Skip to main content

Integrating Invicti Standard with Jenkins

This document is for:
Invicti Standard

Jenkins provides an open source automation server that supplies plugins that support the development of software projects. If you already use Jenkins to automate tasks, you can integrate the Invicti web application security scanner with Jenkins. This enables you to automate Invicti Standard scans and export Invicti reports. These automated Invicti tasks are then displayed in the Jenkins UI.

This article explains how to run scans automatically and export reports from Invicti via Jenkins.

note

As Jenkins is a Windows service, none of the GUIs of any applications triggered by Jenkins will open. They will be launched in a background process.

How to Integrate Invicti Standard with Jenkins

  1. Once you have installed Jenkins on your local machine, open the Jenkins web user interface. The Jenkins web interface can be reached at: http://127.0.0.1:8080/. This window is displayed: Click the Create a Job link.
Jenkins main interface showing Create a Job link
  1. In the Enter an item name field, type your project name.
  2. Select Freestyle project as the type.
Creating a freestyle project in Jenkins with project name input
  1. Click OK. The Config window is displayed.
Jenkins project configuration window after creating freestyle project

  1. Click the Build Environment tab.

  2. From the Add build step dropdown, select Execute Windows batch command. The Execute Windows batch command panel is displayed.

Adding Windows batch command build step in Jenkins
  1. In the Command field, enter the following command:
cd C:\Program Files (x86)\Invicti
invicti.exe /a /url http://php.testsparker.com/ /rt "Detailed Scan Report" /r "C:\Users\CURRENT_USER\Documents\Invicti\Reports\report_phptestsparkercom.html"

In this command, the value 'Detailed Scan Report' given to the rt parameter on the command line, is taken from the template names contained in the C:\Users{USERNAME}\Documents\Invicti\Resources\Report Templates directory.

If any of the template names from this screenshot were included in the command, instead of 'Detailed Scan Report', a report will be generated according that template instead.

For further information about the parameters you can use when running Invicti Standard via the command line, see Invicti Standard Command Line Interface and Arguments.

Configuring Invicti Standard command in Jenkins batch execution
  1. Click Save to save the project.
  2. This screenshot shows a Console Output window after the created task runs.
Jenkins console output showing Invicti Standard scan execution results

This screenshot shows a Workspace that is created after the task runs.

Jenkins workspace view after successful Invicti Standard scan execution
important

If you run Jenkins as a Local System Account, Invicti saves files in the C:\Invicti folder. This will prohibit the Jenkins service from running properly. Instead, you need to run the Jenkins service as a User Account. This will enable Invicti to save the files under the C:\Documents\USER\Invicti folder.

How to Run Jenkins as a User Account
  1. Click Windows and select Run. The Run dialog is displayed.
  2. Type 'services.msc' into the textbox and press Enter. The Services window is displayed.
  3. Select Jenkins from the list, right-click on the service name, and select Properties. The Jenkins Properties dialog is displayed.
  4. Select the Log On tab and select This Account.
  5. Enter your Windows account name and password.
Enter your Windows account name and password
  1. Restart Jenkins service to make changes take effect.
  2. Re-build the Jenkins project.
  3. Check in Task Manager (Shift+Control+Esc) to see if the scan has started.

Need help?

Invicti Support team is ready to provide you with technical help. Go to Help Center

Was this page useful?