HPE Security Fortify Static Code Analyzer (SCA) Integration

Hewlett_Packard_Enterprise_logo.svg

HPE Security Fortify SCA scans source code to identify software security vulnerabilities with issues traced to the line of code. Use ThreadFix to incorporate HPE Security Fortify SCA scan results with your other tools to maximize your investment, while consolidating scan results across tools.

arrow

Import and Track HPE Security Fortify SCA SAST Results

ThreadFix allows users of HPE Security Fortify SCA to import scan results, merge them with other scanning results, and track the scan results over time. This automated results merging allows analysts time to focus on higher-value activities. Learn More >

arrow

Create Benchmarking and Trending Reporting

Tracking over time allows users of HPE Security Fortify SCA to create trending reports and automatically calculate mean-time-to-fix (MTTF) for identified vulnerabilities. Learn More >

Icon_1

Merge HPE Security Fortify SCA SAST Results with DAST Scanning Results

Organizations using HPE Security Fortify SCA along with dynamic (DAST) application scanning technologies can save time using ThreadFix’s Hybrid Analysis Mapping (HAM) to automatically merge the Fortify results with those of DAST tools. This greatly simplifies data management for security analysts.

clock

Schedule Regular Scans Via ThreadFix Scan Orchestration

ThreadFix’s scan orchestration allows security analysts to store scan configurations and schedule regular scans of applications. This frees the analyst from manually running scans and automatically loads updated scan results into ThreadFix for review.

Take ThreadFix for a test drive.

DOWNLOAD A TRIAL