The meaning of "Confidence" in an alert

1,325 views

Skip to first unread message

Pongkiat Jongtriluck

unread,

Nov 30, 2019, 3:02:42 AM11/30/19

to OWASP ZAP User Group

As seen the attached image which is the HTML alert report.

The risk level is "High" and the confidence is "Medium".

Could anyone explain the meaning of "Confidence" for me?

Thanks

Screen Shot 2562-11-30 at 11.29.33.png

kingthorin+owaspzap

unread,

Nov 30, 2019, 5:27:47 AM11/30/19

to OWASP ZAP User Group

The "confidence" of or in the finding. In other word how sure ZAP is (or rather the original author of the particular scan rule) in the finding/alert.

https://github.com/zaproxy/zap-core-help/wiki/HelpUiDialogsAddalert#confidence

Pongkiat Jongtriluck

unread,

Dec 1, 2019, 9:49:46 PM12/1/19

to OWASP ZAP User Group

Thanks for your answer and useful link.

I'll take a look for more detail in wiki.

Reply all

Reply to author

Forward

0 new messages