Fortify - Application Security
Recent statistics show that almost half of breaches that cause material damage occur via applications. HP Fortify provides software and services that help organization secure applications to prevent those attacks. This blog serves as a platform for our penetration testers, product managers and marketers, and software engineers to provide analysis and insight regarding both web application security and how organizations can utilize our products and services to better secure their applications. For more information, visit

HP WebInspect 10.40 Available Now!

Software Security.pngThe HP WebInspect (DAST) team has been working diligently on the latest enhancements to the software and the product is finally ready for release. HP Fortify and the WebInspect team are proud to announce the release of WebInspect 10.40.  Current customers can upgrade their installation to version 10.40 using the SmartUpdate utility. Additionally, customers can download the latest release from the My Software Updates portal.


Validating SQL injection security findings with WebInspect’s SQL Injector tool

In the process of application security testing, vulnerability scanning tools like HP WebInspect will report that they’ve found a SQL injection vulnerability. Because this type of vulnerability will sometimes produce a false positive, it is important to validate the finding.

Tags: Fortify

WebInspect Web Proxy Attack String Obfuscation Automation

Web Inspect.jpgSee how HP WebInspect Web Proxy application tool can be a useful feature for obfuscation of attack strings with various types of character set encodings to help bypass Web Application Firewalls (WAF).

Dynamic protection with HP TippingPoint and HP Fortify

Tipping Point and HP Fortify.jpegWhat happens during the time you discover an app vulnerability until you can actually fix it? If you’re an HP TippingPoint or Fortify customer—don’t worry about it—we’ve got you covered.  

WebInspect Release 10.20 in-depth series - Part 1 - The WebInspect API

WebInspect released version 10.20 back in April (to existing Fortify customers) with several new features and enhancements, so I thought I would start a series to talk a little deeper about each of these. I will start this series off with what I believe to be the one of the most important features: the new WebInspect API.

Labels: Fortify| WebInspect

GWT App, meet application security via WebInspect

hand-shake-love.jpgI am particularly excited about the newest 10.2 release of WebInspect as it is now the first scanner that has real Google Web Toolkit (GWT) support.  Come on in to find out the details...

Labels: WebInspect

HP Fortify security solutions at HP Discover 2014

HP Discover.pngAt HP Discover, we offer hands-on activities for all attendees. Read more about session TNG3405, Fortify Security Solutions, in this post. 

Showing results for 
Search instead for 
Do you mean 
About the Author(s)
Top Kudoed Posts
HP Blog

HP Software Solutions Blog


Follow Us
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.