Daniel Grunwell
Daniel Grunwell
Hi @NF997! Sounds good. The only one I want o pin is python-owasp-zap-v2.4, since it has had backwards incompatible changes released before as it's not following semantic versioning, and I...
Yeah, as @wheelq said, that error is nearly always due to a missing API key. Make sure you have also set your API key in `ZAP_API_KEY`.
:+1: We can add a max depth option and a timeout, both would be useful for the spider command I think. :)
Hi @setzamora! Just to confirm, you're not able to set up a working authentication method for the context, is that right? zap-cli can handle authenticated crawls by using the authentication...
Can you try opening the ZAP GUI and then running `zap-cli session load myproject.session` and seeing if the session is successfully loaded?
Hi @ibnjay! So, just to confirm, you just want to see which pages the ajax-crawler finds? Or perhaps would having a command to list all the URLs that are currently...
If you have recommendations for which options you want, I'm happy to help add them to the `zap-cli active-scan` command as parameters (or PRs welcome!) as I'm sure other users...
Yep. I wonder if I should make that default and have an additional flag to not scan recursively instead.
ZAP's API has a HTML output at http://zap/UI/core/other/htmlreport which can be requested in Python with `zap.core.htmlreport(apikey=api_key)`. I could add HTML as an output format for `zap-cli alerts`, which currently can...
@stephendonner Thanks to Sliim, zap-cli now has [a report command](https://github.com/Grunny/zap-cli/pull/18) that saves the HTML or XML report from the API. :)