ZapIt - Vulnerability Scanner
This project leverages the ZAP headless scanner along with a FLASK API to allow development users the ability to launch the docker containers and scan it against their web applications.
These instructions will get you a copy of the project up and running on your local machine for development and testing purposes. See deployment for notes on how to deploy the project on a live system.
- Python 3.6 +
- Python Dependencies
pip install -r requirements.txt --user
A step by step series of examples that tell you how to get a development env running
Clone this repo.
git clone <this repo url>
Launch the deploy script.
Running the tests
Custom tests developed to run an example domain through a rudimentary test.
- Flask - The web framework used
- OWASP ZAP - Scanning tool
- Docker - Used for containterized deployment
Send in a PR and I'll review it :)
Nathan Getty - Owner - GetSec
This project is licensed under the MIT License - see the LICENSE.md file for details
- Big shoutout to all the OWASP team for developing ZAP