Unable to Generate ZAP Report due to Proxy Request Rejection

17 views
Skip to first unread message

Naresh Varshney

unread,
Aug 29, 2025, 5:36:01 AMAug 29
to ZAP User Group

Hi Team,

I am trying to perform security testing using OWASP ZAP and Postman as per the below steps:

  1. Installed ZAP and Postman.

  2. Configured Postman proxy with 127.0.0.1:8080 (ZAP port).

  3. Sent API request successfully from Postman.

  4. Verified that ZAP is capturing traffic.

However, when I try to send requests that go to AWS S3 endpoints, the requests are being rejected due to proxy restrictions from the S3 side.
Because of this, I am not able to complete the scan and generate the ZAP report which is required for Salesforce security review.

Could you please guide me on how to proceed in this scenario?

  • Is there an alternate approach/tool approved by the team that I can use instead of ZAP?

  • Or, is there a way to whitelist/allow proxy traffic for S3 endpoints so that I can generate the required ZAP security report?

Looking forward to your guidance to ensure I can complete this step and proceed with the Salesforce security clearance.

Thanks & Regards,
Naresh

Reply all
Reply to author
Forward
0 new messages