New Spring4Shell Scan Rule

34 views
Skip to first unread message

Simon Bennetts

unread,
Apr 4, 2022, 12:00:12 PM4/4/22
to OWASP ZAP User Group
We have a new Spring4Shell scan rule available - see this blog post for more details: https://www.zaproxy.org/blog/2022-04-04-spring4shell-detection-with-zap/

As you'll see the rule is in the Alpha Active Scan Rules add-on.
This does mean that in order to use it you will need to install all of the other alpha active scan rules, and then disable those you dont want.

Would you rather that "high profile" scan rules live in an all new add-on so you can just install those?

Those of you on Twittter can vote here: https://twitter.com/psiinon/status/1511010466520252425

If you're not then just reply here :)

Cheers,

Simon

Reply all
Reply to author
Forward
0 new messages