IBM AppScan
IBM AppScan scanner
RegScale can also import flat file reports from IBM AppScan
This CLI is able to sync assets and vulnerabilities from a folder containing IBM AppScan csv files.
Processing Workflow
The CLI will process each file and load assets and vulnerabilities to RegScale.
- The user first logs into RegScale via the CLI to set the access token or otherwise creates a service account as described in the CLI Login documentation
- The user provides the RegScale SSP ID# and the folder path to the files.
ibm import_appscan
- The primary function of this integration, parse and load data to RegScale.
Required parameters
regscale_ssp_id
The ID number from RegScale of the System Security Plan, required.folder_path
The full folder path where the files are located.scan_date
The date of the scan to be imported
The CLI provides detailed logging throughout the process to indicate progress and to provide troubleshooting in case of issues.
File Format
Below are the expected columns of an IBM AppScan file:
Header Name | Required |
---|---|
Status | |
Severity | |
Issue Type | |
URL | Yes |
Tested Element | |
Entity Type |
Example Commands
Import scans to SSP #16 in RegScale using the files located in the scans folder.
regscale ibm import_appscan --regscale_ssp_id 16 --folder_path /home/$USER/Documents/scans --scan_date 2024-01-01
NOTE: See All Scanner Integrations for information about how this updates Issues/POAMs
Updated about 2 months ago