Skip to content
ZAP Headless CI Scanner With FLASK API Implementation
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
deploy
docs
static
templates
tests
.gitignore
Dockerfile
README.md
app.py
requirements.txt
serve.py

README.md

ZapIt - Vulnerability Scanner

This project leverages the ZAP headless scanner along with a FLASK API to allow development users the ability to launch the docker containers and scan it against their web applications.

Getting Started

These instructions will get you a copy of the project up and running on your local machine for development and testing purposes. See deployment for notes on how to deploy the project on a live system.

Prerequisites

  • Docker
  • Python 3.6 +
  • Python Dependencies
pip install -r requirements.txt --user

Installing

A step by step series of examples that tell you how to get a development env running

Clone this repo.

git clone <this repo url>

Launch the deploy script.

./quick-deploy.sh

Running the tests

Custom tests developed to run an example domain through a rudimentary test.

python tests/run.py

Built With

  • Flask - The web framework used
  • OWASP ZAP - Scanning tool
  • Docker - Used for containterized deployment

Contributing

Send in a PR and I'll review it :)

Authors

Nathan Getty - Owner - GetSec

License

This project is licensed under the MIT License - see the LICENSE.md file for details

Acknowledgments

  • Big shoutout to all the OWASP team for developing ZAP
You can’t perform that action at this time.