■ Java 분석
sourceanalyzer -b webgoat -clean
sourceanalyzer -64 -Xmx1200M -Xms600M -Xss24M -b webgoat -logfile webgoat_sca.log -source 1.5 -cp "webgoat/WebContent/WEB-INF/lib/*.jar" webgoat/JavaSource webgoat/WebContent
sourceanalyzer -b webgoat -scan -f webgoat.fpr
■ Android 분석
sourceanalyzer -b webgoat -clean
sourceanalyzer -b webgoat -jdk 1.6 -cp "$SDK_DIR/platforms/android-3/android.jar:libs/**/*.jar" "src/**/*.java" "gen/**/*.java"
sourceanalyzer -b webgoat -scan -f webgoat.fpr
■ touchless 분석 (Pro*C)
sourceanalyzer -b webgoat -clean
sourceanalyzer -b webgoat -logfile webgoat_sca.log touchless make webgoat
sourceanalyzer -b webgoat -scan -f webgoat.fpr
■ 분석결과 SSC로 업로드
fortifyclient -url http://1.1.1.1:8080/ssc -user admin -password mypass123 uploadFPR -file webgoat.fpr -projectID 1234
■ SSC 프로젝트 목록 보기
fortifyclient -url http://1.1.1.1:8080/ssc -user admin -password mypass123 listprojects