---
env:
contexts:
- name: "Default Context"
urls:
- "
http://172.17.0.2:8080/WebGoat/"
includePaths:
- "
http://172.17.0.2:8080/WebGoat/.*"
excludePaths: []
authentication:
method: "form"
parameters:
loginPageUrl: "
http://172.17.0.2:8080/WebGoat/login"
loginRequestUrl: "
http://172.17.0.2:8080/WebGoat/login"
loginRequestBody: "username={%username%}&password={%password%}"
verification:
method: "response"
pollFrequency: 60
pollUnits: "requests"
pollUrl: ""
pollPostData: ""
sessionManagement:
method: "cookie"
parameters: {}
users:
- name: "testing"
credentials:
password: "testing"
username: "testing"
parameters:
failOnError: true
failOnWarning: false
progressToStdout: true
vars: {}
jobs:
- parameters:
updateAddOns: false
install: []
uninstall: []
name: "addOns"
type: "addOns"
- parameters:
scanOnlyInScope: true
enableTags: false
rules: []
name: "passiveScan-config"
type: "passiveScan-config"
- parameters:
context: "Default Context"
user: "testing"
url: ""
maxDuration: 0
maxDepth: 0
maxChildren: 0
tests:
- onFail: "INFO"
statistic: "stats.auth.success"
site: "
http://172.17.0.2:8080"
operator: ">="
value: 1
type: "stats"
name: "at least 1 auth"
name: "spider"
type: "spider"
- parameters:
context: "Default Context"
user: "testing"
url: ""
maxDuration: 0
maxCrawlDepth: 0
numberOfBrowsers: 0
tests:
- onFail: "INFO"
statistic: "stats.auth.success"
site: "
http://172.17.0.3:8080"
operator: ">="
value: 1
type: "stats"
name: "at least 1 auth"
name: "spiderAjax"
type: "spiderAjax"
- parameters: {}
name: "passiveScan-wait"
type: "passiveScan-wait"
- parameters:
template: "risk-confidence-html"
reportDir: "/home/zap"
reportTitle: "ZAP Scanning Report"
reportDescription: ""
name: "report"
type: "report"