AutoRABIT vs. Fortify by OpenText

AutoRABIT is well suited- 1. Continuous Integration and Continuous Deployment 2.AutoRABIT provides a centralized platform to orchestrate and automate release activities, ensuring consistency and compliance across environments.AutoRABIT is a comprehensive DevOps platform with associated costs. Less appropriate. Organizations with limited budget or resources may find it more cost-effective to use alternative tools or manual processes for Salesforce development and release management.

Incentivized

It is best suited for runtime application security scanning and very useful for automation. You can seemlessly integrate with pipeline for dynamic scans. Cloud based apps can also be scanned for vulnerabilities, cross site scripting attacks. Basically all OWASP TOP 10. It is less appropriate to use if you have serverless architecture

Incentivized

• CI Jobs
• Profile Commits
• Deployments from specific commits

Incentivized

• DAST Scanning
• API Scanning
• Less detection of false positive

Incentivized

• user interface can be overwhelming and complex for new users
• AutoRABIT offers integration with various Salesforce tools and platforms, some users may find the integration options limited or lacking flexibility.
• Depending on the size and complexity of Salesforce orgs, some users may experience performance issues with certain AutoRABIT functionalities, such as deployments or data migrations.

Incentivized

• Reporting could be better
• Can be an involved setup if your organization is not using common build tools
• Users get spammed with a lot of email updates from the service

Incentivized

Since every firm needs to perform static code analysis on their applications, I believe Micro Focus Fortify WebInspect would work well for them (they also offer dynamic scanning, although I haven't used it myself). Different static analysis tools scan code in different ways, and Micro Focus Fortify WebInspect asks you to submit a complete build of the application along with debugging files. Depending on how your company builds its apps, this requirement may be simple or challenging.

Incentivized

It is a cloud-based platform which can provide us a very useful and unique features like Application Assessment, Scans, Vulnerability Test, Comprehensive Reporting, Monitoring, etc. Fortify by Open Text is also outstanding in various parameters for the support and integration and it is highly adaptable in various DevOps Program where you need secure app testing with all given features.

Incentivized

Always receive excellent support from the vendor. No issues there.

Incentivized

I think there are no major differences other than cost

Incentivized

Fortify Application Defender is a little more timely and upfront with a lot of their information on cyber security. we like what they provide and how they communicate with our users. I think they have a good understanding and practice in their field. they seem best suited for us and the best fit.

Incentivized

• AutoRABIT can significantly streamline Salesforce development and release management processes, reducing manual effort and time spent on repetitive tasks.
• By automating testing, code quality checks, and deployment processes, AutoRABIT helps ensure consistency and reliability in Salesforce deployments.
• While there is an initial investment associated with implementing and licensing AutoRABIT, the long-term cost savings from reduced manual effort, decreased deployment errors, and improved productivity can result in a positive ROI over time.

Incentivized

• DevSecOps helped in reducing efforts
• License cost was less
• We could roll out double the count of applications with implementation of WebInspect

Incentivized