Authentication using browser Local storage

672 views
Skip to first unread message

Rudy Moniaga

unread,
Feb 16, 2022, 8:48:05 PM2/16/22
to OWASP ZAP User Group
Hi,

I am new with OWASP Zap tool and wondering if it's possible to inject browser local storage when scanning using Zap.

Thanks,

Rudy

Simon Bennetts

unread,
Feb 17, 2022, 6:53:03 AM2/17/22
to OWASP ZAP User Group
Hi Rudy,

Yes it is.
I think I cover that in this video: https://play.vidyard.com/igf3A8UdZ6QAGiFjEpLH86
The ZAP selenium script which actually injects content into local storage is https://github.com/zaproxy/community-scripts/blob/main/selenium/Selenium%20Juice%20Shop.js

Cheers,

Simon
Reply all
Reply to author
Forward
0 new messages