Export scanned URLs job

64 views
Skip to first unread message

Julia Khanbekova

unread,
Feb 25, 2026, 5:30:00 AM (13 days ago) Feb 25
to ZAP User Group

Hi Simon,

How can I obtain a list of all discovered ZAP addresses before scanning, as well as all scanned addresses afterwards?

I’m trying to export the addresses after the active scan job using:

  • parameters:
    type: "url"
    source: "all"
    fileName: "zap_scanned_urls.txt"
    type: "export"

However, I’ve run into an issue: when I execute the YAML plan in ZAP Desktop, the exported file contains significantly more URLs than when I run ZAP in a container.

Could this discrepancy be caused by the fact that on Desktop I’m using Firefox, while in the container I’m using Firefox ESR?

Simon Bennetts

unread,
Feb 27, 2026, 5:17:34 AM (11 days ago) Feb 27
to ZAP User Group
Hiya,

Yes, thats a good way to get all of the URLs.
Are you calling the passiveScan-wait after exploring and before exporting? If not you should.
Are there any errors in the zap.log file?
I would not expect Firefox ESR to make a big difference to the number of URLs ZAP reports.

Cheers,

Simon

Julia Khanbekova

unread,
Mar 6, 2026, 3:25:46 AM (5 days ago) Mar 6
to ZAP User Group

To get all discovered URLs before scanning, I run an export after passive-wait.

Then, to obtain all scanned URLs, I run another export after the active-scan.

However, the list of scanned URLs does not include all the addresses that ZAP supposedly found after passive-wait.


When I run the same YAML in ZAP Desktop, all discovered URLs are present in the scanned list after the active scan completes. Could you please explain why there might be such a difference when running the scan through the Automation Framework in a container versus in Desktop?

Reply all
Reply to author
Forward
0 new messages