https://github.com/defectdojo/zapcon-2022-demo
Code used in the demo from the "Final Frontier: Automating DYNAMIC Security Testing"
https://github.com/defectdojo/zapcon-2022-demo
Last synced: about 1 year ago
JSON representation
Code used in the demo from the "Final Frontier: Automating DYNAMIC Security Testing"
- Host: GitHub
- URL: https://github.com/defectdojo/zapcon-2022-demo
- Owner: DefectDojo
- License: bsd-3-clause
- Created: 2022-03-08T19:57:11.000Z (over 4 years ago)
- Default Branch: main
- Last Pushed: 2024-04-30T18:36:52.000Z (about 2 years ago)
- Last Synced: 2025-04-12T07:28:20.779Z (about 1 year ago)
- Language: Python
- Size: 7.81 KB
- Stars: 7
- Watchers: 4
- Forks: 3
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# ZapCon-2022-demo
Code used in the demo from the "Final Frontier: Automating DYNAMIC Security Testing"
## Setting Up
Start DefectDojo and Juice Shop first
`docker-compose -f prequistes.yml up -d`
Access DefectDojo on 127.0.0.1:8888 with the credentials below
```
U - admin
P - DefectDojo!0
```
Find the API key by visiting
`127.0.0.1:8888/api/key-v2`
And insert it on line 16 of `tools/defectdojo/defectdojo.bash`
Access Juice Shop on 127.0.0.1:3000
## Running
In an environment that has docker and docker compose, run the line below and watch the following happen
1. Scan Juice Shop with SSLyze and ZAP
2. Push those results to DefectDojo
3. Clean up all the evidence (Remove scan containers and volumes)
`./demo.bash`