cyber_automate

The aim of this project is to develop a demo merging the following concepts:

Testing
Cybersecurity

Tools Involved

Code editor: VSCode
Code host: Github
Security added
- git-crypt
- Dependabot
- CodeQL Analysis
- Restricted PRs
- Github Actions + secrets
Test development: Toolium - https://github.com/Telefonica/toolium
SUT: Portswigger Labs - https://portswigger.net/

Initial configuration

Replace test/conf/properties.cfg file with test/conf/clean-properties.cfg
Create a Porswigger account to access the labs

Add your credentials to properties.cfg file:

[Test]
url: https://portswigger.net
username: <USER>
password: <PASSWORD>
xss_lab_1: web-security/cross-site-scripting/reflected/lab-html-context-nothing-encoded
sqli_lab_1: web-security/sql-injection/lab-retrieve-hidden-data

Test Execution

Create virtualenv and install requirements:

$ virtualenv venv 
$ source venv/bin/activate 
$ pip install -r requirements.txt

Execute test cases
```
$ cd test
$ behave
```
Execute security test cases
```
$ cd test
$ behave -t @security
```

Name		Name	Last commit message	Last commit date
Latest commit History 13 Commits
.github		.github
.vscode		.vscode
test		test
.gitattributes		.gitattributes
.gitignore		.gitignore
README.md		README.md
requirements.txt		requirements.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

cyber_automate

Tools Involved

Initial configuration

Test Execution

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

cyber_automate

Tools Involved

Initial configuration

Test Execution

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages