Options Selenium Screen
220 views
Skip to first unread message
Mark Duncker
Feb 28, 2023, 6:11:38 AM2/28/23
to OWASP ZAP User Group
Hi all,
I am new here and new to the program.
Trying to follow some tutorials but now i am stuck on the manual explore option.
When i launch the browser i got the "the provided browser options was not found" message.
It will start FireFox but still got the message.
Now i am trying to find the Options Selenium Screen.
How to access or where can i find this options screen ?
Thanks
Simon Bennetts
Feb 28, 2023, 6:32:49 AM2/28/23
to OWASP ZAP User Group
Hiya :)
The Options can be accessed via the "Gear" icon on the toolbar (hover over "Options...") or via the "Tools" menu - "Options..." is at the bottom.
Then scroll down to "Selenium" on the left hand side.
Also see this FAQ, if you havnt already: https://www.zaproxy.org/faq/how-can-i-fix-browser-was-not-found/
Cheers,
Simon
Mark Duncker
Feb 28, 2023, 6:54:39 AM2/28/23
to OWASP ZAP User Group
Mark Duncker
Feb 28, 2023, 9:40:04 AM2/28/23
to OWASP ZAP User Group
Still not able to start.
Got in every function that call the firefox browser a certificate error.
Got in every function that call the firefox browser a certificate error.
I have imported the certficate in FireFox. Other scan functions works fine, only calling the Firefox browser dosn't work.
Here an example from the log when trying to an ajax spider scan.
2023-02-28 15:32:11,398 [ZAP-AjaxSpider] INFO SpiderThread - Running Crawljax (with firefox-headless): http://dbserve..matraWebClient
2023-02-28 15:32:11,398 [ZAP-AjaxSpider] INFO SpiderThread - Starting proxy...
2023-02-28 15:32:11,398 [ZAP-AjaxSpider] INFO SpiderThread - Proxy started, listening at port [63162].
2023-02-28 15:32:11,413 [ZAP-AjaxSpider] INFO Plugins - Loaded org.zaproxy.zap.extension.spiderAjax.SpiderThread$DummyPlugin@34854067 as a OnBrowserCreatedPlugin
2023-02-28 15:32:14,178 [ZAP-IO-2-1] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,197 [ZAP-IO-2-2] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,281 [ZAP-IO-2-3] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,283 [ZAP-IO-2-4] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,476 [ZAP-IO-2-4] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,538 [ZAP-IO-2-8] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,634 [ZAP-IO-2-8] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,666 [ZAP-IO-2-4] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:44,753 [ZAP-IO-2-7] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:44,867 [ZAP-IO-2-2] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:57,284 [ZAP-AjaxSpider] WARN SpiderThread - Failed to start browser firefox-headless
com.google.inject.ProvisionException: Unable to provision, see the following errors:
1) [Guice/ErrorInCustomProvider]: WebDriverException: Timed out waiting 45 seconds for Firefox to start.
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: 'SURFACE-MARK', ip: '10.0.30.170', os.name: 'Windows 11', os.arch: 'amd64', os.version: '10.0', java.version: '11.0.16.1'
Driver info: driver.version: FirefoxDriver
at ConfigurationModule.configure(ConfigurationModule.java:47)
\_ installed by: CoreModule -> ConfigurationModule
at CrawlerContext.<init>(CrawlerContext.java:33)
\_ for 1st parameter
at Crawler.<init>(Crawler.java:75)
\_ for 1st parameter
at CrawlTaskConsumer.<init>(CrawlTaskConsumer.java:30)
\_ for 3rd parameter
while locating CrawlTaskConsumer
2023-02-28 15:32:11,398 [ZAP-AjaxSpider] INFO SpiderThread - Starting proxy...
2023-02-28 15:32:11,398 [ZAP-AjaxSpider] INFO SpiderThread - Proxy started, listening at port [63162].
2023-02-28 15:32:11,413 [ZAP-AjaxSpider] INFO Plugins - Loaded org.zaproxy.zap.extension.spiderAjax.SpiderThread$DummyPlugin@34854067 as a OnBrowserCreatedPlugin
2023-02-28 15:32:14,178 [ZAP-IO-2-1] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,197 [ZAP-IO-2-2] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,281 [ZAP-IO-2-3] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,283 [ZAP-IO-2-4] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,476 [ZAP-IO-2-4] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,538 [ZAP-IO-2-8] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,634 [ZAP-IO-2-8] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:14,666 [ZAP-IO-2-4] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:44,753 [ZAP-IO-2-7] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:44,867 [ZAP-IO-2-2] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
2023-02-28 15:32:57,284 [ZAP-AjaxSpider] WARN SpiderThread - Failed to start browser firefox-headless
com.google.inject.ProvisionException: Unable to provision, see the following errors:
1) [Guice/ErrorInCustomProvider]: WebDriverException: Timed out waiting 45 seconds for Firefox to start.
Build info: version: 'unknown', revision: 'unknown', time: 'unknown'
System info: host: 'SURFACE-MARK', ip: '10.0.30.170', os.name: 'Windows 11', os.arch: 'amd64', os.version: '10.0', java.version: '11.0.16.1'
Driver info: driver.version: FirefoxDriver
at ConfigurationModule.configure(ConfigurationModule.java:47)
\_ installed by: CoreModule -> ConfigurationModule
at CrawlerContext.<init>(CrawlerContext.java:33)
\_ for 1st parameter
at Crawler.<init>(Crawler.java:75)
\_ for 1st parameter
at CrawlTaskConsumer.<init>(CrawlTaskConsumer.java:30)
\_ for 3rd parameter
while locating CrawlTaskConsumer
Op dinsdag 28 februari 2023 om 12:54:39 UTC+1 schreef Mark Duncker:
Simon Bennetts
Feb 28, 2023, 10:20:16 AM2/28/23
to OWASP ZAP User Group
Is this a client certificate?
How are you adding it to Firefox?
Does the certificate work if you import it into Firefox and use start it outside of ZAP?
Cheers,
Simon
Mark Duncker
Mar 1, 2023, 5:49:55 AM3/1/23
to OWASP ZAP User Group
Hi Simon,
This certificate is generated bij ZAP, menu tools options network server certificates tab root certificate generate valid 365 days and exported it.
Then in Firefox under privacy and security settings imported the certificate.
Op dinsdag 28 februari 2023 om 16:20:16 UTC+1 schreef psi...@gmail.com:
Simon Bennetts
Mar 1, 2023, 5:56:29 AM3/1/23
to OWASP ZAP User Group
Have you tried launching Firefox from ZAP?
Thats the recommended option, and if you do that you do not need to import the ZAP cert or configure the browser to proxy through ZAP.
ZAP handles all of that for you.
Cheers,
Simon
Mark Duncker
Mar 1, 2023, 8:30:54 AM3/1/23
to OWASP ZAP User Group
Using the Firefox button on the button bar in ZAP will launch Firefox but after 20 seconds the error appears again. 'The provided browser was not found'
And in the log file :
2023-03-01 14:26:40,814 [ZAP-IO-2-7] WARN ServerExceptionHandler - Failed while establishing secure connection, cause: Received fatal alert: bad_certificate
I have now removed the certificate from FireFox but the problem remains.
Op woensdag 1 maart 2023 om 11:56:29 UTC+1 schreef psi...@gmail.com:
Reply all
Reply to author
Forward
0 new messages