-
Notifications
You must be signed in to change notification settings - Fork 178
2 Getting Started
Stefan Streichsbier edited this page Jul 11, 2016
·
3 revisions
- JDK 8
- (Optional) to test SSL, install SSLyze
- (Optional) to run tests with Nessus you'll need a Nessus server with the API enabled
BDD-Security tests web applications and servers from the outside. To get started with a quick demonstration, we provide a vulnerable web application in the form of a self-executing .jar file from here.
Launch this application in a terminal:
java -jar ropeytasks.jar
git clone https://github.com/continuumsecurity/bdd-security.git
Execute only the 'authentication' feature:
./gradlew -Dcucumber.options="--tags @authentication --tags ~@skip"
View the test results in ./build/reports/cucumber/pretty/feature-overview.html
To execute all the features including ZAP scanning:
./gradlew