Fortify Static Code Analyzer

Fortify Static Code Analyzer

Category: SAST
License: Commercial
Visit Website →

Fortify Static Code Analyzer is OpenText’s enterprise SAST solution.

The tool identifies 1,700+ categories of vulnerabilities across 33+ programming languages and covers over one million individual APIs.

Fortify Language Coverage

Supported Programming Languages

Fortify SCA provides comprehensive language support including:

  • ABAP/BSP
  • ActionScript
  • Apex
  • ASP.NET
  • C# (.NET)
  • C/C++
  • Classic ASP (with VBScript)
  • COBOL
  • ColdFusion CFML
  • Go
  • HTML
  • Java (including Android)
  • JavaScript/AJAX
  • JSP
  • Kotlin
  • MXML (Flex)
  • Objective C/C++
  • PHP
  • PL/SQL
  • Python
  • Ruby
  • Swift
  • T-SQL
  • VB.NET
  • VBScript
  • Visual Basic
  • XML

Key Capabilities

Fortify SCA offers broad vulnerability detection capabilities across mature programming languages with flexible deployment options.

The tool integrates with major IDEs and CI/CD pipelines for seamless development workflow integration.

Note: Now under OpenText, which acquired Micro Focus in 2023. Includes Fortify Aviator AI for automated code fixes.

Other SAST Tools

Bandit
Bandit

Open-Source Python Scanner

Brakeman
Brakeman

Open-Source Ruby on Rails

Checkmarx
Checkmarx

Gartner Leader for Enterprise SAST

Codacy
Codacy

40+ Languages with AI Code Protection

See all SAST tools