Application Security
cancel

Micro Focus Software Community

Join the conversation with experts and colleagues to get advice, discuss issues, and find solutions
Application Security
Posted to:
Original author:
Hi Team, I have integrated Jenkins and SSC smoothly. It means (generaing token, test connection, creating a "Application and version", selceting that in Jenkins, etc..,) Finally it was time to build the project and I got this error. *This i...
Posted to:
Original author:
Hello, The rule that detects Dynamic Code Evaluation: Ruby YAML Deserialization REALLY needs improvements, having to flag it as a false positive on every IIS and ASP.NET/Classic sites doesnt make any sense.
Posted to:
Original author:
I am trying to run a scan with 17.10 on an Apex code base. I followed the instructions in the User guide but am having issues extracting the custom objects from Salesforce. When I run the sf_extractor tool, I get the following error message: Connecti...
Posted to:
Original author:
Hello, I have successfully installed the Tomcat and MySQL on the server. When I'm trying to seed the bundles I get the following error. No clue on how to solve it. This error is pulled from ssc-configuration.log ERROR 2017-08-29 19:26:23,047 [org.hib...
Posted to:
Original author:
I recently contacted support about flash support in WIE. It seems that the embedded browser for WIE doesn't have a Flash player installed. Here's the support response: WI cannot scan flash and Unfortunately it will not be supported in future . As I h...
Posted to:
Original author:
Hi Seniors I have a problem having fortify webinspect trial it seems it was stuck at we're creating your instance almost a week. Is there any workaround on this matter? Actually we already purchased this app but being handled by the Apps security tea...
Posted to:
Original author:
Ahhhhh.... the age old question - How long will it take? I hear this question quite often from project teams. I refuse to give them a solid answer because inevitably it always turns out wrong. So, the standard phrase I stick with is: "It could t...
Posted to:
Original author:
Hello, Great question! You are correct, once the session has expired, WI will not be able to audit the protected pages properly. Additionally, the audit threads each use their own sessions, so unless you scan with a shared requestor then the audit wi...
Posted to:
Original author:
1) WebInspect will attack and fuzz all possible outputs by default, whether they are visible inputs, hidden, query parameters, POST parameters, URL truncation, headers, or cookies. To spend even more time on the scan, you can enable the auditing of s...
  • Legend
  • New MessagesNew Messages
  • No New Messages No New Messages
  • Hot ThreadHot Thread
  • Replied-to Thread Replied-to Thread
  • Read Only ThreadRead Only Thread
Most Popular
Top Authors