-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathZAPconfig.json
74 lines (73 loc) · 3.27 KB
/
ZAPconfig.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
{
"default":{
"ZAP_apikey":"api_key",
"ZAP_baseURL":"http://127.0.0.1:8082",
"ZAP_apiformat":"JSON"
},
"ZAP_core":{
"viewSitesPath":"json/core/view/sites",
"viewAlertsPath":"json/core/view/alerts",
"newSessionPath":"json/core/action/newSession",
"sessionName":"AppSec_session"
},
"application":{
"excludeSites":["example.com*","http://<sitestoexclude>.*"],
"excludeDomain":["google"],
"loginURL":"https://example.com/",
"userNameParameter":"username",
"passwordParameter":"password",
"otherLoginParameters":"targetUrl=/test",
"loggedInIndicatorRegex":"Logout",
"loggedOutIndicatorRegex":"Login",
"applicationURL":"https://example.com/",
"userName":"username",
"password":"password",
"customScanPolicy":"False",
"scanRequestHeader":"False"
},
"ascan":{
"excludeFromScanPath":"json/ascan/action/excludeFromScan",
"activescanPath":"json/ascan/action/scan",
"scanAsUser":"json/ascan/action/scanAsUser",
"scanstatusPath":"json/ascan/view/status",
"viewScannersPath":"json/ascan/view/scanners",
"testNames":["Path Traversal","Remote File Inclusion","Server Side Include","Cross Site Scripting (Reflected)",
"Cross Site Scripting (Persistent)","SQL Injection","Server Side Code Injection","Remote OS Command Injection",
"Directory Browsing","External Redirect","Parameter Tampering","Cross Site Scripting (Persistent) - Prime",
"Cross Site Scripting (Persistent) - Spider","Script Active Scan Rules","Source Code Disclosure - CVE-2012-1823",
"Remote Code Execution - CVE-2012-1823","Session Fixation","Advanced SQL Injection","XPath Injection",
"XML External Entity Attack","Insecure HTTP Method","LDAP Injection","HTTP Only Site","Proxy Disclosure",
"HTTPS Content Available via HTTP"],
"scanPolicyName":"customscan",
"addScanPolicyPath":"json/ascan/action/addScanPolicy",
"removeScanPolicyPath":"json/ascan/action/removeScanPolicy",
"disableAllScannersPath":"json/ascan/action/disableAllScanners",
"enableScannersPath":"json/ascan/action/enableScanners",
"scanAllRequestHeadersPath":"json/ascan/action/setOptionScanHeadersAllRequests"
},
"context":{
"name":"ZAP_AppSec",
"createContextPath":"json/context/action/newContext",
"removeContextPath":"json/context/action/removeContext",
"contextListPath":"json/context/view/contextList",
"includeContextPath":"json/context/action/includeInContext"
},
"alertFilter":{
"addAlertFilterPath":"json/alertFilter/action/addAlertFilter"
},
"authentication":{
"setAuthMethodPath":"json/authentication/action/setAuthenticationMethod",
"setLoggedInIndicatorPath":"json/authentication/action/setLoggedInIndicator",
"setLoggedOutIndicatorPath":"json/authentication/action/setLoggedOutIndicator",
"authMethodName":"formBasedAuthentication"
},
"users":{
"newUserPath":"json/users/action/newUser",
"setAuthCredsPath":"json/users/action/setAuthenticationCredentials",
"setUserEnabledPath":"json/users/action/setUserEnabled/"
},
"spider":{
"scanAsUserPath":"json/spider/action/scanAsUser",
"spiderStatus_User":"json/spider/view/status"
}
}