SAST with Fortify SCA: Scanning on The Command Line or a Script
An overview of Fortify Static Code Analyzer (SCA), including the code scanning process, and then a demo of Scanning on The Command Line or a Script.
Fortify Static Code Analyzer (SCA) is the industry-leading SAST tool. This on-premises tool also powers Fortify on Demand for Fortify on Demand (FoD), which is a complete application security as-a-service (AppSec SaaS) solution with SAST, DAST, IAST, RASP, SCA (open source security), and developer security training.
There are several ways to perform scans using Fortify SCA.
1. From the CLI (command-line interface) or Script that use Source Analyzer (this video)
2. From the CLI or Script that use ScanCentral
3. Within a supported IDE (integrated development environment)
4. As part of a CI Pipeline
This video is part 1 of a series showing each of these methods.
LEARN MORE about Fortify: https://www.microfocus.com/en-us/solu...
LEARN MORE about how Micro Focus was named a leader in the Gartner MQ for Application Security Testing: https://software.microfocus.com/en-us...
LEARN MORE about how Fortify received the highest score in the Gartner Critical Capabilities for Application Security Testing report for the Enterprise use case AND the Mobile and Client use case: https://www.microfocus.com/en-us/asse...
SUBSCRIBE TO FORTIFY UNPLUGGED: / @fortifyunplugged
CONNECT with the Fortify Online Community: https://community.microfocus.com/t5/F...
Connect with peers and share your knowledge
Find solutions and answers to your technical questions
Stay informed on new releases and product enhancements
Access downloads, demos, videos and support tips
