Fortify by OpenText vs. Rapid7 AppSpider

Fortify by OpenText

Fortify by OpenText

22 Reviews and Ratings

Rapid7 AppSpider

Rapid7 AppSpider

5 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Fortify by OpenText	Score 9.0 out of 10	N/A	An AppSec solution formerly from Micro Focus, spanning SCA, SAST and DAST that supports the breadth and management of any application portfolio, used to secure code. Features API discovery and testing for any application, throughout the software lifecycle.	N/A
Rapid7 AppSpider	Score 9.3 out of 10	N/A	AppSpider, from Boston-based Rapid7, is an application security and testing offering based on technology acquired from NT OBJECTives (their similarly named software NTOSpider, acquired with the company during April, 2015).	$2,000 Per Application

Pricing

Fortify by OpenText

Rapid7 AppSpider

Editions & Modules

No answers on this topic

InsightAppSec: $2,000.00
Per Application

Offerings

Pricing Offerings
Fortify by OpenText	Rapid7 AppSpider
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

No setup fee

Additional Details

—

—

More Pricing Information

Community Pulse
	Fortify by OpenText	Rapid7 AppSpider

Best Alternatives
	Fortify by OpenText	Rapid7 AppSpider
Small Businesses	GitLab Score 8.6 out of 10	GitLab Score 8.6 out of 10
Medium-sized Companies	Veracode Score 9.2 out of 10	Veracode Score 9.2 out of 10
Enterprises	Veracode Score 9.2 out of 10	Veracode Score 9.2 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Fortify by OpenText	Rapid7 AppSpider
Likelihood to Recommend	9.0 (6 ratings)	8.0 (1 ratings)
Likelihood to Renew	10.0 (1 ratings)	- (0 ratings)
Usability	7.0 (1 ratings)	- (0 ratings)
Support Rating	10.0 (1 ratings)	- (0 ratings)

User Testimonials
	Fortify by OpenText	Rapid7 AppSpider
Likelihood to Recommend	OpenText It is best suited for runtime application security scanning and very useful for automation. You can seemlessly integrate with pipeline for dynamic scans. Cloud based apps can also be scanned for vulnerabilities, cross site scripting attacks. Basically all OWASP TOP 10. It is less appropriate to use if you have serverless architecture Incentivized Verified User Anonymous Read full review	Rapid7 Rapid7 AppSpider could be your default DAST (Dynamic Application Security Testing), it covers the OWASP top 10 for web and APIs. Great tools, with a very nice and understandable report and analytics, work excellent for one-shot or continuous monitoring of your web assets. Also has a fair amount of integrations with other popular tools. Incentivized Randy Varela Offensive Security Engineer Lead Read full review
Pros	OpenText DAST Scanning API Scanning Less detection of false positive Incentivized Zishan Ali Dakhani Employee Read full review	Rapid7 OWASP Top 10. Crawling web applications. Web application security testing. Incentivized Randy Varela Offensive Security Engineer Lead Read full review
Cons	OpenText Reporting could be better Can be an involved setup if your organization is not using common build tools Users get spammed with a lot of email updates from the service Incentivized Verified User Anonymous Read full review	Rapid7 Scan might be slow compared to other tools. Not a lot of training on the vendor side. Incentivized Randy Varela Offensive Security Engineer Lead Read full review
Likelihood to Renew	OpenText Since every firm needs to perform static code analysis on their applications, I believe Micro Focus Fortify WebInspect would work well for them (they also offer dynamic scanning, although I haven't used it myself). Different static analysis tools scan code in different ways, and Micro Focus Fortify WebInspect asks you to submit a complete build of the application along with debugging files. Depending on how your company builds its apps, this requirement may be simple or challenging. Incentivized Zishan Ali Dakhani Employee Read full review	Rapid7 No answers on this topic
Usability	OpenText It is a cloud-based platform which can provide us a very useful and unique features like Application Assessment, Scans, Vulnerability Test, Comprehensive Reporting, Monitoring, etc. Fortify by Open Text is also outstanding in various parameters for the support and integration and it is highly adaptable in various DevOps Program where you need secure app testing with all given features. Incentivized Ankitkumar Mistry Product Consultant Read full review	Rapid7 No answers on this topic
Support Rating	OpenText Always receive excellent support from the vendor. No issues there. Incentivized Gene Baker Vice President, Chief Architect, Development Manager and Software Engineer Read full review	Rapid7 No answers on this topic
Alternatives Considered	OpenText Fortify Application Defender is a little more timely and upfront with a lot of their information on cyber security. we like what they provide and how they communicate with our users. I think they have a good understanding and practice in their field. they seem best suited for us and the best fit. Incentivized Verified User Anonymous Read full review	Rapid7 Incentivized Randy Varela Offensive Security Engineer Lead Read full review
Return on Investment	OpenText DevSecOps helped in reducing efforts License cost was less We could roll out double the count of applications with implementation of WebInspect Incentivized Verified User Anonymous Read full review	Rapid7 Great ROI for consultant projects. Incentivized Randy Varela Offensive Security Engineer Lead Read full review
ScreenShots