- Home
- ...
- Static Application Security Testing (SAST) Software
- Fortify Static Code Analyzer
- Semgrep
- Fortify Static Code Analyzer-vs-Semgrep
Compare OpenText Fortify Static Code Analyzer and Semgrep 
At a Glance
Market Segments
Enterprise (47.6% of reviews)
Mid-Market (58.1% of reviews)
Entry-Level Pricing
No pricing available
$40.00 1 contributors Per Month
OpenText Fortify Static Code Analyzer
Star Rating
(24)4.5 out of 5
Market Segments
Enterprise (47.6% of reviews)
Entry-Level Pricing
No pricing available
Learn more about OpenText Fortify Static Code AnalyzerSemgrep
Star Rating
(31)4.6 out of 5
Market Segments
Mid-Market (58.1% of reviews)
Entry-Level Pricing
$40.00 1 contributors Per Month
Browse all 2 pricing plansSummary
AI Generated Summary
AI-generated. Powered by real user reviews.
- Users report that OpenText Fortify Static Code Analyzer excels in its API / Integrations with a score of 9.0, allowing for seamless integration into existing workflows, while Semgrep, with a score of 8.3, offers decent integration options but may require more manual setup.
- Reviewers mention that Semgrep shines in Ease of Use with a score of 9.3, making it more accessible for teams new to static code analysis, whereas OpenText Fortify's score of 8.7 indicates a steeper learning curve for some users.
- G2 users highlight that Semgrep has a superior Detection Rate and Issue Tracking with scores of 9.2, which enhances its effectiveness in identifying vulnerabilities, compared to OpenText Fortify's scores of 8.3 and 7.8 respectively.
- Users on G2 report that OpenText Fortify provides robust Remediation Suggestions with a score of 8.2, but Semgrep's overall approach to Reporting and Analytics is rated higher at 8.8, offering clearer insights into code vulnerabilities.
- Reviewers mention that while both products have similar Extensibility scores of 8.7, Semgrep's community-driven approach allows for more frequent updates and feature enhancements, which users find beneficial for staying current with security trends.
- Users say that OpenText Fortify's Quality of Support is rated at 8.6, which is commendable, but Semgrep's support, rated at 9.2, is often praised for being more responsive and helpful, particularly for troubleshooting integration issues.
Featured Products
Sponsored
OX Security
(50)
Static Code Analysis
Visit Website
Sponsored
Tenable Nessus
(270)
Static Code Analysis
Visit Website
Sponsored
Tenable Vulnerability Management
(100)
Static Code Analysis
Visit Website
Pricing
Entry-Level Pricing
OpenText Fortify Static Code Analyzer
No pricing availableSemgrep
Semgrep
$40.00
1 contributors Per Month
- 25+ languages supported
- Dataflow analysis
- Developer feedback
Free Trial
OpenText Fortify Static Code Analyzer
No trial information availableSemgrep
Free Trial is available
Ratings
Meets Requirements
8.3
15
8.7
27
Ease of Use
8.7
15
9.3
27
Ease of Setup
8.3
9
9.6
15
Ease of Admin
8.1
9
9.2
14
Quality of Support
8.7
15
9.2
24
Has the product been a good partner in doing business?
8.5
9
9.5
14
Product Direction (% positive)
9.1
13
9.0
24
Features by Category
Administration
8.9
9
8.3
6
8.7
10
8.7
5
Analysis
8.3
11
8.8
7
8.0
11
9.2
8
8.8
11
9.2
8
8.5
10
9.0
8
Testing
8.1
9
8.3
8
6.9
9
Feature Not Available
8.7
10
Feature Not Available
8.5
8
Not enough data
7.0
9
7.0
5
8.3
9
7.5
6
6.2
11
7.9
8
Dynamic Application Security Testing (DAST)Hide 13 FeaturesShow 13 Features
Not enough data
Not enough data
Administration
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Performance
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Network
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Application
Not enough data
Feature Not Available
Not enough data
Not enough data
Not enough data
Not enough data
Functionality - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Effectiveness - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Documentation
Not enough data
9.0
12
Not enough data
9.0
13
Not enough data
8.2
13
Security
Not enough data
6.9
14
Not enough data
7.9
11
Not enough data
8.8
11
Categories
Categories
Shared Categories
OpenText Fortify Static Code Analyzer and Semgrep are categorized as Static Code Analysis and Static Application Security Testing (SAST)
Unique Categories
OpenText Fortify Static Code Analyzer has no unique categories
Reviews
Reviewers' Company Size
OpenText Fortify Static Code Analyzer
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Semgrep
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Financial Services
23.8%
Banking
19.0%
Information Technology and Services
14.3%
Computer Software
14.3%
Computer & Network Security
9.5%
Other
19.0%
Information Technology and Services
25.8%
Computer Software
25.8%
Financial Services
22.6%
Insurance
6.5%
Professional Training & Coaching
3.2%
Other
16.1%
Most Helpful Reviews
OpenText Fortify Static Code Analyzer
Most Helpful Favorable Review
Tejas P.
Verified User in Banking
Exact pinpointing of issues in code and suggestions to fix them.
Most Helpful Critical Review
Semgrep
Most Helpful Favorable Review
Stéphane S.
Verified User in Professional Training & Coaching
Semgrep helped us in no time narrowing down important vulnerabilities and focusing on what matters thanks to Semgrep Supply Chain. It is the product with the best ROI I would recommend to add to your SSDLC. it fast, extendable and customizable, with a...
Most Helpful Critical Review
Tejas P.
Verified User in Banking
Exact pinpointing of issues in code and suggestions to fix them.
Stéphane S.
Verified User in Professional Training & Coaching
Semgrep helped us in no time narrowing down important vulnerabilities and focusing on what matters thanks to Semgrep Supply Chain. It is the product with the best ROI I would recommend to add to your SSDLC. it fast, extendable and customizable, with a...
Discussions
will provide Video training course for this tool?
1 comment
SH
Micro Focus has a comprehensive set of free training tools! Check out this one on SCA...Read more
What are the main components of Fortify?
1 comment
VC
Strengthen SSC server
Strengthen scan software for Windows or LinuxRead more
OpenText Fortify Static Code Analyzer has no more discussions with answers
Semgrep has no discussions with answers
Hunting for software insights?
With over 2.5 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
