Running Arachni via Jenkins
Can i run arachni during jenkins build? From the thread that i've read, normally it is added in Jenkins as a post build action and we're using URL's for the application where the scan should be performed. How about doing a scan on a set of raw codes on jenkins workspace before it gets packaged into a war file. Which means running a scan during Jenkins build. Is this possible?
Comments are currently closed for this discussion. You can start a new one.
Keyboard shortcuts
Generic
? | Show this help |
---|---|
ESC | Blurs the current field |
Comment Form
r | Focus the comment reply box |
---|---|
^ + ↩ | Submit the comment |
You can use Command ⌘
instead of Control ^
on Mac
1 Posted by Elirowenabeth M... on 12 Oct, 2016 01:44 AM
2nd question : Do we really need to run arachni having a URL as it's parameter? or can we run it with files under a specific workspace.
Support Staff 2 Posted by Tasos Laskos on 12 Oct, 2016 08:51 AM
I'm not that familiar with Jenkins so I'm afraid I can't help you with this.
3 Posted by Elirowenabeth M... on 12 Oct, 2016 08:54 AM
Any thought's if it's possible to pass a parameter of the current directory to do the scan?
Currently, we do this in arachni
/opt/arachni/bin/arachni --checks=*
Would this be possible if i will do this?
/opt/arachni/bin/arachni . --checks=*
Note : (.) signifies the current directory of my source code for my web app.
Support Staff 4 Posted by Tasos Laskos on 12 Oct, 2016 08:55 AM
Arachni doesn't do static analysis, it needs a live webapp not its source code.
5 Posted by Elirowenabeth M... on 12 Oct, 2016 08:59 AM
Oh, alright. Makes sense.. Thanks. :)
Support Staff 6 Posted by Tasos Laskos on 12 Oct, 2016 09:02 AM
No problem.
Cheers
Tasos Laskos closed this discussion on 12 Oct, 2016 09:02 AM.