dast-zaplisted

# DAST with OWASP ZAP ## Overview OWASP ZAP (Zed Attack Proxy) is an open-source DAST tool that acts as a manipulator-in-the-middle proxy to intercept, inspect, and test web application traffic for security vulnerabilities. ZAP provides automated passive and active scanning, API testing capabilities, and seamless CI/CD integration for runtime security testing. ## Quick Start ### Baseline Scan (Docker) Run a quick passive security scan: ```bash docker run -t zaproxy/zap-stable zap-baseline.py -t https://target-app.com -r baseline-report.html ``` ### Full Active Scan (Docker) Perform comprehensive active vulnerability testing: ```bash docker run -t zaproxy/zap-stable zap-full-scan.py -t https://target-app.com -r full-scan-report.html ``` ### API Scan with OpenAPI Spec Test APIs using OpenAPI/Swagger specification: ```bash docker run -v $(pwd):/zap/wrk/:rw -t zaproxy/zap-stable zap-api-scan.py \ -t https://api.target.com \ -f openapi \ -d /zap/wrk/openapi-spec.yaml \ -r /zap/wrk/api-report.html ``` ## Core Workflow ### Step 1: Define Scan Scope and Target Identify the target application URL and define scope: ```bash # Set target URL TARGET_URL="https://target-app.com" # For authenticated scans, prepare authentication context # See references/authentication_guide.md for detailed setup ``` **Scope Considerations:** - Exclude third-party domains and CDN URLs - Include all application subdomains and API endpoints - Respect scope limitations in penetration t