Skip to content
/ zaproxy-serverless Public

Small experiment to run OWASP Zed Attack Proxy in a serverless environment

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

savi2w/zaproxy-serverless

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
packages
packages
 
 
src
src
 
 
.eslintrc.json
.eslintrc.json
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
serverless.yml
serverless.yml
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

ZAP Serverless

This is a small experiment to run OWASP Zed Attack Proxy in a serverless environment

Usage

$ serverless deploy

Results

  • The results were not satisfying. The maximum run time for a Lambda is 15 minutes and as a result, the scanner does not have time to work properly 😕

  • The best performance was obtained by running the scanner in the fastest profiles, as well as narrowing down the analysis to riskier failures (e.g. SQL Injection)

License

This project is distributed under the MIT license

About

Small experiment to run OWASP Zed Attack Proxy in a serverless environment

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages