brandon/oam

mirror of https://gitea.com/mcereda/oam.git synced 2026-02-09 05:44:23 +00:00

Files

Michele Cereda 4b0a2f24e8 feat(peerdb): management via api

2025-02-13 21:59:16 +01:00

1.4 KiB

Raw Blame History

Zed Attack Proxy

Widely used free and open source web app scanner.

Helps automatically find security vulnerabilities in web applications.

TL;DR
Further readings
1. Sources

TL;DR

Setup

docker pull 'zaproxy/zap-stable'  # or 'ghcr.io/zaproxy/zaproxy:stable'

Usage

# Get a shell in the container.
docker run --rm --name 'zap' -ti 'zaproxy/zap-stable'

# Start the Web UI.
docker run --rm --name 'web-ui' -d -u 'zap' -p '8080:8080' -p '8090:8090' 'zaproxy/zap-stable' zap-webswing.sh \
&& open 'http://localhost:8080/zap/'

# Start API scans.
docker run --rm --name 'api-scan' 'zaproxy/zap-stable' zap-api-scan.py -t 'http://localhost:3000/api/v1/' -f 'openapi'

Further readings

Sources

Documentation