ThreadFix is a software vulnerability aggregation and management system that reduces the time it takes to fix software vulnerabilities. It imports the results from dynamic, static, and manual testing to provide a centralized view of software security defects across development teams and applications. The system allows companies to correlate testing results and streamline software remediation efforts by simplifying feeds to software issue trackers. By auto-generating application firewall rules, this tool allows organizations to continue remediation work uninterrupted. ThreadFix empowers managers with vulnerability trending reports that show progress over time, giving them justification for their efforts.
|Tags||Java spring hibernate Security Server IDS IPS virtualpatching Application Security Software security web application firewall web application scanner static analysis|
|Operating Systems||Windows Linux OS X|
|Implementation||Java spring hibernate|
Release Notes: New dynamic scanner support for IBM Rational AppScan Enterprise and NTObjectives NTOSpider, new static scanner support for IBM Rational AppScan Source which is a huge update over the previous Ounce-based importer, support for Microsoft Team Foundation Server (TFS) as a defect tracker, overhauled support for the JIRA defect tracker, vastly improved Active Directory (AD) and LDAP support, vulnerability comments and discussions, and an updated role-based security model that supports larger enterprise deployment requirements.