Dependency-Track Integration with Fortify Software Security Center (2019)

preview_player
Показать описание
The Dependency-Track plugin allows Fortify Software Security Center (SSC) to integrate results from Dependency-Track alongside findings from Fortify Static Code Analyzer (SCA), providing a consolidated view of security-centric code findings and vulnerable component findings.

Dependency-Track
- Software Supply Chain Component Analysis Platform
- Identifies risk in 3rd party and open source components
- Flagship OWASP project
- Open source – Apache 2.0 license


Fortify SSC Plugin API:
Dependency-Track SSC Plugin:
CycloneDX

  1. Fortify Unplugged
  2. application security testing
  3. software vulnerability testing
  4. security defects
  5. appsec
  6. fortify
Рекомендации по теме
Dependency-Track Integration with 0:06:03

Dependency-Track Integration with Fortify Software Security Center (2019)

Tool Review: Dependency 0:14:41

Tool Review: Dependency Track

Dependency-Track Introduction and 0:06:23

Dependency-Track Introduction and How to Setup Dependency track

Dependency Track SaaS: 0:02:05

Dependency Track SaaS: Features and Functionality

Dependency Track: Managing 0:03:07

Dependency Track: Managing Your Software Supply Chain with Open Source Dependency Management Tool

Dependency-Track Overview 0:05:29

Dependency-Track Overview

Reducing Supply Chain 1:30:22

Reducing Supply Chain Risk with SBOMs and Dependency-Track

OWASP Flagship Projects: 0:24:58

OWASP Flagship Projects: OWASP Dependency Track - Steve Springett

HPE Fortify Software 0:03:48

HPE Fortify Software Security Center Demo 720p

Find and Track 0:26:34

Find and Track the hidden vulnerabilities inside your dependencies (Julien Topçu)

WpBom | Integrate 0:05:54

WpBom | Integrate Dependency Track with WordPress!

[OWASP Moscow Meetup 0:16:41

[OWASP Moscow Meetup #9] «Dependency Track», Тарас Иващенко, OZON

OWASP Spotlight - 0:15:59

OWASP Spotlight - Project 15 - OWASP Dependency Track

Find and Track 0:30:31

Find and Track the hidden vulnerabilities inside your dependencies by Julien Topçu

Dependency Track - 0:34:22

Dependency Track - Steve Springett

Fortify Demo with 0:26:44

Fortify Demo with Visual Studio and Azure DevOps (2019)

Securing the Software 0:15:39

Securing the Software Supply Chain Demo: Fortify + Debricked

Application Security with 0:02:50

Application Security with Fortify – Integrate into the SDLC

OWASP Dependency Track 1:05:50

OWASP Dependency Track and CycloneDX SBOM Standard - Steve Springett

Working with the 0:20:55

Working with the Fortify Software Security Center (SSC) API

Fortify on Demand 0:03:27

Fortify on Demand - JIRA Integration

FLOSS Weekly 478: 1:02:05

FLOSS Weekly 478: OWASP Dependency-Track

Limiting Supply Chain 0:56:15

Limiting Supply Chain Risk with Dependency-Track

Importing CycloneDX BoM 0:02:40

Importing CycloneDX BoM into Dependency-Track

Комментарии
Автор

Awesome video and walk through! Thank you, Steve and team!

erdemgsu