OWASP Zed Attack Proxy and DVWA issue
380 views
Skip to first unread message
Hasanen Murtadha
Dec 8, 2015, 5:46:31 AM12/8/15
to OWASP ZAP User Group
Hello,
I need help.
I am using OWASP ZAP and vulnerable web application (DVWA) setup in my localhost and when I start scanning the DVWA for SQL injection attacks vulnerabilities there is nothing appear, Although DVWA is SQL injection vulnerable.
Thanks
thc...@gmail.com
Dec 8, 2015, 4:42:16 PM12/8/15
to zaprox...@googlegroups.com
Hi.
Issue 2093 [1] explains how to spider and active scan DVWA version 1.9.
Give it a look and let us know if that helps.
If you are using an older version of DVWA the authentication can be done
with form-based authentication method, which is more straightforward.
I can provide the steps, if needed.
[1] https://github.com/zaproxy/zaproxy/issues/2093
Best regards.
> --
> You received this message because you are subscribed to the Google
> Groups "OWASP ZAP User Group" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to zaproxy-user...@googlegroups.com
> <mailto:zaproxy-user...@googlegroups.com>.
> For more options, visit https://groups.google.com/d/optout.
Issue 2093 [1] explains how to spider and active scan DVWA version 1.9.
Give it a look and let us know if that helps.
If you are using an older version of DVWA the authentication can be done
with form-based authentication method, which is more straightforward.
I can provide the steps, if needed.
[1] https://github.com/zaproxy/zaproxy/issues/2093
Best regards.
> You received this message because you are subscribed to the Google
> Groups "OWASP ZAP User Group" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to zaproxy-user...@googlegroups.com
> <mailto:zaproxy-user...@googlegroups.com>.
> For more options, visit https://groups.google.com/d/optout.
Reply all
Reply to author
Forward
0 new messages