This is an example of a simple workflow for a SOAP web
services scan.
Before you begin
In order to send tests to web services, GSC must be installed
on your system. During AppScan installation you were asked if you want to install it. If you
did not install GSC then, you can do so at any time by clicking on
the GSC_Setup.exe file in your main AppScan® folder.
Procedure
- Open URL and Servers view of the Scan Configuration dialog
box, and in the Starting URL field add one of the following:
Restriction: When the WSDL file is supplied locally,
GSC is unable to extract the domain name from the file. Therefore
if you chose the second option, you must provide GSC with the domain
name in the Additional Servers and Domains area.
For example: demo.testfire.net
- If relevant, select the Case Sensitive check box.
- Click OK to close the Scan Configuration dialog
box.
- Click Scan > Explore web Services.
GSC opens and a tree of the web services appears in the left pane.
(Click the 
icons to expand the tree and see the individual web services.)
- Explore the services:
- Click on a service in the tree to select it.
An interface appears in the right pane for sending requests
to the service.
- In the Message tab in the right pane, type in the value
to send.
- Click Invoke to send the request.
The result is displayed in the main pane, and the request is added
to the Call History pane at the bottom left of the screen.
- Repeat for additional services as required.
- When you have sent enough requests, close GSC.
GSC closes and tests are created based on the data.
- To start the scan, click Scan > Test Only.
Results
When the scan is complete the results are displayed.
