ZAP XSS DOM Based Skipped

[Alessio Cassio]

Hi everyone,

Im kinda new to this stuffs and i have a problem that i cannot understand...

So i have installed ZAP 2.14.0 on my VM Kali and i was doing some scanning for my university project, everything working fine but its a bit slow, so i downloaded ZAP 2.14.0 on my main desktop with Window 10. 

I lunched the same attack i did in my VM, with the same settings, but somehow when the Active Scan starts, the XSS DOM Based is not performing... It says "Skipped, failed to start or connected to the browser", so i tried to reinstall Chrome, btw im using Chrome Headless for the AJAX Spider, but i still got the same error

Can u guys help me? What am i missing?

Thanks!! 

ps: sorry for my bad English

[Simon Bennetts]

The DOM XSS scan rule depends on ZAP being able to launch the chosen browser.

If it cannot do that then we have no alternative but to skip the rule.

See this FAQ: https://www.zaproxy.org/faq/how-can-i-fix-browser-was-not-found/

Cheers,

Simon