Active scan issue with altoro mutual
124 views
Skip to first unread message
kaushal prajapati
Feb 28, 2022, 2:43:53 AM2/28/22
to OWASP ZAP User Group
I have mount the directory wrk in zap and copied both altoromutual.context and altoro_mutual.zst to the container. After that, I executed below commands:
zap.sh -cmd -config script.scripts.name="altoro_mutual" -cmd -config script.scripts.engine="Mozilla Zest" -cmd -config script.scripts.type=authentication -cmd -config script.scripts.enabled=true -cmd -config script.scripts.file="/zap/wrk/altoro_mutual.zst" -cmd -config forcedUser.setForcedUserModeEnabled=true -cmd -config api.key=ran-dom-9203935709
zap.sh -cmd -addoninstallall
zap-full-scan.py -t https://demo.testfire.net/login.jsp -n altoromutual.context -U altoro -g gen.conf -J report.json -d
Terminal log:
Caused by: org.apache.commons.httpclient.URIException: URI-Reference required
at org.apache.commons.httpclient.URI.parseUriReference(URI.java:1905) ~[zap-2.11.1.jar:2.11.1]
at org.apache.commons.httpclient.URI.<init>(URI.java:183) ~[zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:116) ~[?:?]
... 15 more
796453 [ZAP-ActiveScanner-1] INFO org.zaproxy.zap.users.User - Authentication failed for user: altoro
796453 [ZAP-ActiveScanner-0] INFO org.zaproxy.zap.users.User - Authenticating user: altoro
796598 [ZAP-ActiveScanner-0] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
org.zaproxy.zest.core.v1.ZestClientFailException: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
at org.apache.commons.httpclient.URI.parseUriReference(URI.java:1905) ~[zap-2.11.1.jar:2.11.1]
at org.apache.commons.httpclient.URI.<init>(URI.java:183) ~[zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:116) ~[?:?]
... 15 more
796453 [ZAP-ActiveScanner-1] INFO org.zaproxy.zap.users.User - Authentication failed for user: altoro
796453 [ZAP-ActiveScanner-0] INFO org.zaproxy.zap.users.User - Authenticating user: altoro
796598 [ZAP-ActiveScanner-0] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
org.zaproxy.zest.core.v1.ZestClientFailException: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
zap.out size is 47 MB and more than 46k lines in it. so, I found below errors repeatedly in zap.out:
18998 [ZAP-daemon] INFO org.parosproxy.paros.CommandLine - Add-on update check complete
19015 [ZAP-daemon] INFO org.parosproxy.paros.CommandLine - Add-on already installed: /root/.ZAP/plugin/pscanrulesBeta-beta-28.zap
19015 [ZAP-daemon] INFO org.parosproxy.paros.CommandLine - Add-on already installed: /root/.ZAP/plugin/ascanrulesBeta-beta-39.zap
19017 [ZAP-daemon] INFO org.zaproxy.zap.DaemonBootstrap - ZAP is now listening on 0.0.0.0:46989
19946 [ZAP-ProxyThread-4] INFO org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType - Loaded script:altoro_mutual
23820 [ZAP-SpiderInitThread-0] INFO org.zaproxy.zap.extension.spider.SpiderThread - Starting spidering scan on Context: Default Context at 2022-02-28T06:47:12.532+0000
23825 [ZAP-SpiderInitThread-0] INFO org.zaproxy.zap.spider.Spider - Spider initializing...
23862 [ZAP-SpiderInitThread-0] INFO org.zaproxy.zap.spider.Spider - Starting spider...
23862 [ZAP-SpiderInitThread-0] INFO org.zaproxy.zap.spider.Spider - Scan will be performed from the point of view of User: altoro
23878 [ZAP-SpiderThreadPool-0-thread-1] INFO org.zaproxy.zap.users.User - Authenticating user: altoro
24417 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
org.zaproxy.zest.core.v1.ZestClientFailException: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
at org.zaproxy.zest.core.v1.ZestClientLaunch.invoke(ZestClientLaunch.java:287) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.handleClient(ZestBasicRunner.java:324) ~[zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.handleClient(ZestZapRunner.java:354) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.runStatement(ZestBasicRunner.java:216) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.runStatement(ZestZapRunner.java:276) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:145) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:161) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:110) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:133) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:113) [zest-beta-35.zap:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
Caused by: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
at jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) ~[?:?]
at jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62) ~[?:?]
at jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) ~[?:?]
at java.lang.reflect.Constructor.newInstance(Constructor.java:490) ~[?:?]
at org.openqa.selenium.remote.W3CHandshakeResponse.lambda$errorHandler$0(W3CHandshakeResponse.java:62) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.HandshakeResponse.lambda$getResponseFunction$0(HandshakeResponse.java:30) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.ProtocolHandshake.lambda$createSession$0(ProtocolHandshake.java:126) ~[selenium-release-15.7.0.zap:?]
at java.util.stream.ReferencePipeline$3$1.accept(ReferencePipeline.java:195) ~[?:?]
at java.util.Spliterators$ArraySpliterator.tryAdvance(Spliterators.java:958) ~[?:?]
at java.util.stream.ReferencePipeline.forEachWithCancel(ReferencePipeline.java:127) ~[?:?]
at java.util.stream.AbstractPipeline.copyIntoWithCancel(AbstractPipeline.java:502) ~[?:?]
at java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:488) ~[?:?]
at java.util.stream.AbstractPipeline.wrapAndCopyInto(AbstractPipeline.java:474) ~[?:?]
at java.util.stream.FindOps$FindOp.evaluateSequential(FindOps.java:150) ~[?:?]
at java.util.stream.AbstractPipeline.evaluate(AbstractPipeline.java:234) ~[?:?]
at java.util.stream.ReferencePipeline.findFirst(ReferencePipeline.java:543) ~[?:?]
at org.openqa.selenium.remote.ProtocolHandshake.createSession(ProtocolHandshake.java:128) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.ProtocolHandshake.createSession(ProtocolHandshake.java:74) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.HttpCommandExecutor.execute(HttpCommandExecutor.java:136) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.service.DriverCommandExecutor.execute(DriverCommandExecutor.java:83) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.RemoteWebDriver.execute(RemoteWebDriver.java:552) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.RemoteWebDriver.startSession(RemoteWebDriver.java:213) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.RemoteWebDriver.<init>(RemoteWebDriver.java:131) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.firefox.FirefoxDriver.<init>(FirefoxDriver.java:147) ~[selenium-release-15.7.0.zap:?]
at org.zaproxy.zest.core.v1.ZestClientLaunch.invoke(ZestClientLaunch.java:224) ~[zest-beta-35.zap:?]
... 22 more
24428 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - No client: null
org.zaproxy.zest.core.v1.ZestClientFailException: No client: null
at org.zaproxy.zest.core.v1.ZestClientElement.getWebElement(ZestClientElement.java:58) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.core.v1.ZestClientElementSendKeys.invoke(ZestClientElementSendKeys.java:28) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.handleClient(ZestBasicRunner.java:324) ~[zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.handleClient(ZestZapRunner.java:354) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.runStatement(ZestBasicRunner.java:216) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.runStatement(ZestZapRunner.java:276) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:145) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:161) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:110) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:133) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:113) [zest-beta-35.zap:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
24429 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - No client: null
org.zaproxy.zest.core.v1.ZestClientFailException: No client: null
at org.zaproxy.zest.core.v1.ZestClientElement.getWebElement(ZestClientElement.java:58) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.core.v1.ZestClientElementSendKeys.invoke(ZestClientElementSendKeys.java:28) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.handleClient(ZestBasicRunner.java:324) ~[zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.handleClient(ZestZapRunner.java:354) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.runStatement(ZestBasicRunner.java:216) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.runStatement(ZestZapRunner.java:276) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:145) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:161) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:110) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:133) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:113) [zest-beta-35.zap:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
24429 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - No client: null
org.zaproxy.zest.core.v1.ZestClientFailException: No client: null
at org.zaproxy.zest.core.v1.ZestClientElement.getWebElement(ZestClientElement.java:58) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.core.v1.ZestClientElementClick.invoke(ZestClientElementClick.java:24) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.handleClient(ZestBasicRunner.java:324) ~[zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.handleClient(ZestZapRunner.java:354) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.runStatement(ZestBasicRunner.java:216) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.runStatement(ZestZapRunner.java:276) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:145) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:161) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:110) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:133) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:113) [zest-beta-35.zap:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
24532 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType - An error occurred while trying to authenticate using the Authentication Script: altoro_mutual
javax.script.ScriptException: org.apache.commons.httpclient.URIException: URI-Reference required
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:135) ~[?:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
Caused by: org.apache.commons.httpclient.URIException: URI-Reference required
at org.apache.commons.httpclient.URI.parseUriReference(URI.java:1905) ~[zap-2.11.1.jar:2.11.1]
at org.apache.commons.httpclient.URI.<init>(URI.java:183) ~[zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:116) ~[?:?]
... 13 more
24534 [ZAP-SpiderThreadPool-0-thread-1] INFO org.zaproxy.zap.users.User - Authentication failed for user: altoro
24536 [ZAP-SpiderThreadPool-0-thread-2] INFO org.zaproxy.zap.users.User - Authenticating user: altoro
24672 [ZAP-SpiderThreadPool-0-thread-2] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
org.zaproxy.zest.core.v1.ZestClientFailException: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
at org.zaproxy.zest.core.v1.ZestClientLaunch.invoke(ZestClientLaunch.java:287) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.handleClient(ZestBasicRunner.java:324) ~[zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.handleClient(ZestZapRunner.java:354) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.runStatement(ZestBasicRunner.java:216) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.runStatement(ZestZapRunner.java:276) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:145) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:161) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:110) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:133) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:113) [zest-beta-35.zap:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
Caused by: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
19015 [ZAP-daemon] INFO org.parosproxy.paros.CommandLine - Add-on already installed: /root/.ZAP/plugin/pscanrulesBeta-beta-28.zap
19015 [ZAP-daemon] INFO org.parosproxy.paros.CommandLine - Add-on already installed: /root/.ZAP/plugin/ascanrulesBeta-beta-39.zap
19017 [ZAP-daemon] INFO org.zaproxy.zap.DaemonBootstrap - ZAP is now listening on 0.0.0.0:46989
19946 [ZAP-ProxyThread-4] INFO org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType - Loaded script:altoro_mutual
23820 [ZAP-SpiderInitThread-0] INFO org.zaproxy.zap.extension.spider.SpiderThread - Starting spidering scan on Context: Default Context at 2022-02-28T06:47:12.532+0000
23825 [ZAP-SpiderInitThread-0] INFO org.zaproxy.zap.spider.Spider - Spider initializing...
23862 [ZAP-SpiderInitThread-0] INFO org.zaproxy.zap.spider.Spider - Starting spider...
23862 [ZAP-SpiderInitThread-0] INFO org.zaproxy.zap.spider.Spider - Scan will be performed from the point of view of User: altoro
23878 [ZAP-SpiderThreadPool-0-thread-1] INFO org.zaproxy.zap.users.User - Authenticating user: altoro
24417 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
org.zaproxy.zest.core.v1.ZestClientFailException: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
at org.zaproxy.zest.core.v1.ZestClientLaunch.invoke(ZestClientLaunch.java:287) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.handleClient(ZestBasicRunner.java:324) ~[zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.handleClient(ZestZapRunner.java:354) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.runStatement(ZestBasicRunner.java:216) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.runStatement(ZestZapRunner.java:276) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:145) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:161) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:110) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:133) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:113) [zest-beta-35.zap:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
Caused by: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
at jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) ~[?:?]
at jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62) ~[?:?]
at jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) ~[?:?]
at java.lang.reflect.Constructor.newInstance(Constructor.java:490) ~[?:?]
at org.openqa.selenium.remote.W3CHandshakeResponse.lambda$errorHandler$0(W3CHandshakeResponse.java:62) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.HandshakeResponse.lambda$getResponseFunction$0(HandshakeResponse.java:30) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.ProtocolHandshake.lambda$createSession$0(ProtocolHandshake.java:126) ~[selenium-release-15.7.0.zap:?]
at java.util.stream.ReferencePipeline$3$1.accept(ReferencePipeline.java:195) ~[?:?]
at java.util.Spliterators$ArraySpliterator.tryAdvance(Spliterators.java:958) ~[?:?]
at java.util.stream.ReferencePipeline.forEachWithCancel(ReferencePipeline.java:127) ~[?:?]
at java.util.stream.AbstractPipeline.copyIntoWithCancel(AbstractPipeline.java:502) ~[?:?]
at java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:488) ~[?:?]
at java.util.stream.AbstractPipeline.wrapAndCopyInto(AbstractPipeline.java:474) ~[?:?]
at java.util.stream.FindOps$FindOp.evaluateSequential(FindOps.java:150) ~[?:?]
at java.util.stream.AbstractPipeline.evaluate(AbstractPipeline.java:234) ~[?:?]
at java.util.stream.ReferencePipeline.findFirst(ReferencePipeline.java:543) ~[?:?]
at org.openqa.selenium.remote.ProtocolHandshake.createSession(ProtocolHandshake.java:128) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.ProtocolHandshake.createSession(ProtocolHandshake.java:74) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.HttpCommandExecutor.execute(HttpCommandExecutor.java:136) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.service.DriverCommandExecutor.execute(DriverCommandExecutor.java:83) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.RemoteWebDriver.execute(RemoteWebDriver.java:552) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.RemoteWebDriver.startSession(RemoteWebDriver.java:213) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.remote.RemoteWebDriver.<init>(RemoteWebDriver.java:131) ~[selenium-release-15.7.0.zap:?]
at org.openqa.selenium.firefox.FirefoxDriver.<init>(FirefoxDriver.java:147) ~[selenium-release-15.7.0.zap:?]
at org.zaproxy.zest.core.v1.ZestClientLaunch.invoke(ZestClientLaunch.java:224) ~[zest-beta-35.zap:?]
... 22 more
24428 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - No client: null
org.zaproxy.zest.core.v1.ZestClientFailException: No client: null
at org.zaproxy.zest.core.v1.ZestClientElement.getWebElement(ZestClientElement.java:58) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.core.v1.ZestClientElementSendKeys.invoke(ZestClientElementSendKeys.java:28) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.handleClient(ZestBasicRunner.java:324) ~[zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.handleClient(ZestZapRunner.java:354) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.runStatement(ZestBasicRunner.java:216) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.runStatement(ZestZapRunner.java:276) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:145) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:161) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:110) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:133) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:113) [zest-beta-35.zap:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
24429 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - No client: null
org.zaproxy.zest.core.v1.ZestClientFailException: No client: null
at org.zaproxy.zest.core.v1.ZestClientElement.getWebElement(ZestClientElement.java:58) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.core.v1.ZestClientElementSendKeys.invoke(ZestClientElementSendKeys.java:28) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.handleClient(ZestBasicRunner.java:324) ~[zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.handleClient(ZestZapRunner.java:354) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.runStatement(ZestBasicRunner.java:216) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.runStatement(ZestZapRunner.java:276) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:145) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:161) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:110) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:133) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:113) [zest-beta-35.zap:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
24429 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - No client: null
org.zaproxy.zest.core.v1.ZestClientFailException: No client: null
at org.zaproxy.zest.core.v1.ZestClientElement.getWebElement(ZestClientElement.java:58) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.core.v1.ZestClientElementClick.invoke(ZestClientElementClick.java:24) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.handleClient(ZestBasicRunner.java:324) ~[zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.handleClient(ZestZapRunner.java:354) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.runStatement(ZestBasicRunner.java:216) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.runStatement(ZestZapRunner.java:276) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:145) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:161) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:110) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:133) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:113) [zest-beta-35.zap:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
24532 [ZAP-SpiderThreadPool-0-thread-1] ERROR org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType - An error occurred while trying to authenticate using the Authentication Script: altoro_mutual
javax.script.ScriptException: org.apache.commons.httpclient.URIException: URI-Reference required
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:135) ~[?:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
Caused by: org.apache.commons.httpclient.URIException: URI-Reference required
at org.apache.commons.httpclient.URI.parseUriReference(URI.java:1905) ~[zap-2.11.1.jar:2.11.1]
at org.apache.commons.httpclient.URI.<init>(URI.java:183) ~[zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:116) ~[?:?]
... 13 more
24534 [ZAP-SpiderThreadPool-0-thread-1] INFO org.zaproxy.zap.users.User - Authentication failed for user: altoro
24536 [ZAP-SpiderThreadPool-0-thread-2] INFO org.zaproxy.zap.users.User - Authenticating user: altoro
24672 [ZAP-SpiderThreadPool-0-thread-2] ERROR org.zaproxy.zap.extension.zest.ZestZapRunner - org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
org.zaproxy.zest.core.v1.ZestClientFailException: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
remote stacktrace:
at org.zaproxy.zest.core.v1.ZestClientLaunch.invoke(ZestClientLaunch.java:287) ~[zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.handleClient(ZestBasicRunner.java:324) ~[zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.handleClient(ZestZapRunner.java:354) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.runStatement(ZestBasicRunner.java:216) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.runStatement(ZestZapRunner.java:276) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:145) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:161) [zest-beta-35.zap:?]
at org.zaproxy.zest.impl.ZestBasicRunner.run(ZestBasicRunner.java:110) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestZapRunner.run(ZestZapRunner.java:133) [zest-beta-35.zap:?]
at org.zaproxy.zap.extension.zest.ZestAuthenticationRunner.authenticate(ZestAuthenticationRunner.java:113) [zest-beta-35.zap:?]
at org.zaproxy.zap.authentication.ScriptBasedAuthenticationMethodType$ScriptBasedAuthenticationMethod.authenticate(ScriptBasedAuthenticationMethodType.java:288) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.authenticate(User.java:271) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.users.User.processMessageToMatchUser(User.java:170) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:596) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAuthenticated(HttpSender.java:585) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:490) [zap-2.11.1.jar:2.11.1]
at org.parosproxy.paros.network.HttpSender.sendAndReceive(HttpSender.java:460) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.fetchResource(SpiderTask.java:415) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.runImpl(SpiderTask.java:178) [zap-2.11.1.jar:2.11.1]
at org.zaproxy.zap.spider.SpiderTask.run(SpiderTask.java:150) [zap-2.11.1.jar:2.11.1]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) [?:?]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [?:?]
at java.lang.Thread.run(Thread.java:829) [?:?]
Caused by: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: '060e5458f170', ip: '172.17.0.2', os.name: 'Linux', os.arch: 'amd64', os.version: '5.13.0-30-generic', java.version: '11.0.13'
Driver info: driver.version: FirefoxDriver
Anyone please help me out to resolve this error.
Any help would be appreciated. This is the final step of the journey :-)
Simon Bennetts
Mar 4, 2022, 4:50:24 AM3/4/22
to OWASP ZAP User Group
See the line: org.openqa.selenium.WebDriverException: Process unexpectedly closed with status 1
That probably means Selenium was not able to launch Firefox successfully, which means the Zest client side script will not work.
Have you ensured that all of the ZAP add-ons are up to date (especially the webdriver ones)?
Can you start Firefox on that system from the command line?
If so what version of Firefox are you using and which version of the Linux Webdriver ZAP add-on do you have installed?
Cheers,
Simon
Reply all
Reply to author
Forward
0 new messages