For this Lab please do make sure to include a word document to use called williamclementsSDEV300Lab9 attached. Please format it so it is a professional report including APA Style references for how you fix the 2 separate ZAP Reports attached which are the vulnerability reports I had already ran. So please be well-organized and include a table of contents, page numbers, figure and table numbers. The writing style should be paragraph style with bullets used very sparingly to emphasize specific findings. In other words, this should be a professional report and demonstrate mastery of writing.
Those two reports are week7 local host website that was created last week and a local host site that was given to evaluate this week. After documenting all the issues and how you fixed them, send those two files two me as a zip file separately attached so I can run the files again and be sure there are no more vulnerability issues for any of the 2 different local lost websites. Below is what is required!
Lab submission details:
As part of the submission for this Lab, you will run manual and automatic attacks on your week7 lab submission and the UMUC Tutor app on your VM.
Be sure to work on each application separately and document the issues you found and the process you used to fix the applications. You can provide the findings in one well-organized document. You should work to eliminate all alerts in both applications and clearly document specifically what you did to mitigate each issue.
Create screen shots demonstrating your process and results. The document should be well-organized and include a table of contents, page numbers, figure and table numbers. The writing style should be paragraph style with bullets used very sparingly to emphasize specific findings. In other words, this should be a professional report and demonstrate mastery of writing.
Be sure your process includes both manual and automatic scanning. When researching your security alerts, be sure to document your references using APA style. You should show both before and after fix vulnerability reports. Your final vulnerability report should show zero alerts and vulnerabilities.
For your deliverables, you should submit a zip file containing your word document (or PDF file) along with the before and after application files. (including sql and parameter files) If you made changes to your VM environment (e.g. security.conf, apache2.conf, php.ini) you should provide those files also.
Include your full name, class number and section and date in the document.
Here is what I have attached & Why:
· UMUCTutorLamp.zip (supplied local host site by teacher).
· ZAP Scanning Report for UMUCTutorLamp.docx (should open in a word document with the vulnerability report for the site).
· answer_2.0.zip (My website created).
· ZAP Scanning Report for week7 Lab.docx (should open in a word document with the vulnerability report for the site).
williamclementsSDEV300Lab9.dox (Please use that for the report as mentioned above and send back along with the zip file edits).