Simon Bennetts

icon indicating a website link https://www.zaproxy.org/docs/team/psiinon/ icon indicating an email [email protected]

icon location Online icon location @zaproxy project lead.

Results 669 comments of Simon Bennetts

[WIP] Totp Active Scan Rules

I fixed the conflict locally and had a go with the test apps. ~~With http://localhost:9091/auth/totp/simple-auth-otp-blank-code-vuln/ I submitted the creds but got an error logged: /~~ Ignore that - I hadnt...

Automation framework tracker

Updated to break down authentication support

Automation framework tracker

@so87 What questions? If you dont ask them then we cant answer them :P

Automation framework tracker

> What configuration would this be referring to? The current configuration in the ZAP desktop. If you use the ZAP desktop and change any options then these will be reflected...

Automation framework tracker

I've just added an "Additional jobs" section - feel free to suggest any other jobs that could be added...

Automation framework tracker

Re the Access Control job via https://groups.google.com/g/zaproxy-users/c/vQEtXQt5K-Q/m/RTonJtlQAQAJ > I think the access control module should have the following parameters > The expected HTTP code result (ex: 200, 302) and also...

Automation framework tracker

Pretty sure we have an open issue for that, but cant see it on a quick search. But I'm still unclear how fuzzing would be used in the AF? I've...

Automation framework tracker

You can set "allowed resources" (and pretty much any other option via the `-config` or `-configfile` command line parameters. To find out the keys see https://www.zaproxy.org/faq/how-do-you-find-out-what-key-to-use-to-set-a-config-value-on-the-command-line/ But do let us...

webuipoc: Integrate request-response API

![Logo](https://cdn.ast.checkmarx.net/integrations/logo/Checkmarx.png) **Checkmarx One – Scan Summary & Details** – [e7c661d4\-5386\-48a9\-bccf\-75831b2185f0](https://eu.ast.checkmarx.net/projects/0da811fa-6373-42b1-bbb6-d0026285b136/scans?id=e7c661d4-5386-48a9-bccf-75831b2185f0&branch=Tecvity%2Frequest-response) Fixed Issues (1) Great job! The following issues were fixed in this Pull Request Severity|Issue|Source File / Package ---|---|--- ![LOW](https://cdn.ast.checkmarx.net/integrations/severity/Low.png)|~~[Heap_Inspection](https://eu.ast.checkmarx.net/results/0da811fa-6373-42b1-bbb6-d0026285b136/e7c661d4-5386-48a9-bccf-75831b2185f0/sast/description/244/8423996506624030647)~~|/addOns/authhelper/src/main/java/org/zaproxy/addon/authhelper/AuthUtils\.java:...

commonlib: Add ANTLR

![Logo](https://cdn.ast.checkmarx.net/integrations/logo/Checkmarx.png) **Checkmarx One – Scan Summary & Details** – [d06554b8\-052a\-42a0\-be93\-99aaad4981c6](https://eu.ast.checkmarx.net/projects/0da811fa-6373-42b1-bbb6-d0026285b136/scans?id=d06554b8-052a-42a0-be93-99aaad4981c6&branch=kingthorin%2Fantlr-commonlib) ### Great job, no security vulnerabilities found in this Pull Request