Basic use of AppScan
AppScan is a security testing tool for web projects. It scans all URLs of the website and automatically tests whether there are various types of vulnerabilities. appscan is installed on a Windows environment. The higher the version, the more complete the rule base and the more comprehensive the scan.
The scanning steps are as follows:
1. Open the software, pop up the welcome interface, select "Create a new scan" - "Regular Scan (or Regular Scan)", the configuration wizard will pop up;
2. Scan configuration wizard: Select "Web application scan" in "Select the type of scan you want to perform", click Next, fill in the "Start URL", and uncheck "I need to configure other link settings (proxy, HTTP authentication) )";
Click Next, and select "Record login" first, and click the red dot record button on the right. If the software records that the login is successful, a green tick icon will be displayed, also when automatic login is selected;
Click Next. If there is no special requirement, "Test Strategy" generally select "Default" or "Finish", click Next, and select "I will start the scan later". When scanning for the first time, you can choose "Auto Discovery", check to start "Scan Expert", and click Finish.
3. When choosing to start later:
Click the "Configuration" button to view or modify the scan configuration, such as login account, test strategy, number of threads, etc. The test strategy is determined according to the project evaluation requirements. Choose different severity, type, intrusive, WASC threat classification, component enable/disable, and use CVSS. If there is no requirement, it will be selected by default and scan all. The number of threads depends on the performance of the project. The larger the thread, the faster the scan, but it may be logged out when using automatic discovery. If the "session detection problem" is displayed, reducing the number of threads is one of the solutions.
When selecting automatic discovery:
The software will run on its own. After running, the number of visited pages displayed in the lower left corner generally exceeds 2 digits, but it is normal. Scanning experts will also give corresponding suggestions. If there are only a few pages, it is abnormal and needs to be explored manually.
4. After manual or automatic exploration is completed, click the menu "Scan" - "Full Scan" and wait until the scan is completed. You can switch the "Problems" view to view the scanned problems.
5. After scanning, click the "Report" button to export the report. The report can be customized according to customization, and export revision consulting suggestions, all URLs and other data suitable for development and use.
It is worth noting:
1. If there are frequent session detection problems, you can choose to reduce the thread. If you cannot solve it, you can change the login mode to automatic/prompt login.
2. Explore + test can be replaced by "full scan" after configuration.
3. When using an external browser, you need to configure the proxy. Click the menu "Tools"-"Options"-"Scan Options" to view the AppScan proxy port. Open the external browser, add the address and port number in the settings of the external browser, such as IE's "Internet Options"-"Connection"-"LAN Settings", check the proxy server, fill in the address and AppScan proxy port . When running, manually open the IE browser, close the browser after the operation is completed, and the operation can be recorded.
4. When configuring, you can add multi-step test, shield specific url or specify url test.