Fortify Software
Collaborative Remediation
Fortify 360 offers the most flexible, collaborative, and effective processes for triaging and fixing the vulnerabilities identified by its three analyzers.
Audit Workbench
Fortify 360 provides a powerful and user friendly workspace to help auditors triage results. Results from each analyzer are fed into Audit Workbench, where an auditor can assess the list of vulnerabilities, and send them to developers for remediation
Collaboration Module
Fortify 360 offers flexible and powerful capabilities that allow people to collaborate more effectively to resolve security issues faster. Through a shared work environment, called the Collaboration Module, your teams can create and track issues and share code views.
Instantaneous Application Hardening
Fortify 360 offers a unique capability for your applications that must be deployed quickly or that have already been deployed. With a simple installation, its Application Hardening feature can harden an application against a broad assortment of vulnerabilities, including SQL injections, cross-site scripting, content spoofing, information leakage and many more.
Integration with Bug Tracking and IDEs
Fortify 360 also offers integration via bug tracking systems and allows a straight upload into a developers IDE.
Contact me about products from Fortify Software
"We strongly believe that Fortify's holistic approach to application security - implementing security during all stages of development, rather than after the fact - proactively helps eliminate business risk and truly safeguards our enterprise against today's ever-changing security threats."
Craig Shumard, CISO, CIGNA
"We looked into a number of tools and tested them against our source base. The vast majority of them could not handle the size, scope and nature of our applications. Of all the products we tested, Fortify came closest to our technical requirements."
Oracle
"Fortify is one of the largest SAST vendors, with strong innovation as well as execution capabilities. It has expanded its technologies beyond SAST into a broader spectrum of application security disciplines that supplement its core SAST capabilities."
Gartner MQ
"Auditing at the source code level is the best way to protect applications early in the SDL. Fortify SCA will give us the opportunity to fix vulnerabilities before we push out new versions of our applications. In our view, the alternative is a security breach, and that is simply unacceptable."
Mark Crockett, Vice President of Technology and CTO of Informa Investment Scorecard
"Fortify is one of the largest SAST vendors, with strong innovation as well as execution capabilities. It has expanded its technologies beyond SAST into a broader spectrum of application security disciplines that supplement its core SAST capabilities."
Gartner MQ
"We are very pleased with our decision to integrate Fortify products into our source code review and applications security audit processes"
Rick Dakin, QSA and Cofounder of Coalfire
© 2010 Fortify Software Inc., Headquartered in San Mateo, CA USA, (650) 358-5600
eNewsletter Sign Up | Software Security Blog | Contact Us | Privacy