-
Notifications
You must be signed in to change notification settings - Fork 69
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Ajax Spider with Context and User #105
Comments
Same. This is a very common pattern and there's no working example for ajax spidering for authorization in CLI for zap-cli or zap in general. I can do it in GUI - but that's not useful because apparently they're practically separate applications. |
Hi @tony , it seems like this tools is no longer being maintained. my workaround is to run spider before ajax spider since i guess the session after spidering is persisted. I'm also guessing that we could also run ajax spider by using quick-scan with custom script scanner |
Thank you for the response @rucciva!
Can you give me an example of what it looks like in CLI commands?
An example of this, if such a thing existed would be incredibly valuable! |
sure, something like this (assuming you have started the zap daemon before)
or with quick-scan
|
Thank you! I will give this a try in the AM tomorrow (Texas time) |
hi, how do you run
zap-cli ajax-spider
with a context and a user? similar tozap-cli spider -c context -u user
The text was updated successfully, but these errors were encountered: