{"id":3297,"date":"2020-06-24T11:29:47","date_gmt":"2020-06-24T02:29:47","guid":{"rendered":"\/blog\/?p=3297"},"modified":"2024-08-16T10:32:27","modified_gmt":"2024-08-16T01:32:27","slug":"fortify-scancentralcloudscan%ec%9d%84-%ec%82%ac%ec%9a%a9%ed%95%9c-%eb%b6%84%ec%82%b0-%eb%b6%84%ec%84%9d","status":"publish","type":"post","link":"https:\/\/hasu0707.duckdns.org\/blog\/?p=3297","title":{"rendered":"[Fortify] ScanCentral(CloudScan)\uc744 \uc0ac\uc6a9\ud55c \ubd84\uc0b0 \ubd84\uc11d"},"content":{"rendered":"\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1132\" height=\"660\" src=\"\/blog\/wp-content\/uploads\/2023\/07\/scancentral.png\" alt=\"\" class=\"wp-image-6161\" srcset=\"https:\/\/hasu0707.duckdns.org\/blog\/wp-content\/uploads\/2023\/07\/scancentral.png 1132w, https:\/\/hasu0707.duckdns.org\/blog\/wp-content\/uploads\/2023\/07\/scancentral-768x448.png 768w\" sizes=\"auto, (max-width: 1132px) 100vw, 1132px\" \/><\/figure>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<span style=\"font-family: \ub3cb\uc6c0\uccb4, \uad74\ub9bc\uccb4, \ub098\ub214\uace0\ub515\ucf54\ub529, \uad81\uc11c\uccb4; font-size: 12pt;\"><span style=\"color: #e03e2d;\"><strong>replace token:<\/strong> \/home\/OSUSER OSUSER OSGROUP &lt;PASSWORD&gt; 192.168.137.56 192.168.137.1 <a style=\"color: #e03e2d;\" href=\"mailto:scancentral@esvali.com\" target=\"_blank\" rel=\"noopener\">scancentral@esvali.com<\/a><\/span><br \/><br \/><span style=\"font-size: 14pt;\"><strong>\u25a0 \ud14c\uc2a4\ud2b8 \ud658\uacbd<\/strong><\/span><br \/><br \/>&nbsp; -\ub85c\uadf8\uc778 \uacc4\uc815: OSUSER:OSGROUP<br \/>&nbsp; -\uc124\uce58 \ub514\ub809\ud1a0\ub9ac: \/home\/OSUSER<br \/>&nbsp; -Fortify SSC: 192.168.137.1<br \/>&nbsp; -ScanCentral Controller: 192.168.137.56<br \/>&nbsp; -ScanCentral Client: 192.168.137.1<br \/>&nbsp; -ScanCentral Sensor #1~#3: 192.168.137.57~59<br \/><br \/><br \/><br \/><span style=\"font-size: 14pt;\"><strong>\u25a0 ScanCentral \uc124\uce58<\/strong><\/span><br \/><strong><br \/>&nbsp; 1. ScanCentral Controller<\/strong><br \/>&nbsp; &nbsp; \u2474 \uc900\ube44 \uc791\uc5c5<br \/>&nbsp; &nbsp; &nbsp; JRE \uc124\uce58 (JRE_HOME \ubc0f JAVA_HOME \ud658\uacbd\ubcc0\uc218 \ud655\uc778)<br \/><br \/>&nbsp; &nbsp; \u2475 Fortify ScanCentral Controller \uc555\ucd95 \ud574\uc81c \ubc0f \uc2ec\ubcfc\ub9ad \ub9c1\ud06c<br \/>&nbsp; &nbsp; &nbsp; unzip -d sctrl_2310 Fortify_ScanCentral_Controller_23.1.0_x64.zip<br \/>&nbsp; &nbsp; &nbsp; ln -s sctrl_2310 sctrl<br \/><br \/>&nbsp; &nbsp; \u2476 config.properties \ubc31\uc5c5<br \/>&nbsp; &nbsp; &nbsp; cp -f \/home\/OSUSER\/sctrl\/tomcat\/webapps\/scancentral-ctrl\/WEB-INF\/classes\/config.properties \/home\/OSUSER\/sctrl\/tomcat\/webapps\/scancentral-ctrl\/WEB-INF\/classes\/config.properties.orig<br \/><br \/>&nbsp; &nbsp; \u2477 config.properties \uc218\uc815<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/worker_auth_token=CHANGEME123!\/worker_auth_token=&lt;PASSWORD&gt;\/g' \/home\/OSUSER\/sctrl\/tomcat\/webapps\/scancentral-ctrl\/WEB-INF\/classes\/config.properties<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/client_auth_token=CHANGEME321!\/client_auth_token=&lt;PASSWORD&gt;\/g' \/home\/OSUSER\/sctrl\/tomcat\/webapps\/scancentral-ctrl\/WEB-INF\/classes\/config.properties<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/ssc_scancentral_ctrl_secret=changeme\/ssc_scancentral_ctrl_secret=&lt;PASSWORD&gt;\/g' \/home\/OSUSER\/sctrl\/tomcat\/webapps\/scancentral-ctrl\/WEB-INF\/classes\/config.properties<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/smtp_host=localhost\/smtp_host=192.168.137.1\/g' \/home\/OSUSER\/sctrl\/tomcat\/webapps\/scancentral-ctrl\/WEB-INF\/classes\/config.properties<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/from_email=changeme@yourcompanyname.com\/from_email=scancentral@esvali.com\/g' \/home\/OSUSER\/sctrl\/tomcat\/webapps\/scancentral-ctrl\/WEB-INF\/classes\/config.properties<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/ssc_url=http:\\\/\\\/localhost:8180\\\/ssc\/ssc_url=http:\\\/\\\/192.168.137.1:8080\\\/ssc\/g' \/home\/OSUSER\/sctrl\/tomcat\/webapps\/scancentral-ctrl\/WEB-INF\/classes\/config.properties<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/this_url=http:\\\/\\\/localhost:8080\\\/scancentral-ctrl\/this_url=http:\\\/\\\/192.168.137.56:8080\\\/scancentral-ctrl\/g' \/home\/OSUSER\/sctrl\/tomcat\/webapps\/scancentral-ctrl\/WEB-INF\/classes\/config.properties<br \/><br \/>&nbsp; &nbsp; &nbsp; vi \/home\/OSUSER\/sctrl\/tomcat\/webapps\/scancentral-ctrl\/WEB-INF\/classes\/config.properties<br \/>&nbsp; &nbsp; &nbsp; &nbsp; job_expiry_delay=168 (\uad8c\uace0 \uac12)\ud655\uc778<br \/><br \/>&nbsp; &nbsp; \u2478 ScanCentral Controller systemd \uc2a4\ud06c\ub9bd\ud2b8 \uc791\uc131<br \/>&nbsp; &nbsp; &nbsp; sudo -i<br \/>&nbsp; &nbsp; &nbsp; chmod 755 \/home\/OSUSER\/sctrl\/tomcat\/bin\/*.sh<br \/>&nbsp; &nbsp; &nbsp; vi \/usr\/lib\/systemd\/system\/sctrl.service<br \/>-----------------------------------------------------------<br \/>[Unit]<br \/>Description=Fortify ScanCentral Controller<br \/>After=network.target<br \/><br \/>[Service]<br \/>Type=forking<br \/>Environment='JAVA_HOME=\/home\/OSUSER\/jdk-11.0.16.1'<br \/>Environment='CATALINA_PID=\/home\/OSUSER\/sctrl\/tomcat\/temp\/sctrl.pid'<br \/>Environment='CATALINA_HOME=\/home\/OSUSER\/sctrl\/tomcat'<br \/>Environment='CATALINA_BASE=\/home\/OSUSER\/sctrl\/tomcat'<br \/>Environment='CATALINA_OPTS=-Xms512M -Xmx2G -Xss512K -server'<br \/>Environment='JAVA_OPTS=-Djava.awt.headless=true -Djava.security.egd=file:\/dev\/.\/urandom'<br \/>WorkingDirectory=\/home\/OSUSER\/sctrl\/tomcat<br \/>ExecStart=\/home\/OSUSER\/sctrl\/tomcat\/bin\/startup.sh<br \/>ExecStop=\/home\/OSUSER\/sctrl\/tomcat\/bin\/shutdown.sh<br \/>User=OSUSER<br \/>Group=OSGROUP<br \/>UMask=0007<br \/><br \/>[Install]<br \/>WantedBy=multi-user.target<br \/>-----------------------------------------------------------<br \/>&nbsp; &nbsp; &nbsp; chmod 644 \/usr\/lib\/systemd\/system\/sctrl.service<br \/>&nbsp; &nbsp; &nbsp; systemctl daemon-reload<br \/>&nbsp; &nbsp; &nbsp; systemctl enable sctrl.service<br \/><br \/>&nbsp; &nbsp; \u2479 ScanCentral Controller \uc791\ub3d9 \ud655\uc778<br \/>&nbsp; &nbsp; &nbsp; http:\/\/192.168.137.56:8080\/scancentral-ctrl\/<br \/>&nbsp; &nbsp; &nbsp; \"Fortify ScanCentral Controller XX.X.X.XXXX\" \ub77c\uace0 \ub098\uc624\uba74 \uc815\uc0c1<br \/><br \/><strong>&nbsp; 2. ScanCentral Client (Embedded Client \ubc29\uc2dd\uc73c\ub85c \uc124\uce58)<\/strong><br \/>&nbsp; &nbsp; \uae30\uc874\uc5d0 SCA\uac00 \uc124\uce58\ub418\uc5b4 \uc788\uace0 \uae30 \uc124\uce58\ub418\uc5b4 \uc788\ub294 SCA\uc5d0 ScanCentral Client\ub97c \ub36e\uc5b4 \uc4f0\ub294 \ubc29\uc2dd\uc73c\ub85c \uc124\uce58\ud55c\ub2e4.<br \/>&nbsp; &nbsp; \ube4c\ub4dc \uacb0\uacfc\ub97c \uc13c\uc11c\ub85c \uc624\ud504\ub85c\ub529(\ud2b8\ub798\ud53d \ubd84\uc0b0)\ud558\ub294 \uac83\uc744 \uc9c0\uc6d0\ud558\ub294 \uc5b8\uc5b4\ub97c \uc0ac\uc6a9\ud558\ub294 \uacbd\uc6b0 SCA \uc5c6\uc774 \uad6c\ub3d9 \uac00\ub2a5\ud55c \ub3c5\ub9bd\ud615 \ud074\ub77c\uc774\uc5b8\ud2b8\ub85c \uad6c\ucd95 \uac00\ub2a5<br \/>&nbsp; &nbsp; \u25a3 \uc624\ud504\ub85c\ub529 \uc9c0\uc6d0 \uac00\ub2a5\ud55c \uc5b8\uc5b4<br \/>&nbsp; &nbsp; &nbsp; \u2299 Python<br \/>&nbsp; &nbsp; &nbsp; \u2299 Go<br \/>&nbsp; &nbsp; &nbsp; \u2299 Ruby<br \/>&nbsp; &nbsp; &nbsp; \u2299 JavaScript<br \/>&nbsp; &nbsp; &nbsp; \u2299 PHP<br \/>&nbsp; &nbsp; &nbsp; \u2299 Java<br \/>&nbsp; &nbsp; &nbsp; \u2299 ABAP (Advanced Business Application Programming)<br \/>&nbsp; &nbsp; &nbsp; \u2299 Apex (Salesforce)<br \/>&nbsp; &nbsp; &nbsp; \u2299 Classic ASP (ASP Classic)<br \/>&nbsp; &nbsp; &nbsp; \u2299 Adobe ColdFusion<br \/>&nbsp; &nbsp; &nbsp; \u2299 PL\/SQL \/ T-SQL<br \/>&nbsp; &nbsp; &nbsp; \u2299 Microsoft TypeScript<br \/>&nbsp; &nbsp; &nbsp; \u2299 Visual Basic 6.0<br \/>&nbsp; &nbsp; &nbsp; \u2299 .NET applications (C#, VB.NET, .NET Core, ASP.NET, and .NET Standard)<br \/>&nbsp; &nbsp; &nbsp; \u2299 Dockerfiles<br \/><br \/>&nbsp; &nbsp; \u2474 Fortify ScanCentral Client \uc555\ucd95 \ud574\uc81c \ubc0f \uc2ec\ubcfc\ub9ad \ub9c1\ud06c<br \/>&nbsp; &nbsp; &nbsp; unzip -d scli_2310 Fortify_ScanCentral_Client_23.1.0_x64.zip<br \/>&nbsp; &nbsp; &nbsp; ln -s scli_2310 scli<br \/>&nbsp; &nbsp; &nbsp; chmod 755 \/home\/OSUSER\/scli\/bin\/scancentral<br \/><br \/>&nbsp; &nbsp; \u2475 \uc124\uc815\ud30c\uc77c\uc5d0\uc11c auth_token \uc124\uc815<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/client_auth_token=$\/client_auth_token=&lt;PASSWORD&gt;\/g' \/home\/OSUSER\/scli\/Core\/config\/client.properties<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/worker_auth_token=$\/worker_auth_token=&lt;PASSWORD&gt;\/g' \/home\/OSUSER\/scli\/Core\/config\/worker.properties<br \/><br \/>&nbsp; &nbsp; \u2476 SCA \ubc31\uc5c5<br \/>&nbsp; &nbsp; &nbsp; mkdir -p \/home\/OSUSER\/sca\/sca_backup\/Core<br \/>&nbsp; &nbsp; &nbsp; cp -Rf \/home\/OSUSER\/sca\/bin \/home\/OSUSER\/sca\/sca_backup\/<br \/>&nbsp; &nbsp; &nbsp; cp -Rf \/home\/OSUSER\/sca\/Core\/lib \/home\/OSUSER\/sca\/sca_backup\/Core\/<br \/>&nbsp; &nbsp; &nbsp; cp -Rf \/home\/OSUSER\/sca\/Core\/config \/home\/OSUSER\/sca\/sca_backup\/Core\/<br \/><br \/>&nbsp; &nbsp; \u2477 ScanCentral Client \uc124\uce58 (SCA \ub514\ub809\ud1a0\ub9ac\uc5d0 \ud30c\uc77c \ubcf5\uc0ac)<br \/>&nbsp; &nbsp; &nbsp; echo '#!\/bin\/sh' &gt; tmp.sh<br \/>&nbsp; &nbsp; &nbsp; echo 'cp -Rfv \/home\/OSUSER\/scli\/* \/home\/OSUSER\/sca' &gt;&gt; tmp.sh<br \/>&nbsp; &nbsp; &nbsp; chmod 755 tmp.sh<br \/>&nbsp; &nbsp; &nbsp; .\/tmp.sh<br \/>&nbsp; &nbsp; &nbsp; rm -f tmp.sh<br \/><br \/><strong>&nbsp; 3. ScanCentral Sensor<\/strong><br \/>&nbsp; &nbsp; SCA\uac00 \uae30 \uc124\uce58\ub418\uc5b4 \uc788\ub294 \ud658\uacbd\uc5d0\uc11c \uc2e4\ud589\ud55c\ub2e4.<br \/><br \/>&nbsp; &nbsp; \u2474 \uc124\uc815\ud30c\uc77c\uc5d0\uc11c auth_token \uc124\uc815<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/client_auth_token=$\/client_auth_token=&lt;PASSWORD&gt;\/g' \/home\/OSUSER\/sca\/Core\/config\/client.properties<br \/>&nbsp; &nbsp; &nbsp; sed -i 's\/worker_auth_token=$\/worker_auth_token=&lt;PASSWORD&gt;\/g' \/home\/OSUSER\/sca\/Core\/config\/worker.properties<br \/><br \/>&nbsp; &nbsp; \u2475 \uac00\ub3d9 \ud14c\uc2a4\ud2b8<br \/>&nbsp; &nbsp; &nbsp; \/home\/OSUSER\/sca\/bin\/scancentral -url http:\/\/192.168.137.56:8080\/scancentral-ctrl\/ worker<br \/><br \/>&nbsp; &nbsp; &nbsp; &nbsp; launcher.log will be stored in \"\/home\/OSUSER\/.fortify\/scancentral-23.1.0\/log\" directory.<br \/>&nbsp; &nbsp; &nbsp; &nbsp; Checking for updates...<br \/>&nbsp; &nbsp; &nbsp; &nbsp; No update available or auto update is disabled on the controller.<br \/>&nbsp; &nbsp; &nbsp; &nbsp; scancentral.log will be stored in \"\/home\/OSUSER\/.fortify\/scancentral-23.1.0\/log\" directory.<br \/>&nbsp; &nbsp; &nbsp; &nbsp; Setting up SCA version...<br \/>&nbsp; &nbsp; &nbsp; &nbsp; Retrieving SCA version...<br \/>&nbsp; &nbsp; &nbsp; &nbsp; Initializing sensor authentication token...<br \/>&nbsp; &nbsp; &nbsp; &nbsp; Worker process UUID: 6827c4cb-e334-4936-a719-f4c50711f913<br \/>&nbsp; &nbsp; &nbsp; &nbsp; Worker UUID (new): 767cf783-d9f1-44ad-a128-43aa33b474cc<br \/>&nbsp; &nbsp; &nbsp; &nbsp; Pinging the Controller...<br \/>&nbsp; &nbsp; &nbsp; &nbsp; The Controller at http:\/\/192.168.137.56:8080\/scancentral-ctrl is UP<br \/>&nbsp; &nbsp; &nbsp; &nbsp; The state of the Controller is ACTIVE at Mon Jul 10 22:18:43 KST 2023<br \/>&nbsp; &nbsp; &nbsp; &nbsp; Preparing SCA for work...<br \/>&nbsp; &nbsp; &nbsp; &nbsp; Ready for work.<br \/>&nbsp; &nbsp; &nbsp; &nbsp; &lt;Ctrl+C\ub85c \ud14c\uc2a4\ud2b8 \uc911\uc9c0&gt;<br \/><br \/>&nbsp; &nbsp; \u2476 ScanCentral Sensor systemd \uc2a4\ud06c\ub9bd\ud2b8 \uc791\uc131<br \/>&nbsp; &nbsp; &nbsp; sudo -i<br \/>&nbsp; &nbsp; &nbsp; vi \/usr\/lib\/systemd\/system\/scsensor.service<br \/>-----------------------------------------------------------<br \/>[Unit]<br \/>Description=Fortify ScanCentral Sensor<br \/>After=network.target<br \/><br \/>[Service]<br \/>Type=simple<br \/>Environment='SCTRL_URL=http:\/\/192.168.137.56:8080\/scancentral-ctrl\/'<br \/>WorkingDirectory=\/home\/OSUSER\/.fortify\/scancentral<br \/>ExecStart=\/home\/OSUSER\/sca\/bin\/scancentral -url ${SCTRL_URL} worker<br \/>ExecStop=\/usr\/bin\/pkill -SIGTERM -ef scancentral<br \/>User=OSUSER<br \/>Group=OSGROUP<br \/>UMask=0007<br \/><br \/>[Install]<br \/>WantedBy=multi-user.target<br \/>-----------------------------------------------------------<br \/>&nbsp; &nbsp; &nbsp; chmod 644 \/usr\/lib\/systemd\/system\/scsensor.service<br \/>&nbsp; &nbsp; &nbsp; systemctl daemon-reload<br \/>&nbsp; &nbsp; &nbsp; systemctl enable scsensor.service<br \/>&nbsp; &nbsp; &nbsp; \u203b192.168.137.56\uc740 ScanCentral Controller\uc758 \uc8fc\uc18c<br \/><br \/>&nbsp; &nbsp; \u2477 ScanCentral Sensor \uc2dc\uc791\/\uc885\ub8cc<br \/>&nbsp; &nbsp; &nbsp; systemctl start scsensor.service<br \/>&nbsp; &nbsp; &nbsp; systemctl stop scsensor.service<br \/><br \/><strong>&nbsp; 4. Fortify SSC \uc124\uc815<\/strong><br \/>&nbsp; &nbsp; \u2474 ADMINISTRATION &gt; Configuration &gt; ScanCentral\ub85c \uc774\ub3d9<br \/>&nbsp; &nbsp; &nbsp; \u25b7Enable ScanCentral: \u2611<br \/><br \/>&nbsp; &nbsp; &nbsp; \u25b7ScanCentral controller URL: http:\/\/192.168.137.56:8080\/scancentral-ctrl<br \/><br \/>&nbsp; &nbsp; &nbsp; \u25b7ScanCentral poll period (seconds): 120<br \/><br \/>&nbsp; &nbsp; &nbsp; \u25b7SSC and ScanCentral controller shared secret: &lt;PASSWORD&gt;<br \/><br \/>&nbsp; &nbsp; \u2475 SSC \uc7ac\uc2dc\uc791<br \/><br \/><br \/><br \/><span style=\"font-size: 14pt;\"><strong>\u25a0 ScanCentral Client \uc6b4\uc601 \uacfc\uc815<\/strong><\/span><br \/><strong><br \/>&nbsp; 1. APPLICATION \uc0dd\uc131<\/strong><br \/>&nbsp; &nbsp; SSC &gt; APPLICATIONS &gt; +NEW APPLICATION VERSION<br \/><br \/><strong>&nbsp; 2. ScanCentral \uc778\uc99d \ud1a0\ud070 \ubc1c\uae09<\/strong><br \/>&nbsp; &nbsp; \u2474\ud1a0\ud070 \ubc1c\uae09 \ubc29\ubc95-1<br \/>&nbsp; &nbsp; &nbsp; SSC &gt; ADMINISTRATION &gt; Users &gt; Token Management &gt; NEW<br \/>&nbsp; &nbsp; &nbsp; Token Type: ScanCentralCtrlToken<br \/>&nbsp; &nbsp; &nbsp; \"Use the decoded token below with Fortify Static Code Analyzer applications such as Audit Workbench, IDE plugins, and utilities.\" \ud56d\ubaa9\uc758 \ud1a0\ud070 \ubcf5\uc0ac<br \/>&nbsp; &nbsp; &nbsp; \u203b\ud1a0\ud070\uc740 \uc7ac\uc5f4\ub78c\ud560 \uc218 \uc5c6\uae30 \ub54c\ubb38\uc5d0 \ubcf5\uc0ac \ud6c4 \uc798 \uc800\uc7a5\ud574\uc57c \ub41c\ub2e4.<br \/><br \/>&nbsp; &nbsp; \u2475\ud1a0\ud070 \ubc1c\uae09 \ubc29\ubc95-2<br \/>&nbsp; &nbsp; &nbsp; fortifyclient -url http:\/\/192.168.137.1:8080\/ssc -user OSUSER -password &lt;PASSWORD&gt; token -gettoken \"ScanCentralCtrlToken\"<br \/><br \/>&nbsp; &nbsp; \u2476\ud1a0\ud070 \ubaa9\ub85d \uc5f4\ub78c<br \/>&nbsp; &nbsp; &nbsp; fortifyclient -url http:\/\/192.168.137.1:8080\/ssc -user OSUSER -password &lt;PASSWORD&gt; listtokens<br \/><br \/><br \/><strong>&nbsp; 3. ScanCentral Controller\uc5d0 Scan \uc694\uccad<\/strong><br \/>&nbsp; &nbsp; \u2474 MBS \ud30c\uc77c \uc0dd\uc131<br \/>&nbsp; &nbsp; &nbsp; sourceanalyzer -b webgoat -clean<br \/>&nbsp; &nbsp; &nbsp; sourceanalyzer -b webgoat -source 1.5 -cp \"webgoat\/WebContent\/WEB-INF\/lib\/*.jar\" webgoat\/JavaSource webgoat\/WebContent<br \/>&nbsp; &nbsp; &nbsp; sourceanalyzer -b webgoat -export-build-session webgoat.mbs<br \/>&nbsp; &nbsp; &nbsp; sourceanalyzer -b webgoat -clean<br \/><br \/>&nbsp; &nbsp; \u2475 SSC\uc758 \uc560\ud50c\ub9ac\ucf00\uc774\uc158 Version ID \uc5f4\ub78c<br \/>&nbsp; &nbsp; &nbsp; fortifyclient -url http:\/\/192.168.137.1:8080\/ssc -user OSUSER -password &lt;PASSWORD&gt; listApplicationVersions<br \/><br \/>&nbsp; &nbsp; \u2476 \ubc29\ubc951: ScanCentral \uc11c\ubc84\ub97c \ud1b5\ud55c \uc2a4\uce94 \uc694\uccad<br \/>&nbsp; &nbsp; &nbsp; scancentral -url http:\/\/192.168.137.56:8080\/scancentral-ctrl start -upload -versionid 1 -uptoken 7f6e845a-6941-4f9f-85ea-ebad77beebde -email build@esvali.com -mbs d:\\desktop\\opentext_ssc_\uad50\uc721\uc790\ub8cc\\sample\\LoginProject.mbs -scan -Xmx2G<br \/><br \/>&nbsp; &nbsp; &nbsp; \u203b-b &lt;\ube4c\ub4dc\uba85&gt; \uc635\uc158\uc744 \ud1b5\ud574 MBS\uac00 \uc544\ub2cc \ube4c\ub4dc\uba85\uc73c\ub85c \uc791\uc5c5 \uac00\ub2a5\ud558\ub2e4.<br \/>&nbsp; &nbsp; &nbsp; \u203b-rules \uc635\uc158\uc744 \ud1b5\ud574 \ubcc4\ub3c4\uc758 rule \ud30c\uc77c\uc744 \uc9c0\uc815\ud560 \uc218 \uc788\ub2e4. ex) -rules rule0.xml<br \/>&nbsp; &nbsp; &nbsp; \u203b-filter \uc635\uc158\uc744 \ud1b5\ud574 \ubcc4\ub3c4\uc758 filter \ud30c\uc77c\uc744 \uc9c0\uc815\ud560 \uc218 \uc788\ub2e4. ex) -filter filter0.txt<br \/>&nbsp; &nbsp; &nbsp; \u203b-log \uc635\uc158\uc744 \ud1b5\ud574 \ub85c\uadf8\ub97c \uc9c0\uc815\ud560 \uc218 \uc788\ub2e4. ex) -log mylog.log<br \/>&nbsp; &nbsp; &nbsp; \u203b-block \uc635\uc158\uc744 \ud1b5\ud574 \uc2a4\uce94 \uc791\uc5c5 \uc644\ub8cc \ud6c4 FPR \ud30c\uc77c\uc744 \uc11c\ubc84\ub85c \ub2e4\uc6b4\ub85c\ub4dc\uac00 \uac00\ub2a5\ud558\ub2e4. ex) -block -o -f webgoat0.fpr<br \/>&nbsp; &nbsp; &nbsp; \u203b-scan -Xmx2G\ub294 sourceanalyzer \uc635\uc158\uc774\ub2e4.<br \/><br \/>&nbsp; &nbsp; \u2477 \ubc29\ubc952(\uad6c \ubc29\ubc95): SSC\ub97c \ud1b5\ud55c \uc2a4\uce94 \uc694\uccad<br \/>&nbsp; &nbsp; &nbsp; scancentral -sscurl http:\/\/192.168.137.1:8080\/ssc -ssctoken b712a1dc-3cd1-4167-8b38-6cdaf4b8e32a start -upload -versionid 23806 -uptoken 5a34961b-16e0-4346-869f-d02a5c2b003a -email build@esvali.com -mbs \/home\/OSUSER\/webgoat\/webgoat.mbs -scan -Xmx2G<br \/><br \/><strong>&nbsp; 4.ScanCentral \uc0c1\ud0dc \ud655\uc778 \ubc29\ubc95<\/strong><br \/>&nbsp; &nbsp; SSC &gt; SCANCENTRAL<\/span>\n","protected":false},"excerpt":{"rendered":"<p>replace token: \/home\/OSUSER OSUSER OSGROUP &lt;PASSWORD&gt; 192.168.137.56 192.168.137.1 scancentral@esvali.com \u25a0 \ud14c\uc2a4\ud2b8 \ud658\uacbd &nbsp; -\ub85c\uadf8\uc778 \uacc4\uc815: OSUSER:OSGROUP&nbsp; -\uc124\uce58 \ub514\ub809\ud1a0\ub9ac: \/home\/OSUSER&nbsp; -Fortify SSC: 192.168.137.1&nbsp; -ScanCentral Controller: 192.168.137.56&nbsp; -ScanCentral Client: 192.168.137.1&nbsp; -ScanCentral Sensor #1~#3: 192.168.137.57~59 \u25a0 ScanCentral \uc124\uce58&nbsp; 1. ScanCentral Controller&nbsp; &nbsp; \u2474 \uc900\ube44 \uc791\uc5c5&nbsp; &nbsp; &nbsp; JRE \uc124\uce58 (JRE_HOME \ubc0f JAVA_HOME \ud658\uacbd\ubcc0\uc218 \ud655\uc778) &nbsp; &nbsp; \u2475 Fortify [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_import_markdown_pro_load_document_selector":0,"_import_markdown_pro_submit_text_textarea":"","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[66],"tags":[],"class_list":["post-3297","post","type-post","status-publish","format-standard","hentry","category-computing_fortify"],"_links":{"self":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/posts\/3297","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3297"}],"version-history":[{"count":0,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/posts\/3297\/revisions"}],"wp:attachment":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3297"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3297"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3297"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}