Setup Local Shepherd

This wiki will walkthrough how to create a local instance of Shepherd and building the application from source with the build.xml . Ideal for developing.

1. Make sure you have the git repositories for the OWASP/SecurityShepherd project (Or your fork)
2. Install Tomcat (Port 8080 is default)
3. Install MySQL (Port 3306 is default)
4. Update the SecurityShepherdCore/site/WEB-INF/coreDatabase.properties file to reflect your local DB username and password (DO NOT COMMIT THESE CHANGES)
5. Update the "tomcat" property in SecurityShepherdCore/build.xml to be the "webapps" directory of your Tomcat deployment (DO NOT COMMIT THESE CHANGES)
6. Run the SecurityShepherdCore/database/coreSchema.sql and SecurityShepherdCore/database/moduleSchemas.sql in your MySQL server as a root user
7. Through eclipse, run the ant build script "build.xml". This will compile the application into a .WAR file and place it in your tomcat webapps directory. Tomcat will know what to do with it
8. Navigate to http://127.0.0.1:8080/ to see Shepherd running (Or whatever port you configured Tomcat to operate on)
9. Sign in with default username and password (admin/password), and change the password.

@PhilDunphy has made a video of this process: Shepherd Manual Setup And Build From Source

11. To setup and install MonogoDB for the NoSQL Injection Level found in shepherd, follow the steps to install here: https://docs.mongodb.org/manual/tutorial/install-mongodb-on-windows/
12. Use the MongoDB shell to execute the mongoSchema.js file: https://docs.mongodb.org/manual/reference/method/load/