Created
May 6, 2016 21:39
-
-
Save stephendonner/b1ca66e1e00625c873ed6875bcfceaf8 to your computer and use it in GitHub Desktop.
Sweet smell of (early) success!
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
sdonners-MBP:docker-zap sdonner$ ./run-docker.sh | |
7df1fca135a4da660a9670fd21f293705a34efd53a3f466d9727317586a9b531 | |
[INFO] Accessing URL https://www.allizom.org/en-US/firefox/ | |
[INFO] Running an active scan... | |
Found Java version 1.7.0_91 | |
Available memory: 2002 MB | |
Setting jvm heap size: -Xmx512m | |
241 [main] INFO org.zaproxy.zap.DaemonBootstrap - OWASP ZAP 2.4.3 started. | |
628 [main] INFO hsqldb.db.HSQLDB379AF3DEBD.ENGINE - dataFileCache open start | |
636 [main] INFO hsqldb.db.HSQLDB379AF3DEBD.ENGINE - dataFileCache open end | |
1005 [main] INFO org.parosproxy.paros.common.AbstractParam - Setting config api.disablekey = true was null | |
1007 [main] INFO org.parosproxy.paros.network.SSLConnector - Reading supported SSL/TLS protocols... | |
1007 [main] INFO org.parosproxy.paros.network.SSLConnector - Using a SSLEngine... | |
1221 [main] INFO org.parosproxy.paros.network.SSLConnector - Done reading supported SSL/TLS protocols: [SSLv2Hello, SSLv3, TLSv1, TLSv1.1, TLSv1.2] | |
1225 [main] INFO org.parosproxy.paros.extension.option.OptionsParamCertificate - Unsafe SSL renegotiation disabled. | |
1234 [ZAP-daemon] INFO org.zaproxy.zap.control.ExtensionFactory - Loading extensions | |
2096 [ZAP-daemon] INFO org.zaproxy.zap.control.ExtensionFactory - Extensions loaded | |
2680 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Change user agent to other browsers. | |
2680 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Detect insecure or potentially malicious content in HTTP responses. | |
2680 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Detect and alert 'Set-cookie' attempt in HTTP response for modification. | |
2680 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Avoid browser cache (strip off IfModifiedSince) | |
2680 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Log cookies sent by browser. | |
2680 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Log unique GET queries into file:filter/get.xls | |
2681 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Log unique POST queries into file: filter/post.xls | |
2681 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Log request and response into file: filter/message.txt | |
2681 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Replace HTTP request body using defined pattern. | |
2681 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Replace HTTP request header using defined pattern. | |
2681 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Replace HTTP response body using defined pattern. | |
2681 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Replace HTTP response header using defined pattern. | |
2681 [ZAP-daemon] INFO org.parosproxy.paros.extension.filter.FilterFactory - loaded filter Send ZAP session request ID | |
May 06, 2016 9:38:50 PM java.util.prefs.FileSystemPreferences$1 run | |
INFO: Created user preferences directory. | |
2860 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Allows ZAP to check for updates | |
2863 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionViewOption | |
2863 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionEdit | |
2863 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionFilter | |
2863 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Provides a rest based API for controlling and accessing ZAP | |
2999 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionState | |
3000 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionHistory | |
3001 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Show hidden fields and enable disabled fields | |
3002 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Search messages for strings and regular expressions | |
3003 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Encode/Decode/Hash... | |
3003 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Allows you to intercept and modify requests and responses | |
3003 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Passive scanner | |
3037 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Script passive scan rules | |
3037 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Application Error Disclosure | |
3037 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Incomplete or No Cache-control and Pragma HTTP Header Set | |
3037 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Content-Type Header Missing | |
3041 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Cookie No HttpOnly Flag | |
3042 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Cookie Without Secure Flag | |
3042 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Cross-Domain JavaScript Source File Inclusion | |
3042 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Web Browser XSS Protection Not Enabled | |
3042 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Secure Pages Include Mixed Content | |
3042 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Password Autocomplete in Browser | |
3043 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Private IP Disclosure | |
3043 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: Session ID in URL Rewrite | |
3043 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: X-Content-Type-Options Header Missing | |
3043 [ZAP-daemon] INFO org.zaproxy.zap.extension.pscan.ExtensionPassiveScan - loaded passive scan rule: X-Frame-Options Header Not Set | |
3053 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Allows you to view and manage alerts | |
3053 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Active scanner, heavily based on the original Paros active scanner, but with additional tests added | |
3056 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Spider used for automatically finding URIs on a site | |
3059 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing A set of common popup menus for miscellaneous tasks | |
3059 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Forced browsing of files and directories using code from the OWASP DirBuster tool | |
3059 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionManualRequest | |
3060 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Compares 2 sessions and generates an HTML file showing the differences | |
3060 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Invoke external applications passing context related information such as URLs and parameters | |
3060 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Handles anti cross site request forgery (CSRF) tokens | |
3061 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionAuthentication | |
3885 [ZAP-daemon] INFO org.zaproxy.zap.extension.authentication.ExtensionAuthentication - Loaded authentication method types: [Form-based Authentication, HTTP/NTLM Authentication, Manual Authentication, Script-based Authentication] | |
3885 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Creates a dynamic SSL certificate to allow SSL communications to be intercepted without warnings being generated by the browser | |
3886 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Logs errors to the Output tab in development mode only | |
3886 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionUserManagement | |
3886 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Summarise and analyse FORM and URL parameters as well as cookies | |
3886 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Script integration | |
3892 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Scripting console, supports all JSR 223 scripting languages | |
3892 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionForcedUser | |
3893 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Extension handling HTTP sessions | |
3893 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Zest is a specialized scripting language from Mozilla specifically designed to be used in security tools | |
3979 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionDiff | |
3979 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionRequestPostTableView | |
3980 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Simple browser configuration | |
3980 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionSessionManagement | |
4046 [ZAP-daemon] INFO org.zaproxy.zap.extension.sessions.ExtensionSessionManagement - Loaded session management method types: [Cookie-based Session Management, Http Authentication Session Management] | |
4046 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionHttpPanelRequestFormTableView | |
4047 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Capture messages from WebSockets with the ability to set breakpoints. | |
4049 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Summarise and analyse FORM and URL parameters as well as cookies | |
4049 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionAuthorization | |
4050 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing AJAX Spider, uses Crawljax | |
4050 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Handles adding Global Excluded URLs | |
4050 [ZAP-daemon] WARN org.zaproxy.zap.extension.globalexcludeurl.ExtensionGlobalExcludeURL - GlobalExcludeURL.optionsLoaded() | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Adds menu item to refresh the Sites tree | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Adds support for configurable keyboard shortcuts for all of the ZAP menus. | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing OWASP ZAP User Guide | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionReport | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Allows you to configure which extensions are loaded when ZAP starts | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionHttpPanelComponentonentAll | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionHttpPanelHexView | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionHttpPanelImageView | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionHttpPanelLargeRequestView | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionHttpPanelLargeResponseView | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionHttpPanelRequestQueryCookieTableView | |
4051 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionHttpPanelSyntaxHighlightTextView | |
4052 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Allows to fuzz WebSocket messages. | |
4052 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Provides WebDrivers to control several browsers using Selenium and includes HtmlUnit browser. | |
4052 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Active Scan Rules | |
4052 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Provides the foundation for concrete message types (for example, HTTP, WebSockets) expose fuzzer implementations. | |
4053 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Allows to fuzz HTTP messages. | |
4053 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing ExtensionSaveRawHttpMessage | |
4054 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing The Online menu links | |
4054 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing The ZAP Getting Started Guide | |
4054 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Quick Start panel | |
4054 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Passive Scan Rules | |
4054 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Translations of the core language files | |
4054 [ZAP-daemon] INFO org.parosproxy.paros.extension.ExtensionLoader - Initializing Tips and Tricks | |
4055 [ZAP-daemon] WARN org.zaproxy.zap.extension.autoupdate.ExtensionAutoUpdate - No check for updates for over 3 month - add-ons may well be out of date | |
4061 [Thread-4] INFO org.zaproxy.zap.extension.dynssl.ExtensionDynSSL - Creating new root CA certificate | |
4172 [ZAP-daemon] INFO org.zaproxy.zap.DaemonBootstrap - ZAP is now listening on 0.0.0.0:8080 | |
13644 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Path Traversal | |
13644 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Remote File Inclusion | |
13645 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Server Side Include | |
13645 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Cross Site Scripting (Reflected) | |
13645 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Cross Site Scripting (Persistent) | |
13646 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin SQL Injection | |
13646 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Server Side Code Injection | |
13646 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Remote OS Command Injection | |
13647 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Directory Browsing | |
13647 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin External Redirect | |
13647 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Buffer Overflow | |
13648 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Format String Error | |
13648 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin CRLF Injection | |
13648 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Parameter Tampering | |
13649 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Cross Site Scripting (Persistent) - Prime | |
13649 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Cross Site Scripting (Persistent) - Spider | |
13649 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Script Active Scan Rules | |
13650 [ZAP-ProxyThread-4] INFO org.parosproxy.paros.core.scanner.Scanner - scanner started | |
13669 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Path Traversal | |
13673 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Remote File Inclusion | |
13673 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Server Side Include | |
13674 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Cross Site Scripting (Reflected) | |
13675 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Cross Site Scripting (Persistent) | |
13676 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin SQL Injection | |
13677 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Server Side Code Injection | |
13677 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Remote OS Command Injection | |
13678 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Directory Browsing | |
13678 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin External Redirect | |
13679 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Buffer Overflow | |
13679 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Format String Error | |
13680 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin CRLF Injection | |
13680 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Parameter Tampering | |
13681 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Cross Site Scripting (Persistent) - Prime | |
13682 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Cross Site Scripting (Persistent) - Spider | |
13682 [Thread-9] INFO org.parosproxy.paros.core.scanner.PluginFactory - loaded plugin Script Active Scan Rules | |
13686 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestPathTraversal strength MEDIUM threshold MEDIUM | |
13694 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestPathTraversal in 0.009s | |
13695 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestRemoteFileInclude strength MEDIUM threshold MEDIUM | |
13704 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestRemoteFileInclude in 0.009s | |
13705 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestServerSideInclude strength MEDIUM threshold MEDIUM | |
13708 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestServerSideInclude in 0.004s | |
13708 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestCrossSiteScriptV2 strength MEDIUM threshold MEDIUM | |
13710 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestCrossSiteScriptV2 in 0.002s | |
13711 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestSQLInjection strength MEDIUM threshold MEDIUM | |
13713 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestSQLInjection in 0.003s | |
13713 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | CodeInjectionPlugin strength MEDIUM threshold MEDIUM | |
13715 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | CodeInjectionPlugin in 0.002s | |
13715 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | CommandInjectionPlugin strength MEDIUM threshold MEDIUM | |
13724 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | CommandInjectionPlugin in 0.009s | |
13724 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestDirectoryBrowsing strength MEDIUM threshold MEDIUM | |
14356 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestDirectoryBrowsing in 0.632s | |
14356 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestExternalRedirect strength MEDIUM threshold MEDIUM | |
14365 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestExternalRedirect in 0.009s | |
14365 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | BufferOverflow strength MEDIUM threshold MEDIUM | |
14368 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | BufferOverflow in 0.003s | |
14368 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | FormatString strength MEDIUM threshold MEDIUM | |
14370 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | FormatString in 0.002s | |
14370 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestInjectionCRLF strength MEDIUM threshold MEDIUM | |
14375 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestInjectionCRLF in 0.005s | |
14376 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestParameterTamper strength MEDIUM threshold MEDIUM | |
14383 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestParameterTamper in 0.007s | |
14383 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestPersistentXSSPrime strength MEDIUM threshold MEDIUM | |
14391 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestPersistentXSSPrime in 0.008s | |
14391 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestPersistentXSSSpider strength MEDIUM threshold MEDIUM | |
14410 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestPersistentXSSSpider in 0.019s | |
14410 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | TestPersistentXSSAttack strength MEDIUM threshold MEDIUM | |
14413 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | TestPersistentXSSAttack in 0.003s | |
14413 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - start host https://www.allizom.org | ScriptsActiveScanner strength MEDIUM threshold MEDIUM | |
14415 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host/plugin https://www.allizom.org | ScriptsActiveScanner in 0.002s | |
14415 [Thread-10] INFO org.parosproxy.paros.core.scanner.HostProcess - completed host https://www.allizom.org in 0.73s | |
14415 [Thread-9] INFO org.parosproxy.paros.core.scanner.Scanner - scanner completed in 0.765s | |
15946 [Thread-4] INFO org.zaproxy.zap.extension.dynssl.ExtensionDynSSL - New root CA certificate created | |
7df1fca135a4 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment