Hello,
For an application that is developed in .Net Core, for example, but also has JavaScript (React) on the front end, what technology stack do we need to specify for the scan?
If we chose .Net Core from "Techonlogy Stack" drop dpwn, would the JS…
Good day to everybody, I have a problem running a Fortify On Demand pipneline in Azure Devops. It is the IWA-JAVA application for DEMO.
The error in question is the following
" Error: LinkageError occurred while loading main class com.fortify.scancentral…
I have a FOD account. I have created an application and under that I have 6 Microservices that are to be scanned.
Normal FOD scan no issues, I go to the Application then scan the required Microservice.
If i need to integrate the same in GitHub actions…
Hi I have the following issue I'm trying to run a scan to FOD with the plugin for Inteliij but the following error appeared.
Logs:
Anyone knows why this is happening?
Hi Team, We have integarted FoD with azure Devops and when we are running the Fortify on Demand Static Assessment Task in azure devops pipeline that time we are getting the below error. ##[error]Response status: 500 ##[error]Failed to download ScanCentral…
Fortify hosted services have now been fully restored. We apologize for any inconvenience this unplanned outage may have caused and appreciate your understanding.
Hi, I have installed plugin, before extract code. Is it ok to keep Translations Parameters and scan parameter blank? What all files are require to upload on FoD portal after code extarction (FPR,genrated Zip file,etc.) Thanks in advance
Reduce false positives with Fortify Audit Assistant
Learn how to leverage machine learning to automatically audit vulnerabilities, reduce false positives and scale auditing in Fortify’s new AppSec unplugged video: ...
read more at brighttalk
Customer Success Story: Fast and cost effective app security clearance with Fortify on Demand
See how Fortify on Demand helped deliver a fast and cost effective app security clearance for TLT's revolutionary new…
Get a Personalized Demo of Fortify On-Demand
Managing Application Security can be slow, tedious, and yield false positives, but with Fortify on Demand, that’s not the case. See our new AppSec video and create your own personalized demo. ...
Fortify Hands-On Workshop
Integrating security into your continuous integration/continuous delivery model is the best way to embed security into the fabric of your software. Fortify makes security available and accessible for developers, QA and Ops…
read more at arrowecs
Event Detail - Micro Focus Fortify - Soluzioni di Sicurezza Applicativa
In Italian. Arrow ECS is a leading distributor of IT security and Internet technology solutions. Arrow ECS e Micro Focus sono lieti di invitarti…
read more at brighttalk
Video: Fast and cost effective app security clearance with Fortify on Demand
See how Fortify on Demand helped deliver a fast and cost effective app security clearance for TLT's revolutionary new medical device....
Micro Focus Fortify Newsletter April Edition - click pdf file to open latest newsletter
Spring is here for the northern hemisphere! Spring means blossoms, more daylight and nature revitalizing itself. For AppSec professionals,…
By integrating Black Duck Hub with Micro Focus Fortify Software Security Center or Fortify on Demand, the results of open source scans are loaded alongside your static and dynamic analysis testing for comprehensive visibility into both open source and…
Hi, I want to ask your support about how long it takes for FOD basic assessment (each assessment) scan and re-scan after fixing vulnerabilities? Thanks for your kind response. Regards,
Hi, I want to ask your support about how long it takes for FOD basic assessment (each assessment) scan and re-scan after fixing vulnerabilities? Thanks for your kind response. Regards,
As I am creating custom filter sets, I see different Audience value (Broad, Medium, Targeted, FOD) generates different results. I cannot seem to find the definition of each value. Anyone can provide some insight on what each value mean and its intended…
Attempting to use the SSC Link software provided under FoD to link applications between FoD and SSC. The applications from FoD populate fine using the api/secret. No applications are pulled from the SSC server. Looking under the history tab under FPR…
Before answering many small queries in the forums, let's drop in a big notepad of ideas here. Most configurations are only required after a particular scenario is encountered.
Updates:
JUN 2020 - SPA section,
MAR 2020 - cleaning up SPA section…
Hi Everyone, Has anybody uploaded and scanned ABAP code in HPFoD? My understanding pertaining to ABAP code is, The source code needs to be extracted from SAP DB, zipped and uploaded into HPFoD for scanning. Inorder to extract the source code from SAP…