本博客地址:https://security.blog.csdn.net/article/details/82949770
=====================================================
代码审计工具汇总:
https://download.csdn.net/download/wutianxu123/10703087
=====================================================
一、Fortify SCA概述
1.1、Source Code Analysis 阶段概述
Audit Workbench 会启动 Fortify SCA“Scanning(扫描)”向导来扫描和分析源代码。该向导整合了以下几个分析阶段:
转换:
使用源代码创建中间文件,源代码与一个 Build