Fortify Integration Ecosystem

Embed security into application development and deployment to deliver on the promise of DevSecOps.

DevOps and Application Security

Application security must be seamless throughout the software development lifecycle (SDLC). Fortify application security is designed to be built-in to your DevOps process. DevOps speed at enterprise scale doesn’t mean sacrificing security and putting your business at risk.

Integration into the tools you use enables you to test your applications early and often, find security issues and fix them as part of the development testing cycles. Our integration ecosystem:

  • Makes it easy for developers to use
  • Leverage investment in current tools
  • Reduce friction by embedding security in your current process

Swagger is leveraged throughout our APIs to provide documentation / API self-reference. Our Fortify Github page has several projects with examples of how to leverage our various APIs to perform frequently requested tasks. The API reference is built into the products and can be accessed through the web interface of the respective products.

IDEs
eclipse
Learn more
visual studio
Learn more
IntelliJ / Android Studio
Learn more
Visual Studio Code
Learn more
CI/CD Servers
Fortify Jenkins Plugin
Learn more
azure
Learn more
Bamboo
Learn more
fortify_on_demand_uploader
Learn more
GitLab
Learn more
GitHub (Fortify on Demand)
Learn more
Build Tools
Maven
Learn more
Make
Documentation
Gradle
Documentation
MSBuild
Documentation
Ant
Documentation
Testing Tools
WebInspect Swagger API Scanning
Learn more
WebInspect Selenium Support
Learn more
UFT logo
WebInspect UFT Documentation
Source Control
GitHub (Fortify on Demand)
Learn more
BitBucket (Fortify on Demand)
BitBucket (Fortify on Demand)
GitLab
Learn more
Ticketing Systems / GRC Platforms
Jira
Learn more
ALM Octane
Learn more
Bugzilla
Documentation
Install
Open Source/Software Composition
Sonatype Nexus Lifecycle Integration with SSC
Learn more
Snyk Plugin for SSC
Learn more
WhiteSource
Documentation
Install
Black Duck
Documentation
Dependency-Track
Learn more
Application Security Training
Fortify on Demand Training
Learn more
Secure Code Warrior
Learn more
Single Sign On
Fortify Software Security Center (On-Premise)
Fortify Software Security Center (On-Premise)

CAS | SPENGEO based Kerberos | SAML 2.0 | x509

Fortify on Demand
Fortify on Demand

SAML 2.0

Miscellaneous
Fortify on Demand Slack Integration
Fortify on Demand Slack Integration

Documentation

Fortify Software Security Center (SSC)
Learn more
Partner Integrations
Fortify SonarQube Plugin
Learn more
Fortify SSC / SAP CVA Integration
Learn more
API Testing
Postman
Open API
OData
Burpsuite

Micro Focus Fortify is a Leader in the Gartner Magic Quadrant for Application Security Testing

Read report

Additional Resources

Fortify Certifications
White Paper: Continuous delivery of business value with Fortify
Glossary: What is application security
The State of Application Security in the Enterprise
Fortify Lookbook
White paper: Seamless Application Security: Security at the Speed of DevOps
White paper: Audit Assistant: Increase Efficiency with Automated Auditing of Static Scans with Fortify
Data sheet: Fortify Audit Assistant
Supported Languages

Related Products, Solutions and Services

Fortify Application Security
Fortify Software Security Center
Fortify WebInspect
Fortify Application Defender
Fortify Static Code Analyzer
Fortify on Demand