Skip to content
/ zap-baseline-custom Public

zap2docker baseline customized to allow credentialed scans

0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

gjyoung1974/zap-baseline-custom

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
config.env
config.env
 
 
deploy.env
deploy.env
 
 
run.sh
run.sh
 
 
zap-baseline-custom.py
zap-baseline-custom.py
 
 

Repository files navigation

ZAP Baseline Scan Script customized with authentication

A custom version of the OWASP ZAP baseline scan:
ZAP-Baseline-Scan
with support for authentication and active scanning.

The script performs the following actions:

  1. Perform authentication (if required)
  2. Spider the webapplication
  3. Perform a passive scan on the spidered URL's
  4. Perform an active scan (if required)
  5. Output findings to an HTML report
Usage: zap-baseline.py -t <target> [options]
    -t target         target URL including the protocol, eg https://www.example.com
Options:
    -c config_file    config file to use to INFO, IGNORE or FAIL warnings
    -u config_url     URL of config file to use to INFO, IGNORE or FAIL warnings
    -g gen_file       generate default config file (all rules set to WARN)
    -m mins           the number of minutes to spider for (default 1)
    -r report_html    file to write the full ZAP HTML report
    -w report_md      file to write the full ZAP Wiki (Markdown) report
    -x report_xml     file to write the full ZAP XML report
    -a                include the alpha passive scan rules as well
    -d                show debug messages
    -i                default rules not in the config file to INFO
    -j                use the Ajax spider in addition to the traditional one
    -l level          minimum level to show: PASS, IGNORE, INFO, WARN or FAIL, use with -s to hide example URLs
    -s                short output format - dont show PASSes or example URLs
    -z zap_options    ZAP command line options e.g. -z "-config aaa=bbb -config ccc=ddd"
    --active_scan     perform active scan
Authentication:
    --auth_loginurl            login form URL ex. http://www.website.com/login
    --auth_auto                automatically find login fields
    --auth_username            username
    --auth_password            password
Manual authentication:
    --auth_usernamefield       username inputfield name (manual login)
    --auth_passwordfield       password inputfield name (manual login)
    --auth_submitfield         submit button name (manual login)
    --auth_firstsubmitfield    two page login (usernam -> first submit -> password -> submit) (manual login)
    --auth_exclude             comma separated list of URLs to exclude, supply all URLs causing logout (manual login)

Makefile

Build and take a custom zap2docker-weekly image
Include a custom zap-baseline.py "overlay" script to allow "authenticated/credentialed" scans

Dockerfile

The Dockerfile is based on the owasp/zap2docker-weekly image (https://hub.docker.com/r/owasp/zap2docker-weekly/). The Dockerfile adds the customized scan script and installs some additional applications to support authentication in the Baseline Scan Script (like Selenium).

run.sh

This is an example shellscript to run the Zap Baseline Scan script in a Docker container on an application with authentication and active scanning.

2018 gjyoung1974@gmail.com

About

zap2docker baseline customized to allow credentialed scans

Topics

zed owasp-zap owasp-top-10 owasp-top zed-attack-proxy

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages