Query to Disable alert rule in reported xml
63 views
Skip to first unread message
Naveen Gupta
Aug 25, 2023, 12:11:16 PM8/25/23
to ZAP User Group
Hi,
Can you please help me understand how to disable certain alerts from getting written to result xml file.
I need to exclude below alert from getting written. Is there a CLI option that can be used with ZAP API scan (docker) to effect it?
<alertitem>
<pluginid>100000</pluginid>
<alertRef>100000</alertRef>
<alert>A Client Error response code was returned by the server</alert>
<name>A Client Error response code was returned by the server</name>
<riskcode>0</riskcode>
<confidence>3</confidence>
<riskdesc>Informational (High)</riskdesc>
<confidencedesc>High</confidencedesc>
<desc><p>A response code of 401 was returned by the server.</p><p>This may indicate that the application is failing to handle unexpected input correctly.</p><p>Raised by the 'Alert on HTTP Response Code Error' script</p></desc>
<instances>
<instance>
<uri>
<method>DELETE</method>
<param></param>
<attack></attack>
<evidence>HTTP/1.1 401</evidence>
</instance>
<instance>
</instances>
<count>4777</count>
<solution></solution>
<otherinfo></otherinfo>
<reference></reference>
<cweid>388</cweid>
<wascid>20</wascid>
<sourceid>23</sourceid>
</alertitem>
psiinon
Aug 25, 2023, 12:18:17 PM8/25/23
to zaprox...@googlegroups.com
Have a look at https://www.zaproxy.org/faq/how-do-i-handle-a-false-positive/ - apart from the bits about reporting them to us (unless they are false positives).
Cheers,
Simon
--
You received this message because you are subscribed to the Google Groups "ZAP User Group" group.
To unsubscribe from this group and stop receiving emails from it, send an email to zaproxy-user...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/zaproxy-users/1affaeda-7bf4-4d24-9fed-43aa4e31c485n%40googlegroups.com.
--
ZAP Project leader
Naveen Gupta
Aug 25, 2023, 12:38:17 PM8/25/23
to ZAP User Group
Hi Simon,
Thanks for you response.
We are using ZAP API scan from docker container.
The link that you provided does not elaborate what options can be passed to ZAP container to exclude the rule in question.
Thanks,
Naveen
Reply all
Reply to author
Forward
0 new messages