Chain (SCA), and Secrets Detection to eliminate noise out of the box, streamline developer workflows, and give security teams full visibility.
- Choose from SAST, SCA, and Secrets Detection
- Pro Rules and cross-file analysis
- AI Assistant
Free Trial
OpenText Core Application Security
Free Trial is available
Semgrep
Free Trial is available
Ratings
Meets Requirements
8.1
31
8.8
48
Ease of Use
8.2
31
9.1
49
Ease of Setup
8.2
12
9.4
36
Ease of Admin
8.9
12
9.1
22
Quality of Support
7.9
30
8.8
43
Has the product been a good partner in doing business?
9.0
12
9.6
22
Product Direction (% positive)
8.8
30
9.2
45
Features by Category
Administration
Not enough data
9.0
18
Not enough data
8.2
17
Analysis
Not enough data
8.4
19
Not enough data
9.1
21
Not enough data
9.4
21
Not enough data
9.1
21
Testing
Not enough data
8.7
20
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
7.7
17
Not enough data
7.5
18
Not enough data
8.1
19
Not enough data
7.3
21
Agentic AI - Static Application Security Testing (SAST)
Not enough data
7.9
11
Dynamic Application Security Testing (DAST)Hide 13 FeaturesShow 13 Features
Not enough data
Not enough data
Administration
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Performance
Not enough data
8.2
12
Not enough data
8.0
11
Not enough data
8.0
11
Not enough data
9.0
10
Network
Not enough data
8.5
10
Not enough data
7.8
10
Not enough data
8.0
10
Application
Not enough data
Feature Not Available
Not enough data
8.9
11
Not enough data
8.5
11
Agentic AI - Vulnerability Scanner
Not enough data
6.9
6
Not enough data
7.5
6
Functionality - Software Composition Analysis
Not enough data
8.4
18
Not enough data
8.2
18
Not enough data
8.5
18
Effectiveness - Software Composition Analysis
Not enough data
8.5
18
Not enough data
8.3
18
Not enough data
8.3
18
Documentation
Not enough data
8.9
19
Not enough data
9.3
20
Not enough data
8.2
20
Security
Not enough data
7.4
21
Not enough data
7.9
17
Not enough data
8.9
17
Generative AI
Not enough data
Not enough data
Runtime Application Self-Protection (RASP) ToolsHide 4 FeaturesShow 4 Features
Not enough data
Not enough data
Threat Detection & Response - Runtime Application Self-Protection (RASP)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Code Analysis
Not enough data
7.7
10
Not enough data
7.6
9
Not enough data
7.7
10
Performance - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Integration - AI AppSec Assistants
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Interactive Application Security Testing (IAST)Hide 1 FeatureShow 1 Feature
Not enough data
Not enough data
Agentic AI - Interactive Application Security Testing (IAST)
Not enough data
Not enough data
Categories
Categories
Shared Categories
OpenText Core Application Security and Semgrep are categorized as Static Code Analysis, Dynamic Application Security Testing (DAST), and Interactive Application Security Testing (IAST)
Unique Categories
OpenText Core Application Security is categorized as Runtime Application Self-Protection (RASP) Tools
Semgrep is categorized as AI AppSec Assistants, Software Composition Analysis, Static Application Security Testing (SAST), Vulnerability Scanner, and Secure Code Review
Reviews
Reviewers' Company Size
OpenText Core Application Security
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Semgrep
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Information Technology and Services
26.5%
Computer Software
8.8%
Computer & Network Security
8.8%
Construction
5.9%
Airlines/Aviation
5.9%
Other
44.1%
Information Technology and Services
24.5%
Computer Software
20.8%
Financial Services
15.1%
Manufacturing
5.7%
Semiconductors
5.7%
Other
28.3%
Alternatives
Discussions
OpenText Core Application Security has no discussions with answers
Semgrep has no discussions with answers
Hunting for software insights?
With over 3 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
