Sample applications and scripts

Use these sample applications to practice scanning with ASoC.

To get the feel of what it's like to scan your application with ASoC, we offer sample applications that you can use to run scans.

Scan type Download link or demo site
Dynamic (DAST) scan Demo web application that can be used to try out ASoC (use the URL and credentials below):
https://demo.testfire.net?mode=demo
Username: jsmith
Password: demo1234
Note: Running a scan of the demo site is not counted towards your license limit as long as you use the full URL shown. If you remove the ?mode=demo switch, the scan is counted towards your limit.
Dynamic (DAST) scan as part of functional testing Demo functional testing script using ASoC REST API
Static Analysis (SAST) web application code Sample IRX file
Interactive (IAST) scan as part of functional testing Sample IAST automation scripts
Importing issues from external scanners Sample CSV file

See Importing issues from third-party scanners.

Note: When the above scans are complete you can click the Report icon and download a report, but this report is for demonstration purposes and may not fully correspond to the actual app you used.