Show rating breakdown
Save to My Lists
Claimed
Claimed

Top Rated OpenText Fortify Static Code Analyzer Alternatives

OpenText Fortify Static Code Analyzer Reviews & Product Details

OpenText Fortify Static Code Analyzer Overview

What is OpenText Fortify Static Code Analyzer?

Fortify Static Code Analyzer is designed to identify security vulnerabilities in the user's source code early in the software development lifecycle and provides best practices so developers can code more securely.

OpenText Fortify Static Code Analyzer Details
Show LessShow More
Product Description

Fortify Static Code Analyzer is designed to identify security vulnerabilities in the user's source code early in the software development lifecycle and provides best practices so developers can code more securely.


Seller Details
Seller
OpenText
Year Founded
1991
HQ Location
Waterloo, ON
Twitter
@OpenText
22,223 Twitter followers
LinkedIn® Page
www.linkedin.com
22,114 employees on LinkedIn®
Ownership
NASDAQ:OTEX
Phone
-7842
Total Revenue (USD mm)
$3,109
Description

OpenText software applications manage content or unstructured data for large companies, government agencies, and professional service firms. OpenText aims its products at addressing information management requirements, including management of large volumes of content, compliance with regulatory requirements, and mobile and online experience management.


Sandra H.
SH
Overview Provided by:

Recent OpenText Fortify Static Code Analyzer Reviews

Verified User
C
Verified UserEnterprise (> 1000 emp.)
5.0 out of 5
"Fortify is best tool to scan source code"
I like fortify to scan source code in deply. It will compile the code and find the vulnerabilities. No others tools compile the code scan. Most imp...
NN
Nav N.Small-Business (50 or fewer emp.)
4.5 out of 5
"Efficient and easy to use Code Analyzer"
Fortify is an excellent code analyzer. Its plugins are handy as compared to other solutions. It can quickly and accurately identify errors. We can...
Abhishikt V.
AV
Abhishikt V.Enterprise (> 1000 emp.)
5.0 out of 5
"Experienced Security Test Engineer in the cloud security, Supplychain security, health care."
Ease of using, deployment in CI/CD & the custom ruleset/report creation.
Security Badge
This seller hasn't added their security information yet. Let them know that you'd like them to add it.
0 people requested security information

OpenText Fortify Static Code Analyzer Media

Answer a few questions to help the OpenText Fortify Static Code Analyzer community
Have you used OpenText Fortify Static Code Analyzer before?
Yes

23 OpenText Fortify Static Code Analyzer Reviews

4.5 out of 5
The next elements are filters and will change the displayed results once they are selected.
Search reviews
Popular Mentions
The next elements are radio elements and sort the displayed results by the item selected and will update the results displayed.
Hide FiltersMore Filters
The next elements are filters and will change the displayed results once they are selected.
The next elements are filters and will change the displayed results once they are selected.

Overall Review Sentiment for OpenText Fortify Static Code AnalyzerQuestion

Time to Implement
<1 day
>12 months
Return on Investment
<6 months
48+ months
Ease of Setup
0 (Difficult)
10 (Easy)
Log In
Want to see more insights from verified reviewers?
Log in to view review sentiment.
G2 reviews are authentic and verified.
NN
IT Consultant
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about OpenText Fortify Static Code Analyzer?

Fortify is an excellent code analyzer. Its plugins are handy as compared to other solutions. It can quickly and accurately identify errors. We can efficiently address critical errors and warnings. It can scan the code in real time. Fortify Static Code Analyzer is handy for CI/CD programs. We can resolve the issues quickly at the development level. It is efficient and time-saving also. It can be easily integrated with Android Studio, Visual Studio, IntelliJ, etc. Fortify Static Code Analyzer notifies us on time if there are any security leaks. All the features are very beneficial once you know their proper functionalities, Review collected by and hosted on G2.com.

What do you dislike about OpenText Fortify Static Code Analyzer?

The price of Fortify Static Code Analyzer is a bit high. Also, sometimes we can face troubleshooting issues. Other functionalities can also be improved to make it more handy and easy to use. Review collected by and hosted on G2.com.

What problems is OpenText Fortify Static Code Analyzer solving and how is that benefiting you?

It helps to fix coding errors in real-time. The dashboard is easy to use to keep track of all mistakes and security risks. Development and Deployment have become much simple and easier. It also saves a lot of time. Review collected by and hosted on G2.com.

Varun J.
VJ
Principal Consultant
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about OpenText Fortify Static Code Analyzer?

Fortify has been the first choice for doing secure (static) code analysis for many years because

1. Languages support - it supports both legacy and modern development languages.

2. Deployment Model - on-prem, cloud, Security as a service (FOD)

3. Technical support - Fortify not only helps the new onboarded customers with detailed documentation but also provides good trainings Review collected by and hosted on G2.com.

What do you dislike about OpenText Fortify Static Code Analyzer?

There is a native issue of false positives with all the SCA tools. Which somehow decreases the value and increases the turn around time for finding the exact true positives Review collected by and hosted on G2.com.

What problems is OpenText Fortify Static Code Analyzer solving and how is that benefiting you?

Fortify integrates with CICD pipeline which helps to write secure code and it's plugin for various IDEs gives the developers early feedback , so that the application being deployed in production is vulnerability free and more secure Review collected by and hosted on G2.com.

Mohsin K.
MK
Information Security Manager
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about OpenText Fortify Static Code Analyzer?

Friendly and Efficient Integrations - IntelliJ, VS, Android Studio, etc. Organized Dashboard and their absolutely wonderful reporting platform. It really helped us achieve our compliance goals! Review collected by and hosted on G2.com.

What do you dislike about OpenText Fortify Static Code Analyzer?

Fortify should develop a DAST setup as well, this would really marginalize our input and time efficiency. Review collected by and hosted on G2.com.

What problems is OpenText Fortify Static Code Analyzer solving and how is that benefiting you?

Compliance

Risk Management

Development Efficiency

Fortify provides us with absolute defense. Review collected by and hosted on G2.com.

Tejas P.
TP
Sr. DevOps Engineer
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about OpenText Fortify Static Code Analyzer?

Exact pinpointing of issues in code and suggestions to fix them. Review collected by and hosted on G2.com.

What do you dislike about OpenText Fortify Static Code Analyzer?

bit costly, also bit difficult to set up at intial. Review collected by and hosted on G2.com.

What problems is OpenText Fortify Static Code Analyzer solving and how is that benefiting you?

Source code analysis, finding a vulnerability.

Used it for security as well. Review collected by and hosted on G2.com.

Mohammed Imran A.
MA
DevOps Specialist
Mid-Market(51-1000 emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about OpenText Fortify Static Code Analyzer?

It shows how to fix the vulnerable code. Review collected by and hosted on G2.com.

What do you dislike about OpenText Fortify Static Code Analyzer?

i did not find the automatic way to create the projects. Review collected by and hosted on G2.com.

What problems is OpenText Fortify Static Code Analyzer solving and how is that benefiting you?

It helped me and my team to clean the code and upgrade the erroneous plugins in the code. Helped the code quality. Review collected by and hosted on G2.com.

Abhishikt V.
AV
Security Engineer 2
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about OpenText Fortify Static Code Analyzer?

Ease of using, deployment in CI/CD & the custom ruleset/report creation. Review collected by and hosted on G2.com.

What do you dislike about OpenText Fortify Static Code Analyzer?

Heavily depends on JRE configs, which makes compiling & running slower. Review collected by and hosted on G2.com.

What problems is OpenText Fortify Static Code Analyzer solving and how is that benefiting you?

Static Security code analysis Review collected by and hosted on G2.com.

Vis C.
VC
Software Security Technical Director
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about OpenText Fortify Static Code Analyzer?

Wide range of programming language support, Ability to generate FPR files from CICD pipelines, Externalization of scans into another server for performance reasons. Review collected by and hosted on G2.com.

What do you dislike about OpenText Fortify Static Code Analyzer?

Slow at times to complete at large number of files in a heavy software. Review collected by and hosted on G2.com.

What problems is OpenText Fortify Static Code Analyzer solving and how is that benefiting you?

Security of software source code. SAST! Review collected by and hosted on G2.com.

Verified User in Computer Software
CC
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
(Original )Information
What do you like best about OpenText Fortify Static Code Analyzer?

I like fortify to scan source code in deply. It will compile the code and find the vulnerabilities. No others tools compile the code scan. Most important thing is result. It will find all critical issues. Review collected by and hosted on G2.com.

What do you dislike about OpenText Fortify Static Code Analyzer?

Sometimes it will show more duplicate issue. Developer should work on this and resolved it. Review collected by and hosted on G2.com.

What problems is OpenText Fortify Static Code Analyzer solving and how is that benefiting you?

Fortify find all the low to critical risk issue and make the application secure. As well as it will provide the very simple report to developer should understand the remediation and fix it. Review collected by and hosted on G2.com.

Mohit G.
MG
Asst. Vice President - Information Security
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about OpenText Fortify Static Code Analyzer?

It is an on-prem solution and is compatible with most of the commonly used languages. It can get the scan results verified by an audit assistant that will further reduce the false positives. Very easy to install and can be deployed over windows or Linux machines. SSC module can be utilized for better reporting and tracking. Furthermore, it can be integrated with CI/CD pipelines for automated assessments. Review collected by and hosted on G2.com.

What do you dislike about OpenText Fortify Static Code Analyzer?

Reporting can be me more intelligent, and false positives are little on the higher side. Review collected by and hosted on G2.com.

What problems is OpenText Fortify Static Code Analyzer solving and how is that benefiting you?

Primarily used for Application source code assessments by integrating it with DevSecOps pipeline. That helps us to automate the assessment process and remediate the vulnerabilities in the early stages of the development. That enables the developers to release new features timely. Review collected by and hosted on G2.com.

Jobin T.
JT
Software Engineer II
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: G2 invite
Incentivized Review
What do you like best about OpenText Fortify Static Code Analyzer?

The ease of use and an intuitive UI makes using the Fortify Static Code Analyzer quite easy for people who are new to it. A topic as complex as Security becomes manageable as the tool provides detailed reports on what the vulnerabilities are with their severity level and quite an extensive description of what is causing the vulnerability and recommendations to fix it. This makes life for the developers who might be new to Security. Review collected by and hosted on G2.com.

What do you dislike about OpenText Fortify Static Code Analyzer?

Some newer language syntax of certain languages like Java 8+ might not be understood by Fortify which leads to false positives. Also, certain non-fixeable vulnerabilities for which exceptions were provided would pop back up once in a while, which is a bit annoying. Review collected by and hosted on G2.com.

Recommendations to others considering OpenText Fortify Static Code Analyzer:

It's an amazing tool to start your journey towards making your application secure. Review collected by and hosted on G2.com.

What problems is OpenText Fortify Static Code Analyzer solving and how is that benefiting you?

We majorly solve security vulnerabilities that could be caused due to bad programming on our front and also weed out open source libraries that we use which could introduce vulnerabilities through their transient dependencies. Also as the vulnerability list keeps getting updated regularly we are made aware of any new issue that was recently reported allowing us to keep our application secure proactively. Review collected by and hosted on G2.com.