HP Fortify

Application Security

Comprehensive application security solutions from HP Fortify cover every aspect of application security testing, software security management and application self-protection to help you secure the software that runs your business.

White Paper (PDF 321 KB)

Application Security Solutions

Static Application Security Testing

Automate static application security testing (SAST) with HP Fortify Static Code Analyzer and enable application developers to stay focused on innovation by giving them line of code detail on vulnerabilities found and the context they need to remediate quickly.

Dynamic Application Security Testing

Automate dynamic application security testing (DAST) with HP WebInspect so you can scan more code, more quickly– and with better results. Used by professional security testers and novices, WebInspect goes beyond Black Box testing for comprehensive application coverage.

Application Self-Protection

Enable security teams to be confident that Java and .NET applications are running safely in production and not presenting any threat to business assets with HP Application Defender.

Software Security Program

Build a software security program using HP Software Security Center. Correlate application security testing results and distribute security intelligence across your organization. Speed audits, integrate the latest research and maintain a clear, accurate picture of the entire security development life cycle (SDLC).

Managed Security Testing

Get professional application security testing capabilities with HP Fortify on Demand and bring confidence to your organization by leveraging HP managed security services. Our experienced testers use cutting-edge application security testing technologies to augment your internal testing team or manage a complete software security assurance program for you.

Software Security Consulting

Get the maximum value from application security solutions through hands-on training, personalized consulting, and customized implementation using defined methodologies and best practices derived from application security deployments at leading enterprises around the world.