Resources
Featured Resources
Technical documents
Fortify on Demand Datasheet

Managed application security testing available on demand.

Resources
White papers
Application Security and DevOps Report

What is the true state of security in DevOps? Find out in this new research study highlighting the critical need for closer integration between organizations’ security and DevOps teams.

White papers
Seven Pernicious Kingdoms – HP Fortify Taxonomy: Software Security Errors

This site presents a taxonomy of software security errors developed by the Fortify Software Security Research Group together with Dr. Gary McGraw..

Videos and webinars
Real–world cross–site request forgery and scripting

In this session, Daniel Miessler will show you real-world attacks that may be using CSRF and XSS, tell you what they can do to you if you're vulnerable, and explain how to find and validate these threats

Videos and webinars
How PCI DSS has changes application security

In this Web Event , Rick Dunnam will discuss the ways in which PCI has changed application security (not always for the better), and explain how your organization can best approach this complicated issue

Videos and webinars
Application Security Animation

Is your application vulnerable to security threats? See this video to learn how to keep apps safe and secure

Videos and webinars
What is Application Security?

This webinar is about eliminating exploitable security risk in software at the application code level, making it immune to attack even if intruders get past perimeter defenses

Technical documents
FOD Sonatype Sample Report

Attached is a sample Application Composition report

Technical documents
HPE Security Fortify on Demand Service Description

This document describes the components and services included in HPE Security Fortify on Demand.

Technical documents
Preparing files for upload to HPE Security Fortify on Demand

Static Application Security Testing inspects the application binary or source code for insecure coding patterns that lead to vulnerabilities. In order to perform this tests the application code must be packaged and sent to...

Technical documents
Fortify on Demand Datasheet

Managed application security testing available on demand.