Collaborate Disseminate
I’m working through an OWASP Zap report that has flagged several URLs on the domain as being vulnerable to XSS, but the vulnerability is never output in a context that is executable by the browser. For instance, the report is showing
pat… Continue reading Is non-executed content still considered XSS?
Looking to sterilize something? Give it a good blast of the old UV-C. Ultraviolet radiation in the shortest wavelength band breaks down DNA and RNA, so it’s a great way to kill off any nasties that are lurking. But how much UV-C are you using? [Akiba] at Hackerfarm has come …read more
First Situation: I proxy through some requests to zap and want to perform an active scan on them. Zap active scan is working on one property at a time, and this particular request requires some of the properties to be unique per request.
… Continue reading What is the best way for OWASP Zap to handle Unique Fields and API Sequences?
I’m trying to create a script using the Node ZAP SDK. The script needs to perform an active scan of the site on localhost while signed in as a super admin; if no user is signed in, it can only reach about 3 of the 50 or so available pages…. Continue reading OWASP ZAP API HTTP Sessions setup
I have an iOS app with certificate pinning to two different servers.
I want to test this certificate pinning with a MITM attack, so I did:
Set proxy at my PC, in macos wifi settings -> advanced -> proxies -> enabled http/https proxy.
In… Continue reading Is it possible for OWASP ZAP to pass-through some requests without intercepting them, as if there were no proxy?
I’m trying to import and scan Open API Definitions and it seems to me that the url parameters and request body are not being replaced with real data. Is there a way for OWASP ZAP to automatically replace those parameterand body requests wi… Continue reading What is the best way for OWASP ZAP to add real data to the url parameters and the body requests so that the scan is most accurate?
I would like to know if anyone knows how to stop or speed-up an in-progress ZAP passive scan on version 2.9. I have a 64000+ passive scan queue and it is not draining fast at all.
I have disabled all of the passive scan rules by going to O… Continue reading Stop an in-progress passive scan in OWASP ZAP 2.9
I am testing a website that makes heavily use of REST API endpoints. After authentication, the app adds the authentication token as part of every request in the form of:
OPTIONS
https://www.target.com/api/Action/some-action?data=foobar&am… Continue reading OWASP ZAP: Add parameter to every request
I used zap to scan one of my websites and found a path traversal issue.
These are the informations:
Attack: c:/
URL: www.example.com/example.php
Parameter: mail
I am now tinkering around in the browser and in CMD with curl and try to… Continue reading Using this path traversal security issue
I have a target which is a Java applet. When I reach the IP in the browser and enter credentials into a form, a .jnlp file downloads, which I need to double-click on to access the page.
Does Zap have support for scanning this types of Web … Continue reading Can Zap scan a web app launched as a JAVA applet?