vpereira / owasp_zap Goto Github PK
View Code? Open in Web Editor NEWaccess zap proxy api using ruby
License: MIT License
access zap proxy api using ruby
License: MIT License
as described here https://groups.google.com/forum/#!topic/zaproxy-users/p1aXvO6oWu4
does we really need it? one thing that should be changed is the fork call that isnt supported as suggested here: #8
Hello,
I wanted to know if we could control the depth to crawl in spidering using owasp_zap gem in ruby or could we pass parameters while calling the spider
spider = zap.spider
Also can we limit the number of urls visted during active scan in ruby?
There is no implementation for the code called here:
https://github.com/vpereira/owasp_zap/blob/master/lib/owasp_zap.rb#L39
When I start owasp zap through this client, I noticed the flag to disable api key isn't sent.
quite often the scan status doesnt move towards 100.. it hangs on 0.
The below code
def depth
JSON.parse(RestClient::get("#{@base}/JSON/spider/view/status/?zapapiformat=JSON"))
end
This is to view the status of spider rather than the depth right?
Incase we want to view the set depth shouldnt we be using
JSON.parse(RestClient::get("#{@base}/JSON/spider/view/optionMaxDepth/?zapapiformat=JSON"))
it would be cool also if your gem would add support to configure the logger to go to a file, right now I see the testsuite output mixed with zapproxy messages and some exceptions
starting on version 2.4.1 api comes automatically configured.
We should support it in all write/destructive actions. For now I'm disabling it and supporting it in the zap initialization. However It's not implemented in any method.. please check https://github.com/vpereira/owasp_zap/blob/master/lib/owasp_zap.rb#L88
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.