Application Security with Fortify on Demand

Application security testing (AST) is all about identifying and fixing vulnerabilities in software applications. It ensures that apps are secure from various threats throughout their lifecycle, from development to deployment and beyond. There are several types of AST, like Static Application Security Testing (SAST) which examines the source code, and Dynamic Application Security Testing (DAST) which tests running applications. Think of it as a thorough health check-up for your software!

OpenText™ Fortify™ On Demand (hereafter referred to as "FoD") offers application security (AppSec) as a service providing customers with their own cloud-based tenant

FoD includes all essential tools that enable customers to streamline their Software Security Assurance Programs in a way that is effective and efficient at the same time.

FoD is an enabler for DevSecOps best practices towards secure development and continuous feedback at DevOps speed

Opentext claims that FoD is the only application security provider offering SAST, SCA, DAST, IAST, and MAST as services and is capable for rapidly resolve issues throughout the SDLC efficiently, supported by thorough assessments from security experts.

In a nutshell, FoD utilizes a user-friendly integration ecosystem to fortify customers' software supply chain and support scalable maturity.

In this course you will learn the following:

1. Section I - Theoretical

   • Course Agenda

   • Terminology

   • Market Analysis

   • Fortify on demand Overview and Licensing model

   
   

2. Section II – Hands-On

   • Requesting FoD Trial License

   • FoD Portal Walk-through

   • Application On-boarding and Scan Setup

   
   

3. Section III – Integrations

   • Visual Studio IDE Integration

   • GitHub CI/CD Pipeline Integration

   • FoD Connect