• State Verified Answer
  • Replies replies
    2
  • Subscribers subscribers
    17
  • Views views
    1085
  • Users 0 members are here
Related
Options

Filtering false positives in Fortify

Jason Duquain

What is the best way to filter out false positives in fotrtify to ensure they never come up again for the current and all future versions of a project folder. I found a video on fortifyunplugged where this was done via audit workbench. However it appeared it was limited to just that project folder version. Is filtering via AWB the best method? Is there a way to do filtering directly in fortify SSC? I can suppress vulnerabilties but they often re-appear in future scans.

Parents

  • Verified Answer

    0

    Thank you for your question, there are two methods you can use to filter or remove items that are considered false positives.  You can use issue templates or custom rules.

     

    Issue Templates are what is used in Software Security Center, however it is called an Audit Template in Audit Workbench.  There are two types of filters that can be used folder filters or visibility filters. 

    Using folder filters you can move an issue from one criticality to another ie..(move a critical issue to the low folder).

    Using visibility filters you can hide an issue.

    It is easiest to create these filters using Audit Workbench(per the video) and then export the project template.  Once the project template is created, you can upload the template to Software Security Center as an Issue Template.  To use that template on an application, you apply that template in the application profile settings.

Reply

  • Verified Answer

    0

    Thank you for your question, there are two methods you can use to filter or remove items that are considered false positives.  You can use issue templates or custom rules.

     

    Issue Templates are what is used in Software Security Center, however it is called an Audit Template in Audit Workbench.  There are two types of filters that can be used folder filters or visibility filters. 

    Using folder filters you can move an issue from one criticality to another ie..(move a critical issue to the low folder).

    Using visibility filters you can hide an issue.

    It is easiest to create these filters using Audit Workbench(per the video) and then export the project template.  Once the project template is created, you can upload the template to Software Security Center as an Issue Template.  To use that template on an application, you apply that template in the application profile settings.

Children

Resources

Support
Documentation
Learning Services
CyberRes Academy
Partner Programs
Contact us
Compliance
Help
Company
Privacy Policy
Terms of Use
Accessibility
Anti-Slavery Statement
Support
Contact Us
Careers
Code of Conduct
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.