How to Download and Install IBM Security AppScan Standard
IBM Security AppScan Standard is a program that helps organizations decrease the likelihood of web application attacks and costly data breaches by automating application security vulnerability testing. It provides broad coverage to scan and test a wide range of application security vulnerabilities[^2^].
In this article, we will show you how to download and install IBM Security AppScan Standard on your Windows PC.
Step 1: Download IBM Security AppScan Standard
To download IBM Security AppScan Standard, you need to have a valid license or a trial license. You can request a trial license from here. Once you have the license, you can download the latest version of IBM Security AppScan Standard from here. You will need to log in with your IBM ID and password.
Step 2: Install IBM Security AppScan Standard
To install IBM Security AppScan Standard, follow these steps:
Run the downloaded installer file as an administrator.
Accept the license agreement and click Next.
Select the installation folder and click Next.
Select the components you want to install and click Next.
Enter your license information and click Next.
Review the installation summary and click Install.
Wait for the installation to complete and click Finish.
Congratulations! You have successfully installed IBM Security AppScan Standard on your PC. You can now launch the program from the Start menu or the desktop shortcut and start scanning your web applications for security vulnerabilities.
Step 3: Configure IBM Security AppScan Standard
Before you start scanning your web applications, you need to configure some settings in IBM Security AppScan Standard. To do this, follow these steps:
Launch IBM Security AppScan Standard from the Start menu or the desktop shortcut.
Click the Options button on the toolbar.
Select General from the left pane and adjust the settings according to your preferences. For example, you can change the language, the proxy settings, the update settings, etc.
Select Scan Configuration from the left pane and choose a scan configuration template that suits your needs. For example, you can choose Basic Scan, OWASP Top 10 Scan, PCI Compliance Scan, etc. You can also create your own custom scan configuration by clicking the New button.
Select Scan Settings from the left pane and modify the settings according to your scan requirements. For example, you can change the scan speed, the scan scope, the scan policy, the authentication method, etc.
Click OK to save your changes and close the Options dialog box.
Step 4: Scan Your Web Application
Now that you have configured IBM Security AppScan Standard, you are ready to scan your web application for security vulnerabilities. To do this, follow these steps:
Click the New Scan button on the toolbar.
Enter the URL of your web application in the Start URL field and click Next.
Select a scan configuration template from the drop-down list or use your own custom scan configuration and click Next.
Review the scan settings and click Next.
Wait for the scan to start and monitor its progress on the Scan Explorer window. You can pause, resume, or stop the scan at any time by clicking the corresponding buttons on the toolbar.
When the scan is finished, click Finish to view the scan results.
Step 5: Analyze and Report Your Scan Results
After scanning your web application, you can analyze and report your scan results using IBM Security AppScan Standard. To do this, follow these steps:
Select a vulnerability from the Issues window to view its details on the Issue Information window. You can see the severity, the description, the remediation advice, and other information about the vulnerability.
Click the Request/Response tab to view the HTTP request and response that triggered the vulnerability. You can also see a screenshot of how the vulnerability appears on your web application.
Click the Test tab to verify if the vulnerability is still present on your web application. You can modify the HTTP request and send it again to see how your web application responds.
Click the Report button on the toolbar to generate a report of your scan results. You can choose from various report formats, such as HTML, PDF, XML, etc. You can also customize your report by selecting what information to include or exclude.
Save or export your report to share it with others or for further analysis. 061ffe29dd