ZAP Report Showing What's Passed
152 views
Skip to first unread message
Vishal Lanke
Jun 10, 2022, 1:03:42 AM6/10/22
to OWASP ZAP User Group
Currently, we can see all the risks (Critical, Medium etc. etc) inside ZAP Security report. However, Is there a way to see that these scan rules were executed and Passed. For example, Cross Domain Configuration is executed and no security risks were observed
thc...@gmail.com
Jun 10, 2022, 1:08:07 AM6/10/22
to zaprox...@googlegroups.com
Hi.
Some reports include that information others don't, you can check what
they include in the docs, e.g.:
https://www.zaproxy.org/docs/desktop/addons/report-generation/report-modern/
https://www.zaproxy.org/docs/desktop/addons/report-generation/report-high-level/
Best regards.
Some reports include that information others don't, you can check what
they include in the docs, e.g.:
https://www.zaproxy.org/docs/desktop/addons/report-generation/report-modern/
https://www.zaproxy.org/docs/desktop/addons/report-generation/report-high-level/
Best regards.
Vishal Lanke
Jun 10, 2022, 1:20:57 AM6/10/22
to OWASP ZAP User Group
Thanks. I have gone through these reports and report documentation. We have integrated ZAP in our projects and developers fixes critical risks.
However, users are also interested in knowing that these scan rules were executed and passed. This will add more value to our stakeholders. I think that there is no way in ZAP to generate such reports.
thc...@gmail.com
Jun 10, 2022, 1:25:19 AM6/10/22
to zaprox...@googlegroups.com
e.g. for "Modern HTML Report with themes and options" that info is under
"Passing Rules".
You can also write your own reports to include other info if the bundled
ones don't provide it:
https://www.zaproxy.org/docs/desktop/addons/report-generation/create/
Best regards.
"Passing Rules".
You can also write your own reports to include other info if the bundled
ones don't provide it:
https://www.zaproxy.org/docs/desktop/addons/report-generation/create/
Best regards.
Reply all
Reply to author
Forward
0 new messages