A simple little CFML app to run scans with fixinator
- Download this code unzip it, and place it in a folder, eg
fixinator-runneron your CF server - Download the FixinatorClient.zip and extract all the files into a sub folder:
fixinator-runner/fixinatorclient - Edit the
fixinator-runner/config.cfmand specify paths and applications - Hit
fixinator-runner/scan.cfmin your browser to generate the reports, optionally setup a scheduled task to automate the process
Your file structure on your CF server web root should look like this:
/fixinator_runner/
Application.cfc
config.cfm
scan.cfm
/fixinatorclient/
box.json
models/
mixins/
...
{
"fixinator_api_url": "https://fixinator.example.com/scan/",
"fixinator_api_key": "",
"report_directory": "c:\fixinator\reports\",
"report_format": "pdf",
"email_reports_from": "[email protected]",
"applications": [
{
"name": "my_example_app",
"path": "C:\my_example_app\",
"email_reports_to": "",
"fixinator_config": {
"minConfidence": "high",
"minSeverity": "high",
"ignoreScanners": ["xss"]
}
},
{
"name": "my_other_app",
"path": "C:\my_other_app\",
"email_reports_to": "[email protected],[email protected]",
"fixinator_config": {
"minConfidence": "low",
"minSeverity": "low"
}
}
]
}