Capturing and Importing Traffic Data
Traffic Data Capturing Methods
AppScan Enterprise supports traffic or login sequence data captured using tools listed in the following table.
Traffic record Tools | Output File Format | Reference Topic |
---|---|---|
HCL AppScan Traffic Recorder | *.dast.config or *.har | Test Automation in AppScan Enterprise using AppScan Traffic Recorder |
AppScan Activity Recorder (Chrome browser extension) | seq_*.dast.config | Capturing Traffic and Actions using AppScan Activity Recorder |
AppScan Standard | *.exd or *.login | |
AppScan Dynamic Analysis Client (ADAC) |
*.dast.config or *.har or *.exd | Capturing traffic using Manual Explore |
Importing Traffic Data File to Scan Jobs
A traffic record tool (HCL AppScan Traffic Recorder, AppScan Activity Recorder, etc) generates traffic data file related to a login activity or applications exploring activity, which are referred as, Login sequence file and the application explore data file, respectively. These files can be imported to scan jobs in AppScan Enterprise.
To an ADAC scan jobs:
- In the Scans view, edit an ADAC scan job to which the login sequence file to be imported.
The AppScan Dynamic Analysis Client dialog box appears.
- Click Login Management. The Login Management page appears.
- Click Recorded and then click Import to browse and select the login sequence file saved in the file system.
- Select a scan job to which you want to import the traffic data file. The file importing process depending on whether it’s a scan job created through ADAC or content scan jobs.
- The file is uploaded to the respective scan job and ready for analysis.
To a content scan jobs:
- In the Scans view, edit a content scan job to which the login sequence file to be imported. The scan edit page appears.
- Under Explore menu, click Login Management.
- On the Login Method page, click Recorded (Recommended). The Record Login Sequence page is displayed.
- Click Import login sequence file to browse and select the login sequence file saved in the file system.
To an ADAC scan jobs:
- Use the API
/jobs/{jobId}/dastconfig/updatetraffic/
to import the recorded login data to an ADAC scan job. - Enter action parameter as login.
For more information on this API, refer to the Swagger documentation provided with Appscan Enterprise.
To a content scan job:
Use the API
/services/folderitems/<fiid>/recordedlogindata
to import the recorded
login data to a content scan job.
For more information on this API, see Uploading recorded login data.
- In the Scans view, edit an ADAC scan job to which the traffic file to be imported.
The AppScan Dynamic Analysis Client dialog box appears.
- Click Manual Explorer.
- Click Import to browse and select the traffic file saved in the file system.
To a content scan jobs:
- In the Scans view, edit a content scan job to which the traffic file to be imported. The scan edit page appears.
- Under Explore menu, click What to Scan.
- On the What to Scan page, click Manual Explore.
- Click Add.
- Click Browse to select a traffic file saved in the file system.
To an ADAC scan jobs:
Use the API /jobs/{jobId}/dastconfig/updatetraffic/
to import the traffic file to a ADAC scan job.
For more information on this API, refer to the API documentation provided with the Appscan Enterprise.
To a content scan jobs:
Use the API
/services/folderitems/<fiid>/httptrafficdata
to import the manual explore
data to a content scan job.
For more information on this API, see Uploading Manual Explore data.