OpenText™ Fortify Static Code Analyzer pinpoints the root cause of security vulnerabilities in the source code, prioritizes the most serious issues, and provides detailed guidance on how to fix them. Plus, centralized software security management helps developers resolve issues in less time.
Gain support for 1,657 vulnerability categories across 33+ languages, spanning more than one million individual APIs.
Embed security into application development tools you use, with OpenText Static Application Security Testing (SAST)’s integration ecosystem.
Gain control of the speed and accuracy of SAST by tuning the depth of the scan and minimizing false positives with Audit Assistant.
Dynamically scale SAST scans up or down to meet the changing demands of the CI/CD pipeline.
Achieve comprehensive shift-left security for cloud-native applications, from IaC to serverless, in a single solution.
Deploy our industry-leading SAST solution on premises, in the cloud, or AppSec-as-a-service.
Automate, customize, and speed the identification and elimination of vulnerabilities.
Customize code analysis and apply rules to identify violations quickly, with multiple options to view results.
Identity and eliminate vulnerabilities in source, binary, or byte early in development, with accurate results based on the OWASP 1.2b Benchmark.
Integrate Fortify with CI/CD tools, including Jenkins, OpenText™ ALM Octane™, Jira, Atlassian Bamboo, Azure DevOps, Eclipse, and Microsoft Visual Studio.
Embed Fortify into the SDLC to reduce development time and cost by up to 25%. Find twice as many vulnerabilities and reduce false positives up to 95%.
Supports ABAP/BSP, ActionScript, Apex, ASP.NET, C# (.NET), C/C++, Classic, ASP (with VBScript), COBOL, ColdFusion CFML, Go, HTML, Java (including Android), JavaScript/AJAX, JSP, Kotlin, and more.
Includes options such as the SaaS-based Fortify On Demand platform, Fortify Hosted, which combines SaaS and on-premises features, and Fortify On-Prem, which offers full control over the Fortify solution.
Provides structural and configuration analyzers that are purpose built for speed and efficiency. Security Assistant only returns high-confidence findings with immediate results in the IDE.
Provides automated audit results in minutes, minimizing auditor workload and prioritizing issues with accurate and consistent audit results.
Enables lightweight packaging on the build server and provides a scalable, centralized, scanning infrastructure.
OpenText Professional Services combines end-to-end solution implementation with comprehensive technology services to help improve systems.
OpenText helps customers find the right solution, the right support, and the right outcome.
OpenText Learning Services offers comprehensive enablement and learning programs to accelerate knowledge and skills.
Explore our OpenText communities. Connect with individuals and companies to get insight and support. Get involved in the discussion.
Optimize the value of your OpenText solution with dedicated experts who provide mission-critical support for your complex IT environment.
See how customers are succeeding with OpenText Fortify Static Code Analyzer.
See more success stories