I understand it as ZAP will look for any strings that are reflecting (immediately or in subsequent pages after storing) and try for all the predefined vectors. Also, I believe that current scanners in market (open source/commercial) do not have the AI (Artificial Intelligence) to build custom vectors based on Vector Repository and the application's behavior. Feel free to correct my understanding.
--
You received this message because you are subscribed to a topic in the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/zaproxy-users/-5gulIquvmg/unsubscribe.
To unsubscribe from this group and all its topics, send an email to zaproxy-users+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/zaproxy-users/30cd1eae-f601-49e9-8890-5f0bf01a4364%40gmail.com.
For more options, visit https://groups.google.com/d/optout.
Yes the DOM XSS Scanner is an addon. It launches Firefox (currently) and looks for DOM based XSS. You can get it via the ZAP Marketplace.
--
You received this message because you are subscribed to a topic in the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/zaproxy-users/-5gulIquvmg/unsubscribe.
To unsubscribe from this group and all its topics, send an email to zaproxy-users+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/zaproxy-users/d9aab7f0-4ac1-4689-931f-c71c652ba8be%40googlegroups.com.
Hello Friends,Have you had an opportunity to look into my email.- ch1c0hacker :)
--
You received this message because you are subscribed to a topic in the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/zaproxy-users/-5gulIquvmg/unsubscribe.
To unsubscribe from this group and all its topics, send an email to zaproxy-users+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/zaproxy-users/32ec4f86-500a-4dc1-b163-664f44f1baad%40googlegroups.com.
I haven't had a chance to recreate any of this. Chances are there are false negative situations. If you'd like to submit a code change to address this one we'd be happy to deal with the pull request.
--
You received this message because you are subscribed to a topic in the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/zaproxy-users/-5gulIquvmg/unsubscribe.
To unsubscribe from this group and all its topics, send an email to zaproxy-users+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/zaproxy-users/63fb258e-b55e-4255-a320-8a7dad69089b%40googlegroups.com.
I should have included. The majority of the dev team uses Eclipse (you don't have to there are others that use IntelliJ). However, using Eclipse will make it easier for us to support and guide you if needed.
I've used the last few versions of Eclipse and am currently running Oxygen2 on my dev systems. I don't think any of the team have moved to Photon yet.
--
You received this message because you are subscribed to a topic in the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/zaproxy-users/-5gulIquvmg/unsubscribe.
To unsubscribe from this group and all its topics, send an email to zaproxy-users+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/zaproxy-users/b67f5419-239d-43b1-a6f7-265a0bfd24ef%40googlegroups.com.
ch1c0hacker any luck making progress on this?
--
You received this message because you are subscribed to a topic in the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/zaproxy-users/-5gulIquvmg/unsubscribe.
To unsubscribe from this group and all its topics, send an email to zaproxy-users+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/zaproxy-users/5dc9e4ef-b845-4b7d-be14-d78cd32845db%40googlegroups.com.