La Pestaña de Navegación Forzada le permite realizar un escaneo de
Navegación Forzada en cualquiera de los sitios que han sido accesados.
Los sitios se pueden seleccionar a través de la barra de herramientas o la
pestaña Sitios.
Any sites that have have been or are currently being scanned are marked in
bold in the toolbar Sites pulldown control.
La barra de herramientas proporciona un conjunto de botones que le permiten iniciar, detener, pausar y reanudar el escaneo.
Una barra de progreso muestra de progreso del escaneo del sitio seleccionado.
El valor de "escaneos actuales" muestra cuántos escaneos están activos actualmente. Pasar el cursor sobre el valor mostrará una lista de los sitios que están siendo escaneados en un objeto emergente.
The toolbar also includes a button to export the displayed content as CSV.
Menú de botón derecho
Right clicking on one or more rows will bring up a menu which will allow you to:
Excluir de
This menu has the following submenus:
Proxy
This will exclude the selected nodes from the proxy. They will still be proxied via ZAP
but will not be shown in any of the tabs.
This can be used to ignore URLs that you know are not relevant to the system you
are currently testing.
The nodes can be included again via the
Propiedades de la Sesión dialog
Escáner
This will prevent the selected notes from being actively scanned.
The nodes can be included again via the
Propiedades de la Sesión dialog
Spider(Araña)
This will prevent the selected nodes from being spidered.
The nodes can be included again via the
Propiedades de la Sesión dialog
Copiar
This will copy the selected URLs to the clipboard.
Reenviar...
This will bring up the
Reenviar which allows you to resend the request after making any changes to
it that you want to.
Nueva alerta...
This will bring up the
Añadir Alerta, which allows you to manually record a new
alerta against this request.
Ver en el navegador
This will open the URL of the selected node in your default browser.
Generar FORM de prueba anti CSRF
This will open a URL which will give you a generated form for testing for CSRF issues.
It will only be enabled for POST requests, if the API is enabled and if Java
supports the opening of URLs in a browser on your platform.