Find, prioritize, aggregate and visualize software vulnerabilities
Click here to watch a Video introduction
ThreadFix is a software vulnerability aggregation and management system that brings together a variety of code analysis tools that enable you to locate and fix potential vulnerabilities in the code you write, in the languages you use, and with affordable costs.
Consolidate and de-duplicate imported results to get a complete view of the state of your applications.
Get the latest security status of your applications immediately
Translate application vulnerabilities into software defects
Create virtual Web Application Firewall (WAF) rules to help block malicious traffic while vulnerabilities are being resolved.
Dynamic and static scanning technologies, SaaS testing platforms, IDS/IPS, WAFs and defect trackers
Open Source: Dynamic/Static Scanners: OWASP Zed Attack Proxy, Arachni, w3af, Skipfish, Microsoft CAT.NET, FindBugs, Brakeman, CPPcheck / WAF / IDS / IPS: Mod_Security, Snort / Defect Trackers: Mozilla Bugzilla
Commercial tools: Kiuwan, Virtual Forge, Checkmarx and the major vendors in these and additional fields
Solution Flyer Thread Fix english Solution Flyer Thread Fix deutsch
Webinar September 2016: Integration with Checkmarx
Integration of the DevOps team into the build process: RSA talk