官网: https://rasp.baidu.com/doc/
tomcat服务器安装openRasp:
step1:下载 到github下载安装文件 下载地址:https://github.com/baidu/openrasp/releases
cd /usr/local/soft wget https://github.com/baidu/openrasp/releases/download/v0.24/rasp-java.tar.gz
step2:安装 tar -zxvf rasp-java.tar.gz cd cd rasp-2018-02-08/ java -jar RaspInstall.jar java -jar RaspInstall.jar /web/webserver/tomcat/apache-tomcat-7.0.61 <<如果没有错误提示即表示安装成功>>
step3:重启tomcat /web/webserver/tomcat/apache-tomcat-7.0.61/bin/catalina.sh stop /web/webserver/tomcat/apache-tomcat-7.0.61/bin/catalina.sh start
step4: 验证安装是否成功 1).tomcat根目录会生成一个rasp目录 /web/webserver/tomcat/apache-tomcat-7.0.61/rasp 2).检查 ${tomcat_root}/rasp/logs/rasp/rasp.log 中是否出现 OpenRasp Initialized <<安装已经结束>>
step5:测试用例安装 下载测试用例war包到${tomcat_root}/webapps/ 目录下 wget https://github.com/baidu-security/openrasp-testcases/releases/download/v1.0.4/fastjson.war
下载完,重启tomcat 访问; http://${server_ip}:8080/fastjson/fastjson 则跳转至下面地址,表明拦截生效: https://rasp.baidu.com/blocked/?request_id=651cb0785a73451ebee14e95ea724dd2