NeuraLegion/sectester-net NeuraLegion/sectester-net

Testing
  • Stars
    star
    1
  • Language
    C#
  • License
    MIT License
  • Created about 2 years ago
  • Updated 4 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
NeuraLegion/sectester-net
github

NeuraLegion

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

SecTester is a new tool that integrates our enterprise-grade scan engine directly into your unit tests.

SecTester SDK for .NET

Maintainability Test Coverage Build Status Nuget Downloads

Table of contents

About the SecTester SDK

This SDK is designed to provide all the basic tools and functions that will allow you to easily integrate the Bright security testing engine into your own project.

With the SDK you can:

  • Work with the Bright scan engine, without leaving your IDE
  • Build automations within your CI or local machine for security testing
  • Create your own framework/project specific wrappers (you can see some examples in the Documentation section)

About Bright & SecTester

Bright is a developer-first Dynamic Application Security Testing (DAST) scanner.

SecTester is a new tool that integrates our enterprise-grade scan engine directly into your unit tests.

With SecTester you can:

  • Test every function and component directly
  • Run security scans at the speed of unit tests
  • Find vulnerabilities with no false positives, before you finalize your Pull Request

Trying out Bright’s SecTester is free 💸, so let’s get started!

⚠️ Disclaimer

The SecTester project is currently in beta as an early-access tool. We are looking for your feedback to make it the best possible solution for developers, aimed to be used as part of your team’s SDLC. We apologize if not everything will work smoothly from the start, and hope a few bugs or missing features will be no match for you!

Thank you! We appreciate your help and feedback!

Usage

Installation

First install the module via dotnet or nuget.exe and do not forget to install the peer dependencies as well:

$ dotnet add package SecTester.Runner

or

PS> NuGet\Install-Package SecTester.Runner

Getting a Bright API key

  1. Register for a free account at Bright’s signup page
  2. Optional: Skip the quickstart wizard and go directly to User API key creation
  3. Create a Bright API key (check out our doc on how to create a user key)
  4. Save the Bright API key
    1. We recommend using your Github repository secrets feature to store the key, accessible via the Settings > Security > Secrets > Actions configuration. We use the ENV variable called BRIGHT_TOKEN in our examples
    2. If you don’t use that option, make sure you save the key in a secure location. You will need to access it later on in the project but will not be able to view it again.
    3. More info on how to use ENV vars in Github actions

⚠️ Make sure your API key is saved in a location where you can retrieve it later! You will need it in these next steps!

Usage examples

Full configuration & usage examples can be found in:

Documentation & Help

Ecosystem

Contributing

Please read contributing guidelines here.

License

Copyright © 2022 Bright Security.

This project is licensed under the MIT License - see the LICENSE file for details.

More Repositories

1

shainet

SHAInet - a pure Crystal machine learning library
Crystal
181
star
2

brokencrystals

A Broken Application - Very Vulnerable!
TypeScript
120
star
3

crystal-fann

FANN (Fast Artifical Neural Network) binding in Crystal
Crystal
83
star
4

cypress-har-generator

Cypress plugin for generating HTTP Archive (HAR) files captures network requests during Cypress tests.
TypeScript
80
star
5

wafalyzer

Web Application Firewall (WAF) Detector
Crystal
33
star
6

har

HAR (HTTP Archive) parser in Crystal
Crystal
22
star
7

broken_crystals

A vulnerable Application in crystal
Crystal
20
star
8

bright-cli

Command Line Interface (CLI) tool for NeuraLegion's solutions.
TypeScript
17
star
9

sectester-js-demo

This is a demo project for the SecTester JS SDK framework, with some installation and usage examples.
TypeScript
17
star
10

sslscanner

SSL Scanner written in Crystal
Crystal
17
star
11

sec-tester-cr

Bright Security scanner integration for Crystal specs
Crystal
15
star
12

cvss

The Common Vulnerability Scoring System (CVSS) base score calculator and validator library written in TypeScript.
TypeScript
14
star
13

tensorflow.cr

TensorFlow bindings in Crystal
Crystal
13
star
14

fix

FIX library for crystal
Crystal
13
star
15

blue_cr

BlueZ bluetooth binding in Crystal
Crystal
12
star
16

har-sdk

HAR SDK enables Node.js developers to easily work with HAR, convert it from OAS/Swagger and Postman collection, and more.
TypeScript
10
star
17

sslscan.cr

Crystal shard wrapping the rbsec/sslscan utility
Crystal
10
star
18

generic_actor

A generic Actor model for Crystal
Crystal
10
star
19

mt_helpers

MultiThreading helpers for crystal
Crystal
8
star
20

example-actions

8
star
21

sectester-js

SecTester is a new tool that integrates our enterprise-grade scan engine directly into your unit tests.
TypeScript
5
star
22

monitor

Quick HTTP Load tester for CSE\Support
Crystal
5
star
23

documentation

NeuraLegion's Documentation Repository
4
star
24

simple-email

Crystal
3
star
25

jfrog-example

3
star
26

oas2har

Transform you Swagger/OAS spec files to a series of HAR request objects.
JavaScript
2
star
27

changelog

NexPloit Changelog
2
star
28

run-scan

Action runs a new security scan in NeuraLegion, or reruns an existing one
TypeScript
2
star
29

AMASS-the-Legion

Python
2
star
30

crometheus

Crystal
2
star
31

socket_io

Crystal SocketIO Shard
Crystal
2
star
32

postman2har

Transform your Postman collection to a series of HAR request objects.
TypeScript
2
star
33

broken_crystals_kemal

Temporary backup of Broken Crystals written in Kemal
HTML
1
star
34

restharter

Restart a scan using a HAR
Crystal
1
star
35

helmcharts

Smarty
1
star