Scribd
Upload
331 views

Micro Focus - Fortify Static Code Analyzer

static code analyzer

Uploaded by

htdvul
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
331 views

Micro Focus - Fortify Static Code Analyzer

static code analyzer

Uploaded by

htdvul
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 7

Fortify named #1 for the Enterprise in Gartner Critical Capabilities Report Learn more

Fortify Static Code Analyzer


Build secure software fast. Find security issues early and fix at the speed of DevOps.

Get Gartner MQ Contact us

Free Trial Demo Videos Resources Documentation Communities AppSec Blog Marketplace Contact Us

Automated static code analysis helps developers eliminate vulnerabilities and build secure software.

Code securely with integrated SAST Cover languages that developers use Launch fast, automated scans
Developers find and fix security defects in real-time Gain comprehensive, accurate language coverage Launch automated scans optimized for coverage or
during the coding process, with integrations to IDEs. and enable compliance. Learn more. speed. Learn more.
Learn more.

Fix at the speed of DevOps Automate security within CI/CD Scale your AppSec program
Drill into the source code details with our rich Automate scans to enable developers on security. Secure custom and open source code with fast and
analysis results, which enable you to quickly triage Learn more. highly optimized static scans. Learn more.
and fix complex security issues. Learn more.

/
Dive deeper. Discover more.

Code securely with integrated SAST Visual Studio - real-time security with Fortify Security Assistant (2018)
Find and fix security vulnerabilities in real time with Security Assistant in the Eclipse or Visual
Studio IDE with the developer’s security “spell checker.”

Gamified training supports developers' ability to create secure code.

DATA SHEET INFOGRAPHIC


Fortify Static Code Analyzer Fortify Security Assistant
(SCA) Static Application
Security Testing

Security Assistant for Visual Studio demo

Security Assistant overview -- security in the Eclipse IDE (2020)


Cover languages that developers use
Accurate support for 27 major languages and their frameworks, with agile updates backed
by the industry-leading Software Security Research (SSR) team.

Enable compliance with broad vulnerability coverage, including 810 vulnerability categories
for SAST that enable compliance with standards such as OWASP Top 10, CWE/SANS Top 25,
DISA STIG, and PCI DSS.

WEB PAGE WEB PAGE


Supported Languages Fortify Taxonomy: Software
Security Errors

Security Assistant overview -- security in the Eclipse IDE

/
Launch fast, automated scans Visual Studio 2019 - Fortify Extension
Seamlessly launch scans locally from the Fortify platform or via your IDE and CI/CD pipeline.

Build secure software faster and gain valuable insight with a centralized management
repository for scan results.

Software Security Center (SSC) enables organizations to automate all aspects of an


application security program.

VALUE BRIEF BUYER’S GUIDE


Static Code Analyzer The 2019 TechBeacon
Buyer’s Guide for
Application Security

Demo of installing and using the Fortify Extension for Visual Studio
2019

Fortify SSC to JIRA Bug Tracking Integration (2019)


Fix at the speed of DevOps
Create filters and issue templates for developer-specific views.

Audit Assistant reduces manual audit time by removing up to 90% of false positives with
machine learning-assisted auditing.

Audit Workbench enables rich analysis and automated triage.

Fix issues at the most efficient point with SmartView filters that show how issues are related
from a data flow perspective.

WHITE PAPER VIDEO


Fortify Audit Assistant Smart View Demo

Fortify SSC to JIRA bug tracking integration

/
Automate security within CI/CD Jenkins Plugin for Fortify SCA (v 19.2)
Automate security in the CI/CD pipeline with Swagger-supported RESTful APIs, GitHub repo,
plugins for Bamboo, VSTS and Jenkins, and integration with open source component
analysis tools.

Fortify SCA fits into existing development environments through scripts, plugins, and GUI
tools so developers can get up and running quickly and easily.

WEB PAGE WEB PAGE


Integration Ecosystem Fortify Marketplace

Scanning your code with Fortify SCA in Visual Studio

ScanCentral Overview (2020)


Scale your AppSec program
ScanCentral enables scaling with a static analysis farm that can be dynamically scaled to
meet the changing demands of the CI/CD pipeline.

Scan with flexible deployment. Fortify SAST is available on-premises, as a service, or in


hybrid mode to fit your business needs. You can start quickly and expand your AppSec
program centrally.

BROCHURE VIDEO
Build Application Security into Fortify demo with Visual Studio and
the Entire SDLC Azure DevOps

ScanCentral Overview

/
Case Studies

Trust the security of your software with the Vital Images, a medical imaging software
most comprehensive, integrated, company, leverages Fortify Static Code
enterprise-scale application security Analyzer to penetrate the DoD market.
solution.
Read case study ›
View case studies ›

Related Products
Fortify application security testing is available on demand or on-premises, offering organizations the flexibility needed
to build an end-to-end software security assurance program.

Fortify Application Security Fortify on Demand (FoD) Fortify Software Security


Fortify secures applications with Application security as a service with Center (SSC)
actionable results and integrates security testing, vulnerability management, Integrate and automate security testing
seamlessly with your development, test expertise, and support. with dev and get complete visibility of
and build tools. application security risks.

Learn more › Learn more › Learn more ›

/
Fortify named #1 for the Enterprise in Gartner Get suggestions on how to build your
Application Security Program
Critical Capabilities report

Take assessment ›

Gartner Magic Quadrant for


Application Security Testing

Learn more › Read report ›

Additional resources

Supported Languages What is Application Security?

What is DevSecOps? What is Open Source Security?

What is API Security? What is SAST?

What is DAST? Fortify Unplugged YouTube Channel


/
Fortify Integration Ecosystem Fortify Community

Gartner Magic Quadrant for Application Security Testing AppSec Blog

Fortify Marketplace

Discover Resources Company Legal & Compliance English US


Products Support Login About Privacy and Cookie Notice

Partners Resource Library Careers Website Terms of Use


Events & Webinars Free Trials Contact Us Code of Conduct
Marketplace Community Investor Relations Anti-Slavery Statement

TechBeacon Subscribe Corporate Blog Accessibility


Education Central Press Room
Corporate Social Responsibility

Tax Strategy

© Copyright 2020 Micro Focus or one of its a liates

You might also like