Getting passive scan result by using API

[洪嘉佑]

I recently started studying zap and tried to use APIs to access zap service . The document at (https://www.zaproxy.org/docs/api) says that I don't have to start the passive scan process because it started when I was using the spider tool. Then I want to know how to get the passive scanning results (ex: what is the endpoint for getting passive scanning results) just like I could use the endpoint   GET /JSON/core/view/alerts/ to get the active scanning result after  I start an active scanning by using  GET /JSON/ascan/action/scan/



 Thanks in advance

[Simon Bennetts]

GET /JSON/core/view/alerts/  :)

ZAP makes no distinction between alerts raised by the active or passive scanners, or by any other means for that matter.

Cheers,

Simon

[洪嘉佑]

So I can use GET /JSON/core/view/alerts/  endpoint to get both passive and active scanning result.

May I ask how can I get only the passive or active scanning results  by setting some parameters?

Thanks for your helping 

Simon Bennetts <psi...@gmail.com>於 2023年3月27日 週一，下午9:54寫道：

--
You received this message because you are subscribed to the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this group and stop receiving emails from it, send an email to zaproxy-user...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/zaproxy-users/082f67f8-e761-4ad8-a669-b8388ca3f9b4n%40googlegroups.com.

[Simon Bennetts]

Answered here: https://groups.google.com/g/zaproxy-users/c/R2GS8MrDrKw/m/CvijQsRKAgAJ

Cheers,

Simon