HPE Security Fortify Static Code Analyzer (SCA) Integration
HPE Security Fortify SCA scans source code to identify software security vulnerabilities with issues traced to the line of code. Use ThreadFix to incorporate HPE Security Fortify SCA scan results with your other tools to maximize your investment, while consolidating scan results across tools.
Import and Track HPE Security Fortify SCA SAST Results
ThreadFix allows users of HPE Security Fortify SCA to import scan results, merge them with other scanning results, and track the scan results over time. This automated results merging allows analysts time to focus on higher-value activities. Learn More >
Create Benchmarking and Trending Reporting
Tracking over time allows users of HPE Security Fortify SCA to create trending reports and automatically calculate mean-time-to-fix (MTTF) for identified vulnerabilities. Learn More >
Merge HPE Security Fortify SCA SAST Results with DAST Scanning Results
Organizations using HPE Security Fortify SCA along with dynamic (DAST) application scanning technologies can save time using ThreadFix’s Hybrid Analysis Mapping (HAM) to automatically merge the Fortify results with those of DAST tools. This greatly simplifies data management for security analysts.
Schedule Regular Scans Via ThreadFix Scan Orchestration
ThreadFix’s scan orchestration allows security analysts to store scan configurations and schedule regular scans of applications. This frees the analyst from manually running scans and automatically loads updated scan results into ThreadFix for review.