AttackForge Enterprise

CreateProject

This method can be used for the following functionality: Create a new Project in AttackForge

Parameters

The following URL, Headers and Parameters are required for requests to this API endpoint. Where a parameter is optional, it will be indicated. Otherwise treat all parameters as mandatory.

Headers

POST /api/ss/project HTTP/1.1
Host: demo.attackforge.com
X-SSAPI-KEY: APIKey
Content-Type: application/json
Connection: close

Query

name (string)

Name of the project.

Example:

{
"name": "..."
}

code (string)

Project code.

Example:

{
"code": "..."
}

groups (array of strings) (optional)

Groups to link to the project. Must match exact group names.

Example:

{
"groups": ["...", "...", "..."]
}

startDate (string)

Project start date. String in YYYY-MM-DD format.

Example:

{
"startDate": "2020-01-01"
}

endDate (string)

Project end date. String in YYYY-MM-DD format.

Example:

{
"endDate": "2020-01-05"
}

scoringSystem (string) (optional)

Scoring system to be used on the project. Must be either Manual or CVSSv3.1.

Example:

{
"scoringSystem": "CVSSv3.1"
}

scope (array of strings)

Project scope / assets to be tested.

Example:

{
"scope": ["...", "...", "..."]
}

testsuites (array of strings)

Testsuites to assign to the project. Must match exact testsuite names.

Example:

{
"testsuites": ["...", "...", "..."]
}

Example

The following example is a cURL request to create a new project.

Request

Include API Token instead of stars in 'X-SSAPI-KEY: ***************************************' parameter.

curl -X POST 'https://demo.attackforge.com/api/ss/project' -H 'Host: demo.attackforge.com' -H 'X-SSAPI-KEY: ***************************************' -H 'Content-Type: application/json' -H 'Connection: close' -d '{
"name": "ACME Corp Web App Pentest",
"code": "DEMO9999",
"groups": ["ACME Corp Digital Team", "Pentest Team"],
"startDate": "2020-01-01",
"endDate": "2020-01-05",
"scoringSystem": "CVSSv3.1",
"scope": ["test.com", "192.168.0.1"],
"testsuites": ["ASVS Level 2 Web Application", "OSSTMM v3.0 Infrastructure"]
}'

Response

Response contains a project object.

{
"project": {
"id": "...",
"created": "...",
"last_updated": "...",
"name": "...",
"code": "...",
"groups": ["...", "...", "..."],
"startDate": "...",
"endDate": "...",
"scoring_system": "...",
"isOnHold": "..."
}
}