1. Главная
2. Fortify Unplugged

In AppSec, security scan noise is an issue that slows down fast software development. Noise is all output that is considered irrelevant or not worth acting upon by users. If there is too much noise, this can have detrimental effects on the success of implementation:
For security auditors, they can be swamped auditing results
If this noise ends up with developers’ directly, they may lose confidence in the tool

There are a subset of scan findings where the Fortify static scan tool worked as intended; however, the issue is considered irrelevant due to the context, risk appetite, etc.

This explainer video walks through several tools within Fortify that help reduce the noise:

0:22 What is noise in AppSec

3:25 Fighting the noise

4:43 Prescan and During scanning
Filter file
File exclusions
Custom Rules

6:33 Filtering in Fortify on Demand (FoD): Audit Template

8:22 Custom rules

11:38 Post Scan options
Audit Assistant
AWB/SSC Filters

16:02 Fortify on Demand options

Related videos:

Fortify on Demand - Implementing Cleanse Rules (Reducing False Positives):    • Fortify on Demand - Implementing Clea...  

Fortify on Demand - Cleanse Rules:    • Fortify on Demand - Cleanse Rules  

LEARN MORE about Fortify: https://www.microfocus.com/en-us/solu...

LEARN MORE about how Micro Focus was named a leader in the Gartner MQ for Application Security Testing: https://software.microfocus.com/en-us...

LEARN MORE about how Fortify received the highest score in the Gartner Critical Capabilities for Application Security Testing report for the Enterprise use case AND the Mobile and Client use case: https://www.microfocus.com/en-us/asse...

SUBSCRIBE TO FORTIFY UNPLUGGED:    / @fortifyunplugged  

CONNECT with the Fortify Online Community: https://community.microfocus.com/t5/F...
Connect with peers and share your knowledge
Find solutions and answers to your technical questions
Stay informed on new releases and product enhancements
Access downloads, demos, videos and support tips

play_arrow

437,078

8.1 тыс

Byzantine Emperors Family Tree (Constantine the Great to 1453)

play_arrow

55

2

РУССКИЕ аниматоры в виде ЭМОДЖИ ★

play_arrow

86,556

1.1 тыс

К сожалению в данный момент вы можете отправлять сообщения только взаимным контактам (ЧАСТЬ 2)

play_arrow

1,218,520

34 тыс

ROBLOX AMONG US 2...

play_arrow

62

2

How To Download And Install Windows 11 Through Windows Update - Gecko Admin

play_arrow

11,371

1.3 тыс

Dominikanie na niedzielę 28.04.2024 || Krzysztof Pałys OP

play_arrow

20,916

477

🚦Магазин СВЕТОФОР завалило шикарными новинками отличного качества по низкой цене. 😲👍

play_arrow

1,461

83

PlayerUnknown’s Battlegrounds. Питничный стрим [1440]