zap-automation-framework
zap-automation-framework
Run ZAP via a single YAML file
Details
Category: Scanners
Publisher: trickest-mhmdiaa
Created Date: 9/11/2023
Container: quay.io/trickest/zap-automation-framework:v2.15.0-patch-3
Source URL: https://github.com/zaproxy/zaproxy
Parameters
host
string
Command:
-host - Overrides the host of the main proxy, specified in the configuration fileport
string
Command:
-port - Overrides the port of the main proxy, specified in the configuration filenotel
boolean
Command:
-notel - Turns off telemetry callsconfig
string
Command:
-config - Overrides the specified key=value pair in the configuration filelowmem
boolean
Command:
-lowmem - Use the database instead of memory as much as possible - this is still experimentalscript
file
Command:
-script - Run the specified script from commandlinesilent
boolean
Command:
-silent - Ensures ZAP does not make any unsolicited requests, including check for updatesautorun
file
requiredCommand:
-autorun - Run the automation jobs specified in the filesession
file
Command:
-session - Opens the given session after starting ZAPcertload
file
Command:
-certload - Loads the Root CA certificate from the specified file namenostdout
boolean
Command:
-nostdout - Disables the default logging through standard outputquickurl
string
requiredCommand:
-quickurl - The URL to attack, e.g. http://www.example.comconfigfile
file
Command:
-configfile - Overrides the key=value pairs with those in the specified properties filegraphqlurl
string
Command:
-graphqlurl - Imports a GraphQL Schema from a URLopenapiurl
string
Command:
-openapiurl - Imports an OpenAPI definition from the specified URLgraphqlfile
file
Command:
-graphqlfile - Imports a GraphQL Schema from a Fileopenapifile
file
Command:
-openapifile - Imports an OpenAPI definition from the specified file namegraphqlendurl
string
Command:
-graphqlendurl - Sets the Endpoint URLquickprogress
boolean
Command:
-quickprogress - Display progress bars while scanningexperimentaldb
boolean
Command:
-experimentaldb - Use the experimental generic database code, which is not surprisingly also still experimentalopenapitargeturl
string
Command:
-openapitargeturl - The Target URL, to override the server URL present in the OpenAPI definition. Refer to the help for supported format.