AgileBits in Toronto offers 1Password, a password manager available to both private individuals and businesses, touting a unique approach to multi-factor authentication to improve security.
$2.99
per month
Fortify by OpenText
Score 9.0 out of 10
N/A
An AppSec solution formerly from Micro Focus, spanning SCA, SAST and DAST that supports the breadth and management of any application portfolio, used to secure code. Features API discovery and testing for any application, throughout the software lifecycle.
1Password is a great tool when it comes to data security and managing your passwords. It is perfect for daily work that requires accessing a lot of different login credentials to different softwares, servers etc., so it is a great tool for all web developers and programmers, but also to project managers and other employees that have to login to multiple different services regularly.
It is best suited for runtime application security scanning and very useful for automation. You can seemlessly integrate with pipeline for dynamic scans. Cloud based apps can also be scanned for vulnerabilities, cross site scripting attacks. Basically all OWASP TOP 10. It is less appropriate to use if you have serverless architecture
1Password is so secure, that it lacks a self-managed "forget your password" functionality which means that as a manager, I have to approve password resets which may slow down some users.
On Chrome, the extension sometimes stops working when the browser is updated.
1Password is a great password manager and it helps us a lot in our every day duties at the company. Since implementing this solution we also feel way more secure when it comes to our own data or the data of our Clients.
Since every firm needs to perform static code analysis on their applications, I believe Micro Focus Fortify WebInspect would work well for them (they also offer dynamic scanning, although I haven't used it myself). Different static analysis tools scan code in different ways, and Micro Focus Fortify WebInspect asks you to submit a complete build of the application along with debugging files. Depending on how your company builds its apps, this requirement may be simple or challenging.
The 1Password app design is top notch, much better than a couple other password managers I've looked at. The app and service are very flexible, allowing for many different types of data storage. The browser extensions generally work very well, allowing for easy access to login information while using pretty much any modern web browser.
It is a cloud-based platform which can provide us a very useful and unique features like Application Assessment, Scans, Vulnerability Test, Comprehensive Reporting, Monitoring, etc. Fortify by Open Text is also outstanding in various parameters for the support and integration and it is highly adaptable in various DevOps Program where you need secure app testing with all given features.
I have never had any issues with 1Password and they have always been able to answer my questions adequately resolve my issues. Furthermore, they have a robust peer forum that can be accessed. They have helpful "Get to know Apps", videos and many articles to assist in the process of using the product.
1Password and LastPass are presently quite comparable in terms of the feature set they offer to their users. Unfortunately, it is their pricing models that differ, and is the only reason we felt the need to switch to LastPass from 1Password. LastPass simply offered better pricing for their business tier k(cheaper by $1/user/month.)
Fortify Application Defender is a little more timely and upfront with a lot of their information on cyber security. we like what they provide and how they communicate with our users. I think they have a good understanding and practice in their field. they seem best suited for us and the best fit.
