benchmark-infrastructure provides a set of Vulnerable by Design (VbD) Targets of Evaluation to assess the performance of automated Application Security Testing tools.
The infrastructure for the benchmark includes a set of Vulnerable by Design (VbD) Targets of Evaluation (ToEs) used to measure the speed and accuracy of automated Application Security Testing (AST) tools.
This tool is primarily used by security professionals and developers to benchmark the effectiveness of various Application Security Testing tools. By deploying vulnerable environments, users can measure the speed and accuracy of their security tools in a controlled setting.
Ensure that you have the necessary AWS permissions and Cloudflare API access before deploying.
Create an IAM user with permissions to read, write, and modify EC2 instances.
Generate an access key for the IAM user.
Run 'aws configure' and enter the access key.
Generate a Cloudflare API token with read and write permissions.
Generate an SSH key for the EC2 instance.
Update variables in 'variables.tf' with specific values.
Run the deployment script with './deploy.sh'.aws configure
Configures the AWS CLI with your access key.
ssh-keygen -t ed25519
Generates an SSH key for the EC2 instance.
./deploy.sh
Deploys the Vulnerable by Design Targets of Evaluation.