Scanning using Input Vector scripts - faster way?

[Nicole Errante]

Hi there,

So I have to use a couple input vector scripts to appropriately scan the right parameters for my application.  I know when you use input vector scripts, you cannot use recursive scan. Is there a faster way to scan a bunch of websites at once without using recursion that would still use input vectors?  Meaning, right now I'm doing it by hand through the ZAP UI and doing them one at a time from the site tree.  I'm thinking the only way might be to do some sort of batch script where I use the automation function and somehow load one site at a time?  Any tips/tricks/pointing me in the right direction for this?  Or (I hope) am I wrong that you can't select a folder and recurse through using input vectors?

Thanks in advance,

Nicole 

[kingthorin+owaspzap]

> I know when you use input vector scripts, you cannot use recursive scan.

Why? Just make sure you have script input vectors enabled and run it.

[Nicole Errante]

ARGH, really? I could have swore I read or saw somewhere you couldn't use Input Vector scripts with recursive scan. OH, I know - on the Active Scan dialog help it says "Custom input vectors are only supported if this option (meaning Recurse) is not selected".  But that must mean "Custom Vectors" from that tab on the Active Scan screen, NOT Input Vector scripts.

Well this solves my conundrum.  Thank you and sorry about that!

--
You received this message because you are subscribed to a topic in the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/zaproxy-users/nsl0pKDFRks/unsubscribe.
To unsubscribe from this group and all its topics, send an email to zaproxy-user...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/zaproxy-users/8a2f5b47-84ba-47ea-911e-d5f3bab1e9d5n%40googlegroups.com.