Hello,
I am unable to perform ZAP scan for my POST api url. Can anyone help me regarding this.?
I need it to generate ZAP scan report and submit it to salesforce for security review.
I am doing following steps-
1. Install ZAP
2.Installing Certificate
(refer cert.png)
Import generated certificate on certmgr.msc.
3. Configuring Proxy
(refer Local_Proxy_in_ZAP.jpg and Prox_in_LANSettings.jpg)
After that I am able to see target urls in ZAP sites
(refer sites.jpg) but unable to hit post api call through postman after doing configuring proxy step(refer postapierrorinpostman.jpg).