OWASP ZAP 2.7.0 Fuzzer not workin/window does not pop-up
574 views
Skip to first unread message
D34dP00L H4ckz
May 7, 2018, 6:03:08 AM5/7/18
to OWASP ZAP User Group
Hi,
I'm having issue with OWASP ZAP Fuzzer functionality. No matter what request I click the Fuzzer window does not pop-up. I've tried marking GET parameters and POST parameters and the Fuzzer window never shows. Is there any magic way of launching the fuzzer or is this a known issue?
I have installed the latests version today (2.7.0) and tried on both Windows 10 and Linux. Any ideas?
thc...@gmail.com
May 7, 2018, 6:08:13 AM5/7/18
to zaprox...@googlegroups.com
Hi.
I'm not aware of an issue like that. It doesn't do anything after
clicking the "Fuzz..." context menu item? Any errors in the zap.log? [1]
[1] https://github.com/zaproxy/zaproxy/wiki/FAQconfig
Best regards.
I'm not aware of an issue like that. It doesn't do anything after
clicking the "Fuzz..." context menu item? Any errors in the zap.log? [1]
[1] https://github.com/zaproxy/zaproxy/wiki/FAQconfig
Best regards.
D34dP00L H4ckz
May 7, 2018, 6:19:23 AM5/7/18
to OWASP ZAP User Group
Hi,
Thanks for picking up the subject. Actually there are a lot of Exceptions cought like those below. Should I report this as an issue? I have the latest Oracle JRE installed today.
2018-05-07 11:45:21,276 [AWT-EventQueue-0] ERROR ZAP$UncaughtExceptionLogger - Exception in thread "AWT-EventQueue-0"
java.util.MissingResourceException: Can't find resource for bundle java.util.PropertyResourceBundle, key fuzz.options.title
at java.util.ResourceBundle.getObject(Unknown Source)
at java.util.ResourceBundle.getString(Unknown Source)
at org.zaproxy.zap.utils.I18N.getString(I18N.java:81)
at org.zaproxy.zap.view.ScanPanel2$3.actionPerformed(ScanPanel2.java:370)
at javax.swing.AbstractButton.fireActionPerformed(Unknown Source)
at javax.swing.AbstractButton$Handler.actionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.fireActionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.setPressed(Unknown Source)
at javax.swing.plaf.basic.BasicButtonListener.mouseReleased(Unknown Source)
at java.awt.AWTEventMulticaster.mouseReleased(Unknown Source)
at java.awt.Component.processMouseEvent(Unknown Source)
at javax.swing.JComponent.processMouseEvent(Unknown Source)
at java.awt.Component.processEvent(Unknown Source)
at java.awt.Container.processEvent(Unknown Source)
at java.awt.Component.dispatchEventImpl(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Window.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.EventQueue.dispatchEventImpl(Unknown Source)
at java.awt.EventQueue.access$500(Unknown Source)
at java.awt.EventQueue$3.run(Unknown Source)
at java.awt.EventQueue$3.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.security.ProtectionDomain$JavaSecurityAccessImpl.doIntersectionPrivilege(Unknown Source)
at java.security.ProtectionDomain$JavaSecurityAccessImpl.doIntersectionPrivilege(Unknown Source)
at java.awt.EventQueue$4.run(Unknown Source)
at java.awt.EventQueue$4.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.security.ProtectionDomain$JavaSecurityAccessImpl.doIntersectionPrivilege(Unknown Source)
at java.awt.EventQueue.dispatchEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.run(Unknown Source)
2018-05-07 11:45:21,464 [AWT-EventQueue-0] ERROR ZAP$UncaughtExceptionLogger - Exception in thread "AWT-EventQueue-0"
java.util.MissingResourceException: Can't find resource for bundle java.util.PropertyResourceBundle, key fuzz.options.title
at java.util.ResourceBundle.getObject(Unknown Source)
at java.util.ResourceBundle.getString(Unknown Source)
at org.zaproxy.zap.utils.I18N.getString(I18N.java:81)
at org.zaproxy.zap.view.ScanPanel2$3.actionPerformed(ScanPanel2.java:370)
at javax.swing.AbstractButton.fireActionPerformed(Unknown Source)
at javax.swing.AbstractButton$Handler.actionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.fireActionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.setPressed(Unknown Source)
at javax.swing.plaf.basic.BasicButtonListener.mouseReleased(Unknown Source)
at java.awt.AWTEventMulticaster.mouseReleased(Unknown Source)
at java.awt.Component.processMouseEvent(Unknown Source)
at javax.swing.JComponent.processMouseEvent(Unknown Source)
at java.awt.Component.processEvent(Unknown Source)
at java.awt.Container.processEvent(Unknown Source)
at java.awt.Component.dispatchEventImpl(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Window.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.EventQueue.dispatchEventImpl(Unknown Source)
at java.awt.EventQueue.access$500(Unknown Source)
at java.awt.EventQueue$3.run(Unknown Source)
at java.awt.EventQueue$3.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.security.ProtectionDomain$JavaSecurityAccessImpl.doIntersectionPrivilege(Unknown Source)
at java.security.ProtectionDomain$JavaSecurityAccessImpl.doIntersectionPrivilege(Unknown Source)
at java.awt.EventQueue$4.run(Unknown Source)
at java.awt.EventQueue$4.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.security.ProtectionDomain$JavaSecurityAccessImpl.doIntersectionPrivilege(Unknown Source)
at java.awt.EventQueue.dispatchEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.run(Unknown Source)
2018-05-07 11:45:45,805 [AWT-EventQueue-0] INFO SSLConnector - ClientCert disabled
2018-05-07 11:45:49,542 [AWT-EventQueue-0] ERROR ZAP$UncaughtExceptionLogger - Exception in thread "AWT-EventQueue-0"
java.util.MissingResourceException: Can't find resource for bundle java.util.PropertyResourceBundle, key fuzz.httpfuzzer.options.label.followredirects
at java.util.ResourceBundle.getObject(Unknown Source)
at java.util.ResourceBundle.getString(Unknown Source)
at org.zaproxy.zap.utils.I18N.getString(I18N.java:81)
at org.zaproxy.zap.extension.fuzz.httpfuzzer.HttpFuzzerHandlerOptionsPanel.<init>(HttpFuzzerHandlerOptionsPanel.java:42)
at org.zaproxy.zap.extension.fuzz.httpfuzzer.HttpFuzzerHandler.showFuzzerDialogImpl(HttpFuzzerHandler.java:114)
at org.zaproxy.zap.extension.fuzz.httpfuzzer.HttpFuzzerHandler.showFuzzerDialog(HttpFuzzerHandler.java:99)
at org.zaproxy.zap.extension.fuzz.httpfuzzer.HttpFuzzerHandler.showFuzzerDialog(HttpFuzzerHandler.java:52)
at org.zaproxy.zap.extension.fuzz.ExtensionFuzz.showFuzzerDialog(ExtensionFuzz.java:605)
at org.zaproxy.zap.extension.fuzz.FuzzMessageWithLocationPopupMenuItem$ShowFuzzerDialogAction.perform(FuzzMessageWithLocationPopupMenuItem.java:128)
at org.zaproxy.zap.extension.fuzz.FuzzMessageWithLocationPopupMenuItem$1.actionPerformed(FuzzMessageWithLocationPopupMenuItem.java:56)
at javax.swing.AbstractButton.fireActionPerformed(Unknown Source)
at javax.swing.AbstractButton$Handler.actionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.fireActionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.setPressed(Unknown Source)
at javax.swing.AbstractButton.doClick(Unknown Source)
at javax.swing.plaf.basic.BasicMenuItemUI.doClick(Unknown Source)
at javax.swing.plaf.basic.BasicMenuItemUI$Handler.mouseReleased(Unknown Source)
at java.awt.Component.processMouseEvent(Unknown Source)
at javax.swing.JComponent.processMouseEvent(Unknown Source)
at java.awt.Component.processEvent(Unknown Source)
at java.awt.Container.processEvent(Unknown Source)
at java.awt.Component.dispatchEventImpl(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Window.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.EventQueue.dispatchEventImpl(Unknown Source)
at java.awt.EventQueue.access$500(Unknown Source)
at java.awt.EventQueue$3.run(Unknown Source)
at java.awt.EventQueue$3.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.security.ProtectionDomain$JavaSecurityAccessImpl.doIntersectionPrivilege(Unknown Source)
at java.security.ProtectionDomain$JavaSecurityAccessImpl.doIntersectionPrivilege(Unknown Source)
at java.awt.EventQueue$4.run(Unknown Source)
at java.awt.EventQueue$4.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.security.ProtectionDomain$JavaSecurityAccessImpl.doIntersectionPrivilege(Unknown Source)
at java.awt.EventQueue.dispatchEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.run(Unknown Source)
thc...@gmail.com
May 7, 2018, 6:43:39 AM5/7/18
to zaprox...@googlegroups.com
Odd, those messages are defined in the add-on. Which ZAP package did you
download? [1]
Working fine here (Linux) with 2.7.0. Does that also happen with the weekly?
[1] https://github.com/zaproxy/zaproxy/wiki/Downloads
Best regards.
download? [1]
Working fine here (Linux) with 2.7.0. Does that also happen with the weekly?
[1] https://github.com/zaproxy/zaproxy/wiki/Downloads
Best regards.
D34dP00L H4ckz
May 7, 2018, 7:30:25 AM5/7/18
to OWASP ZAP User Group
The one below:
Even stranger is that now on my Linux it works... and yesterday it did not... and this made me thinking... I have restarted the ZAP on Windows and now it works... Strange though it was.
| Windows (64) Installer | 2017-11-28 | 111 MB | Download now |
Even stranger is that now on my Linux it works... and yesterday it did not... and this made me thinking... I have restarted the ZAP on Windows and now it works... Strange though it was.
Thanks so much for the interest in my case.
Best regards ;]
kingthorin+owaspzap
May 7, 2018, 8:14:31 AM5/7/18
to OWASP ZAP User Group
Thanks for letting us know.
Reply all
Reply to author
Forward
0 new messages