Fortify Static Code Analyzer
快速构建安全软件。通过业内最准确的结果及早发现安全问题,并以 DevOps 的速度将其修复。
行业领先的 SAST
笔者注:Static Application Security Testing (SAST)
快速、无摩擦的静态分析,不牺牲质量,且涵盖 29 种以上的语言和框架。
有信心尽早发现安全问题 (sysin),以 DevOps 速度修复问题。
借助强大的集成生态系统和开放源代码组件分析工具,在 CI/CD 管道中自动实现安全。
功能
借助专为现代应用程序而构建的行业领先的 SAST 解决方案,保持软件恢复能力。
- 灵活的部署
行业领先的 SAST 解决方案,可应用于本地、云端或 AppSec-as-a-Service。
-
安全的云本机应用程序
为云原生应用程序分享全面安全左移 (sysin),以及从 IaC 到无服务器的单个解决方案。
-
SAST 中的速度与深度
通过 Audit Assistant 调节扫描深度,并最大限度减少误报,从而控制 SAST 的速度和准确性。
-
企业规模
动态扩展或缩小您的 SAST 扫描,以符合 CI/CD 管道不断变化的需求。
Gartner AST 魔力象限领导者
Forify 已连续九年被评为魔力象限领导者。
阅读报告:Magic Quadrant for Application Security Testing 2022
关于 CyberRes
在数字经济中取得成功
知识兔的使命和热情是帮助知识兔的客户变得更有弹性,以便他们能够发展业务
CyberRes 是 Micro Focus 的业务线。知识兔带来世界上最大的安全产品组合之一的专业知识,通过在他们的团队和组织中建立网络和业务弹性,帮助知识兔的客户驾驭不断变化的威胁形势。知识兔在这里帮助企业在逆境、危机和业务动荡时期提高信任度、可靠性和生存能力。
知识兔是一整套应对不利条件的数字化转型解决方案的一部分,因此企业可以在今天继续运营,保持活力,转型以发展并利用明天的机会。
系统要求
Hardware Requirements
Fortify recommends that you install Micro Focus Fortify Static Code Analyzer on a high‑end processor with the hardware requirements described in the following table (sysin).
| RAM | Processor | Programming Language to Analyze |
|---|---|---|
| 16 GB | Quad-core | Non-dynamic languages |
| 32 GB | Eight-core | Dynamic languages such as JavaScript, TypeScript, Python, PHP, and Ruby |
Increasing the number of processor cores and RAM both result in faster processing. If your software is complex, you might require more RAM or processors. See the information about improving performance in the Micro Focus Fortify Static Code Analyzer User Guide for recommendations.
Software Requirements
Micro Focus Fortify Static Code Analyzer requires Java 11 (sysin). The Fortify Static Code Analyzer and Applications installation includes an embedded OpenJDK/JRE version 11.0.16.1.
Platforms and Architectures
Micro Focus Fortify Static Code Analyzer supports the platforms and architectures listed in the following table.
| Operating System | Platforms / Versions |
|---|---|
| Windows | Windows 10, 11, Windows Server 2016, Windows Server 2019, Windows Server 2022 |
| Linux | CentOS Linux 7.x (7.6 or later), CentOS Linux 8.x (8.2 or later), Red Hat Enterprise Linux 7.x (7.2 or later), Red Hat Enterprise Linux 8.x (8.2 or later) (sysin), SUSE Linux Enterprise Server 15, Ubuntu 20.04.1 LTS, Ubuntu 22.04.1 LTS |
| macOS | 12, 13 |
| AIX | 7.1 Important! You must have the IBM XL C/C++ for AIX 16.1 Runtime environment package installed. |
| Solaris SPARC | 11.3 |
| Solaris x64 | 11.4 |
Fortify Static Code Analyzer Tools (including Secure Code Plugins) support the platforms and architectures listed in the following table.
| Operating System | Platforms / Versions |
|---|---|
| Windows | 10 |
| Linux | Red Hat Enterprise Linux 7.x, 8, SUSE Linux Enterprise Server 12, 15 Important! Fortify Audit Workbench, Fortify Custom Rules Editor, and Fortify Scan Wizard require GTK version 3.22 or later. Some platform versions include this requirement such as Red Hat Enterprise Linux 7.4 or later and SUSE 12 SP3 and later. |
| macOS | 12, 13 |
Fortify Static Code Analyzer 23.1.0 for macOS
Fortify Static Code Analyzer 23.1.0 for Linux
Fortify Static Code Analyzer 23.1.0 for Windows
下载仅供下载体验和测试学习,不得商用和正当使用。
下载体验
