HP Fortify

HP Fortify integrates family of the software products intended for detection of vulnerabilities which can be used by malefactors for implementation of the attacks. HP solutions of Fortify provide detection and elimination of vulnerabilities, both at a development stage, and at a stage of implementation and operation of the application software.

HP Fortify Static Code Analyzer - provides detection of vulnerabilities by the analysis of the source code of applications. This solution supports an opportunity for work with the following programming languages: ABAB, ActionScript, ASP, ASP.NET, C, C ++, C#, COBOL, Cold Fusion, Java, JavaScript/AJAX, JSP, Objective-C (iOS), PHP, PL/SQL, Python, T-SQL, VB.NET, VBScript, VB6, XML/HTML.

HP Fortify on Demand is implementation of a cloud service based on the HP solution of Fortify Static Code Analyzer. This service allows clients to load the source code of the application on a HP server of Fortify on Demand, to execute its check and then to receive analysis results with information on the revealed vulnerabilities.

HP WebInspect – represents the specialized network scanner intended for detection of vulnerabilities in Web applications and services. HP WebInspect imitates network attacks and on the basis of the analysis of the received results creates the report with information on the revealed vulnerabilities and recommendations about their elimination.

HP Fortify RTA – is the specialized solution which is embedded in applications on the Java and .NET platforms and analyzes their work by interception of system calls "from within". In case of identification of the potential attacks in the course of operation of application, HP Fortify RTA can or block them, or to notify on it a security administrator.