Penetration test results

Fortify Audit Workbench supports import of XML for dynamic issues from OpenText DAST or from your own custom parser that produces results in an XML file.

To create your own parser, write a class that implements the com.fortify.pub.issueparsing.AnalysisFileParser interface from the Fortify public API. It can use any of the classes and utilities from <tools_install_dir>/Core/lib/fortify-public-<version>.jar. The Fortify public API documentation is in <tools_install_dir>/Samples/advanced/JavaDoc/public-api/index.html. The section for parsing scans and creating issues is in the com.fortify.pub.issueparsing package.