I used OWASP ZAP to scan an application I developed. The scan report lists out vulnerabilities, if any. If not, nothing gets printed. Does ZAP provide a list of tests that passed? How to obtain such a report?
You can use the API to get all the scan rules (<zap_host>/JSON/pscan/view/scanners/?zapapiformat=JSON&formMethod=GET
or <zap_host>/JSON/ascan/view/scanners/?zapapiformat=JSON&formMethod=GET&scanPolicyName=&policyId=), which is similar to all the tests. Another option is to get all URLs scanned by Zap (<zap_host>/JSON/core/view/urls/?zapapiformat=JSON&formMethod=GET&baseurl=). Hope that helps...
Related
I have a java application, that only communicates via websocket on port 1234. I'd like to use ZAP for some fuzz testing. The thing is I can't make OWASP ZAP to see my application. If I want to add it as a site, it won't let me because I can add only http sites. I can't scan "ws://127.0.0.1:1234". How can I do that? I checked the ZAP Wiki, and blogs about adding "websocket sites", but they all added it via http, but I can't do that. I tried a few other tools as well, none seems to work.
Any help is appreciated.
We've got some changes in the pipeline that might make this easier. I'll aim to get back to you asap.
I already develop a Selenium code to perform the web application testing. But i need to perform the security testing for the same application. So Please suggest me how to perform the security testing with selenium code .
Please help to integrate the selenium with ZAP.
Proxy your Selenium tests through ZAP and then use ZAP to test your app.
Exploring apps effectively is always a challenge for automated scanners, but a good set of Selenium tests are a great way to teach a scanner like ZAP about how your app works. You can either not bother using the ZAP Spiders or just use them to catch areas of you app that dont have enough tests. By proxying your tests via ZAP you will automatically get passive scanning, and once they have finnished you can use active scanning to run the more agressive attacks.
ZAP has a very powerful API so can be completely automated for this sort of testing.
After some time spent scouring google and looking through the Sonar Qube API documentation, along with trying a few permutations on common patterns, I have arrived to the point where I am wondering if it is even possible to use multiple parameters when doing an issue search in SonarQube's API.
Purpose of search is to populate a team radiator with issue data from Sonarqube. This data will be combined with build data from other sources (Or else I would just link to the SonarQube display page)
current configured URL to api is:
https://sonarqubesitehere.com/api/issues/search?=projectKeys=com.projectnamehere
(This is dummy code with names changed to protect the innocent)
I would like to be able to add a second parameter to this search that allows me to receive only major (or minor) issues that belong to the specific project I specify. the search term for that search is /search?severities=MAJOR
Anyone wrangled with this particular problem?
Please check the WS API on sonarqube.com or your own instance like: https://your-sonarqube.com/web_api/api/issues/search.
Here's an example of api/issues/search with several parameters
Hummmm... Provided that you read the Web API documentation for /issues/search, and that you know how to correctly write a URL that uses parameters, then it's quite easy to find that the solution is the following:
https://<your_server>/api/issues/search?projectKeys=project1Key,project2Key&severities=MINOR,MAJOR
Live example on SonarQube.com: https://sonarqube.com/api/issues/search?projectKeys=clang,git&severities=BLOCKER
I have run ZAP security tool for Test .net MVC application, ZAP tool takes too much time to run script and sometimes tool not responding well. Is there any other tool which gives me accurate results like zap?
Thanks.
Have you seen this blog post about speeding up ZAP scans: https://github.com/zaproxy/zaproxy/wiki/FAQscanSpeed
You can also ask specific questions on the ZAP User Group: http://groups.google.com/group/zaproxy-users
We'll do our best to help, but its difficult unless we have some more info ;)
Simon (ZAP Project Lead)
I want to generate a basic report from testing, I would like the testing to cover the OWASP top 10. I have looked at OWASP ZAP reporting but this just highlights any issues as opposed to saying XY and Z were tested for with no evidence of them occurring along with detailing the issues found.
This is not a question on how to test a web-application. The question is: Are there any tools that will generate reports specifying what was tested for along with vulnerabilities?
You can see what ZAP is testing for by selecting Analyse... / Scan Policy
We're also starting to document the rules under here https://code.google.com/p/zap-extensions/wiki/V2Extensions (look at the items under the tree on the left).
Note that no tool will be able to automatically test for all of the OWASP Top ten - you will really need to perform manual testing as well.
The ZAP reporting does need to be improved, and I'd like it to include a list of what was tested as well as what was found. ZAP is a community project - fancy working on this? ;)
Simon (ZAP project lead)