Exclude the URL from scanner and spider in ZAP Jenkins Plugin
90 views
Skip to first unread message
Thoni A
Jan 4, 2021, 2:02:01 PM1/4/21
to OWASP ZAP User Group
Hi All,
I am using the ZAP Jenkins plugin and I am trying to exclude the URL from scanner and spider.
Is there any way to add the URL to exclude from scanner and spider in ZAP Jenkins plugin ???
Thanks
Thoni
eri...@augment1security.com
Jan 6, 2021, 4:15:43 AM1/6/21
to OWASP ZAP User Group
Hi Thoni,
I don't think the ZAP Jenkins plugin is supported anymore.
Best
Regards,
Eric W.
Blog: https://augment1security.com/blog/
Twitter: @aug1sec
Facebook: https://www.facebook.com/aug1sec
Eric W.
Blog: https://augment1security.com/blog/
Twitter: @aug1sec
Facebook: https://www.facebook.com/aug1sec
Simon Bennetts
Jan 6, 2021, 4:31:01 AM1/6/21
to OWASP ZAP User Group
Thats right, its not supported any more.
We need to update the page for it but its not quite as easy as it used to be.
The recommended approach is now to use one of the ZAP Docker images in Jenkins.
Cheers,
Simon
Scott Gerlach
Jan 11, 2021, 8:01:12 PM1/11/21
to OWASP ZAP User Group
Hi Thoni,
As mentioned by Simon and Eric, the new method is to use the ZAP docker images with the different entry points. We have some Jenkins documentation here, https://docs.stackhawk.com/continuous-integration/jenkins.html that I know is StackHawk specific, but you should be able to replace the specific information with the ZAP docker commands and entry points for either ephemeral or remote scanning as good Jenkins examples of how to make this work.
Reply all
Reply to author
Forward
0 new messages