Web application DAST automation with OWASP ZAP baseline scans

255 views

                  #!/usr/bin/env bash
docker run --rm -t owasp/zap2docker-stable zap-baseline.py \
  -t https://preview.example.com \
  -r zap-report.html \
  -I

DAST is useful when it is fast enough to run regularly and scoped enough to avoid chaos. I use baseline scans on pull request environments to catch missing headers, obvious injection risk, and regressions in exposed attack surface. It is not a substitute for review, but it is a useful net.

Kai Nakamura

More from Kai Nakamura

Web application DAST automation with OWASP ZAP baseline scans

0 Comments

More from Kai Nakamura