bash 5 lines · 1 tab

Web application DAST automation with OWASP ZAP baseline scans

Kai Nakamura Apr 2026
1 tab
#!/usr/bin/env bash
docker run --rm -t owasp/zap2docker-stable zap-baseline.py \
  -t https://preview.example.com \
  -r zap-report.html \
  -I
1 file · bash Explain with highlit

DAST is useful when it is fast enough to run regularly and scoped enough to avoid chaos. I use baseline scans on pull request environments to catch missing headers, obvious injection risk, and regressions in exposed attack surface. It is not a substitute for review, but it is a useful net.

Share this code

Here's the card — post it anywhere.

Web application DAST automation with OWASP ZAP baseline scans — share card
Link copied