OpenText
Fortify SCA(Static Code Analyzer)
What is Fortify SCA?
OpenText Fortify SCA(Static Code Analyzer)
Code-level static security vulnerability analysis for 787+ security categories and 25 development languages
Supports 1,007,000+ packages and frameworks including Apache Axis, Struts, Google Web Toolkit, Hibernate, Spring, Spring MVC, .NET, and more.
Product Introduction
Product Features
Analyzer
Languages
Vulnerabilities
Support
1. Fortify Static Code Analyzer
Fortify Static Code Analyzer is a tool for analyzing software that violates security coding rules in various languages.
Industry-leading development language support
Accurate location identification and rich data provision by the analyzer
Analysis information provided to make security code reviews more efficient and consistent
Rapid integration of new third-party and customer-specific security rules
Product Introduction
Key Functions
Vulnerability Detection and Management
Source Code Security Vulnerability Detection and Remediation through Static Analysis - Fortify Static Code Analyzer (SCA)
· Fortify static (secure coding) diagnostic engine (Fortify Source Code Analyzer)
· Data flow diagnosis / semantic diagnosis / control flow diagnosis / configuration diagnosis / structure diagnosis
· X-tier Tracking diagnosis
Security Assistant Solution for Real-time Secure Coding - Fortify Security Assistant
· Real-time vulnerability exploration during developer coding
· Discovered vulnerabilities immediately displayed on code in development tool
· Development tool plugin support allowing developers to directly verify vulnerabilities
· Proactively address vulnerabilities and link with existing Fortify SCA analysis for precise analysis