Anupa_sj
Reputation: 11
Run a active scan from OWASP ZAP through Ubuntu command line using Open API Definition
I'm trying to run a active scan from OWASP ZAP using only my Ubuntu(22.04) terminal by importing a external open API definition. This can be easily done through the GUI, but I need to do the same process using only command line. I didn't found a proper documentation to follow either.
I have tried following structure of the command to do the active scan, but seems it fails.
/path/to/zap.sh -daemon -openapifile /path/to/swagger.json -openapitargeturl /path/to/targetUrl -quickout /path/to/output.html
Can anyone suggest a proper way to make this active scan through the Ubuntu terminal.
Upvotes: 1
Views: 1011
Answers (1)
Simon Bennetts
Reputation: 6186
We have lots of documentation for automating ZAP - see https://www.zaproxy.org/docs/automate/ I recommend looking at the API packaged scan and the Automation Framework.
Upvotes: 1
Related Questions
- Haproxy - cannot capture URL
- HAProxy random HTTP 503 errors
- HAProxy only returns error 500 in forward proxy mode
- Getting 404 when call request by haproxy (directly works fine)
- Why always receive status code 400 when sending HTTP request to HAProxy
- haproxy 504 timeout to apache
- HAProxy timeout after 120 seconds
- 502 Bad Gateway Haproxy in server
- HAproxy path_beg not redirect
- facing an issue with haproxy / nginx