Feature/lab5

[ostxxp]

Goal

Complete Lab 5 by performing both SAST and multi-approach DAST analysis on OWASP Juice Shop, then compare the results to show how static and dynamic testing complement each other in a DevSecOps workflow.

Changes

• Added labs/submission5.md with the full Lab 5 write-up
• Ran Semgrep SAST analysis and added generated reports
• Performed unauthenticated and authenticated ZAP scans and added reports
• Added ZAP authentication automation config in labs/lab5/scripts/zap-auth.yaml
• Ran Nuclei scan and added generated outputs
• Ran Nikto scan and added generated output
• Ran SQLmap scan and added generated results
• Added analysis files for:
  • SAST summary
  • ZAP authenticated vs unauthenticated comparison
  • DAST summary
  • SAST/DAST correlation
• Added helper scripts used during the lab:
  • labs/lab5/scripts/compare_zap.sh
  • labs/lab5/scripts/summarize_dast.sh

Testing

• Verified Semgrep completed successfully and produced semgrep-results.json and semgrep-report.txt
• Verified Juice Shop was running locally and reachable on port 3000
• Verified admin authentication worked before running authenticated ZAP scan
• Verified unauthenticated and authenticated ZAP scans both completed and produced reports
• Verified authenticated scan discovered a broader attack surface than unauthenticated scan
• Verified Nuclei completed successfully and detected exposed endpoints such as /metrics and Swagger docs
• Verified Nikto completed successfully against the running Juice Shop container
• Verified SQLmap confirmed SQL injection in the q parameter of /rest/products/search
• Ran repository pre-commit secret scanning (TruffleHog and Gitleaks); no secrets were detected
• Successfully committed and pushed branch feature/lab5 to origin

Artifacts & Screenshots

• labs/submission5.md
• labs/lab5/analysis/correlation.txt
• labs/lab5/analysis/dast-summary.txt
• labs/lab5/analysis/sast-analysis.txt
• labs/lab5/analysis/zap-comparison.txt
• labs/lab5/semgrep/semgrep-report.txt
• labs/lab5/semgrep/semgrep-results.json
• labs/lab5/zap/report-noauth.html
• labs/lab5/zap/report-auth.html
• labs/lab5/zap/zap-report-noauth.json
• labs/lab5/zap/zap-report-auth.json
• labs/lab5/nuclei/nuclei-report.txt
• labs/lab5/nuclei/nuclei-results.json
• labs/lab5/nikto/nikto-results.txt
• labs/lab5/sqlmap/results-03032026_1134am.csv
• labs/lab5/sqlmap/localhost/log

Checklist

• Clear and descriptive title
• Documentation updated if needed
• No secrets or temporary files included