OWASP ZAP Node API - Leverage the OWASP Zed Attack Proxy (ZAP) within your NodeJS applications

Overview

OWASP ZAP Node API is a Leverage the OWASP Zed Attack Proxy (ZAP) within your NodeJS applications with this official API.

 

How to get this tool

To use this tool, please use a method listed below.

In a Linux (Debian OS), run the following command(s).

Ensure NodeJS is installed and run:

npm install zaproxy

 

Download directly from the following link:

 

How to execute

By default ZAP requires an API key to be sent with every request. This is done automatically providing you supply the same API key when you instantiate the ZapClient that you use to run ZAP with.

 

const ZapClient = require('zaproxy');

const zapOptions = {
  apiKey: , // I.E. 'v90dnblpqs1pcac991tn2oudl'
  proxy: ://: // I.E. 'http://192.168.0.10:8080'
};

const zaproxy = new ZapClient(zapOptions);

 

References:

 

-----

Next steps:

 

This article was contributed by Jason Jacobs from Guyana. Jason is a member of the Caribbean CSPA.

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.