What is ThreadFix?ThreadFix is a vulnerability management solution designed to help businesses consolidate test results and prioritize risk decisions. The platform allows software development and server operation teams to export vulnerability data into ticketing systems to track defects and resolve discovered vulnerabilities.
Key features of ThreadFix include risk management, issue tracking, vulnerability assessment, web scanning, prioritization, and patch management. The vulnerability resolution platform enables organizations to import results from multiple scanning tools, such as HP Fortify, IBM AppScan, and more in order to consolidate and de-dupe vulnerabilities and import the data to supported infrastructure. ThreadFix also tracks vulnerabilities identified by manual testing and various assurance activities, including threat modeling, penetration tests, and code reviews.
ThreadFix facilitates integration with several scanning tools, such as Acunetix, Atlassian Jira, Barracuda Vulnerability Manager, Bugzilla, Checkmarx, DenyAll, and more. The dashboard enables teams to get an overview of the organization’s portfolio and display trending vulnerabilities from recently uploaded scan results. ThreadFix allows managers to view vulnerability comment threads and generate comparison reports to test the effectiveness of various testing technologies.