ThreadFix Open Source Software Vulnerability Management Tool
Efficiently Identify and Remediate Application Vulnerabilities
Finding vulnerabilities is only the first step to remediation. Making sense of the endless reports from dynamic and static scanners can be a daunting task, and when you add in results from manual testing, looking for trends and benchmarks can be like searching for a needle in a haystack.
Denim Group has created ThreadFix, a tool designed to give security practitioners the ability to understand the security of their applications and efficiently conduct remediation.
ThreadFix can help with your reporting issues. The open source software vulnerability management tool provides security managers and professionals a central location to store and track software vulnerabilities. Trending reports empower users to give up-to-date security statuses of their web applications. ThreadFix also creates web application firewall virtual patches, protecting applications during remediation. Download ThreadFix Brochure >>
ThreadFix Features and Benefits
 |
Simplified View of Application Test Results Consolidate and de-duplicate imported results from open source, commercial dynamic and static scanning tools, as well as the results of manual testing and threat modeling to get a complete view of the state of your applications. |
 |
Reports Get the latest security status of your applications while providing an eagle’s-eye view of your organization’s progress over time to pinpoint any process problems. |
 |
Defect Tracker Integration Help security professionals translate application vulnerabilities into software defects and push tasks to developers in the tools and systems they are already using. |
 |
Virtual Patching Create virtual Web Application Firewall (WAF) rules to help block malicious traffic while vulnerabilities are being resolved. While your organization takes on remediation of your applications, virtual patching helps guard against common vulnerabilities such as Cross-Site Scripting (XSS) and SQL Injections. |
 |
Compatible with Open Source and Commercial Products ThreadFix is compatible with a number of commercial and freely available dynamic and static scanning technologies, SaaS testing platforms, IDS/IPS and WAFs and defect trackers. |
Download ThreadFix Now
Visit the ThreadFix Google code repository to download ThreadFix now.
Need more information about ThreadFix?
If you would like more information about ThreadFix or would like to schedule a demo, please contact us through the following form.
( * Denotes Required Field)
