-
Notifications
You must be signed in to change notification settings - Fork 13
Installation
Chris Horn edited this page Jul 11, 2018
·
9 revisions
The Attack Surface Detector can be installed in one of two ways: manually or from the OWASP ZAP marketplace.
- Download and install the latest build of OWASP ZAP from https://github.com/zaproxy/zaproxy/wiki/Downloads
- Launch OWASP ZAP
- Select the "Manage Add-ons" from the tool bar
- Locate and select "Attack Surface Detector"
- Select "Install Selected"
- Download and install the latest build of OWASP ZAP from https://github.com/zaproxy/zaproxy/wiki/Downloads
- Download latest Attack Surface Detector ZAP add-on file from https://github.com/secdec/attack-surface-detector-zap/releases
- Launch OWASP ZAP
- Navigate to "Load Add-on File" (File->Load Add-on File)
- In the popup, browse to the downloaded attacksurfacedetector-release-#.zap file
- Click Open (Note: The plugin file must be named attacksuracedetector-release-#.zap, where "#" is some number. This should be the default name when you download/grab the plugin.)
- Notice that selecting the green plus sign on the status bar now has an option for the Attack Surface Detector panel.