Average Ratings 0 Ratings

Total
ease
features
design
support

No User Reviews. Be the first to provide a review:

Write a Review

Average Ratings 0 Ratings

Total
ease
features
design
support

No User Reviews. Be the first to provide a review:

Write a Review

Description

Coverity Static Analysis serves as an all-encompassing solution for code scanning, assisting both developers and security teams in producing superior software that meets security, functional safety, and various industry standards. It efficiently detects intricate defects within large codebases, pinpointing and addressing quality and security concerns that may arise across multiple files and libraries. Coverity ensures adherence to numerous standards such as OWASP Top 10, CWE Top 25, MISRA, and CERT C/C++/Java, and offers comprehensive reports that help in monitoring and prioritizing issues. By utilizing the Code Sight™ IDE plugin, developers benefit from immediate feedback, including insights on CWE and instructions for remediation, directly integrated into their development settings, which helps to weave security practices seamlessly into the software development lifecycle while maintaining developer productivity. This tool not only contributes to enhanced code integrity but also fosters a culture of continuous improvement in software security practices.

Description

Find and fix security problems early with the most accurate results available in the industry. The OpenText™, Fortify™, Static Code Analyzer pinpoints security vulnerabilities, prioritizes issues that are most serious, and provides detailed instructions on how to fix these. A centralized software security manager helps developers resolve issues faster. Support for 1,657 vulnerabilities categories in 33+ languages and more than 1 million APIs. Fortify's integration platform allows you to embed security into the application development tools that you use. Audit Assistant allows you to control the speed and accuracy SAST scans by adjusting the depth and minimizing false-positives. Scale SAST scans dynamically up or down in order to meet the changing needs of the CI/CD pipe. Shift-left security is achieved in a single solution for cloud-native apps, from IaC through to serverless.

API Access

Has API

API Access

Has API

Screenshots View All

Screenshots View All

Integrations

Black Duck
GitHub
ThreadFix
Tromzo
.NET
Amazon Web Services (AWS)
CrowdStrike Container Security
Docker
Gradle
HTML
JSON
Kondukto
Maverix
Microsoft Azure
Salesforce
Snowflake
Snyk
Sonatype Nexus Repository
Visual Basic

Integrations

Black Duck
GitHub
ThreadFix
Tromzo
.NET
Amazon Web Services (AWS)
CrowdStrike Container Security
Docker
Gradle
HTML
JSON
Kondukto
Maverix
Microsoft Azure
Salesforce
Snowflake
Snyk
Sonatype Nexus Repository
Visual Basic

Pricing Details

No price information available.
Free Trial
Free Version

Pricing Details

No price information available.
Free Trial
Free Version

Deployment

Web-Based
On-Premises
iPhone App
iPad App
Android App
Windows
Mac
Linux
Chromebook

Deployment

Web-Based
On-Premises
iPhone App
iPad App
Android App
Windows
Mac
Linux
Chromebook

Customer Support

Business Hours
Live Rep (24/7)
Online Support

Customer Support

Business Hours
Live Rep (24/7)
Online Support

Types of Training

Training Docs
Webinars
Live Training (Online)
In Person

Types of Training

Training Docs
Webinars
Live Training (Online)
In Person

Vendor Details

Company Name

Black Duck

Founded

2002

Country

United States

Website

www.blackduck.com/static-analysis-tools-sast/coverity.html

Vendor Details

Company Name

OpenText

Founded

1991

Country

Canada

Website

www.opentext.com/products/fortify-static-code-analyzer

Product Features

Static Application Security Testing (SAST)

Application Security
Dashboard
Debugging
Deployment Management
IDE
Multi-Language Scanning
Real-Time Analytics
Source Code Scanning
Vulnerability Scanning

Static Code Analysis

Analytics / Reporting
Code Standardization / Validation
Multiple Programming Language Support
Provides Recommendations
Standard Security/Industry Libraries
Vulnerability Management

Product Features

Application Security

Analytics / Reporting
Open Source Component Monitoring
Source Code Analysis
Third-Party Tools Integration
Training Resources
Vulnerability Detection
Vulnerability Remediation

Static Application Security Testing (SAST)

Application Security
Dashboard
Debugging
Deployment Management
IDE
Multi-Language Scanning
Real-Time Analytics
Source Code Scanning
Vulnerability Scanning

Static Code Analysis

Analytics / Reporting
Code Standardization / Validation
Multiple Programming Language Support
Provides Recommendations
Standard Security/Industry Libraries
Vulnerability Management

Alternatives

Alternatives

PT Application Inspector Reviews

PT Application Inspector

Positive Technologies
Revenera SCA Reviews

Revenera SCA

Revenera
Flawnter Reviews

Flawnter

CyberTest