Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-29265

Active scan not working with selenium

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not A Defect
    • Icon: Minor Minor
    • zaproxy-plugin

      Hello Ludovic,

      I'm trying to set up ZAP under Jenkins using Selenium, but I cannot get the same results as ZAP GUI on my desktop.

      General information :

      • My webapp for testing is DVWA
      • Capture a user sequence using Selenium plugin for Firefox
      • Launch a ZAP scan (Default Profile using HIGH and INSANE) via GUI (firefox is wired to the ZAP proxy) using the same sequence, export results
      • Doing the same thing using Jenkins, start ZAP proxy, configure Firefox to go through ZAP proxy, launch selenium tests, launch scans using the Zap plugin.

      But it won't show me any High alerts (at least, it should show me an SQLI alert)
      (cf: jenkins build logs attached)

      Am I doing something wrong ?

      EDIT : reports CI and Desktop added + job configuration

      Cheers,
      Farid.

        1. jenkins_1.png
          36 kB
          Farid Boukerche
        2. jenkins_2.png
          35 kB
          Farid Boukerche
        3. rapport_desktop.html
          91 kB
          Farid Boukerche
        4. report_zap_jenkins.html
          1.18 MB
          Farid Boukerche
        5. report_zap.html
          88 kB
          Farid Boukerche
        6. sel_test.html
          2 kB
          Farid Boukerche
        7. SeleniumConfigLudovic.PNG
          17 kB
          Ludovic Roucoux
        8. set_suite.html
          0.5 kB
          Farid Boukerche
        9. stdout.txt
          33 kB
          Farid Boukerche
        10. testresult.html
          5 kB
          Farid Boukerche

            ludovicroucoux Ludovic Roucoux
            pythondz Farid Boukerche
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: