-
-
-
+
+
+
+
| Section |
|
+ |
Score |
@@ -196,17 +198,20 @@ ZAP vs Security Crawl Maze
|
|
+ |
78% |
- | Individual Tests |
+ Individual Tests |
Standard |
Ajax |
+ Client |
| Top Level: https://security-crawl-maze.app |
61 |
27 |
+ 6 |
@@ -217,6 +222,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ✓ Pass |
+
@@ -227,6 +235,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ✓ Pass |
+
@@ -237,6 +248,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -247,6 +261,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -257,6 +274,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -267,6 +287,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -277,6 +300,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ✓ Pass |
+
@@ -287,6 +313,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -297,6 +326,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -307,6 +339,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -317,6 +352,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -327,6 +365,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -337,6 +378,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ✓ Pass |
+
@@ -347,6 +391,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -357,6 +404,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -367,6 +417,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -377,6 +430,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -387,6 +443,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -397,6 +456,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -407,6 +469,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -417,6 +482,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -427,6 +495,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -437,6 +508,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -447,6 +521,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -457,6 +534,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -467,6 +547,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -477,6 +560,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -487,6 +573,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -497,6 +586,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -507,6 +599,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -517,6 +612,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -527,6 +625,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -537,6 +638,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -547,6 +651,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -557,6 +664,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -567,6 +677,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -577,6 +690,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -587,6 +703,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -597,6 +716,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -607,6 +729,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -617,6 +742,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -627,6 +755,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -637,6 +768,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -647,6 +781,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -657,6 +794,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -667,6 +807,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -677,6 +820,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -687,6 +833,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -697,6 +846,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -707,6 +859,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -717,6 +872,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -727,6 +885,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -737,6 +898,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -747,6 +911,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -757,6 +924,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -767,6 +937,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -777,6 +950,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -787,6 +963,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -797,6 +976,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -807,6 +989,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -817,6 +1002,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -827,6 +1015,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -837,6 +1028,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -847,6 +1041,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -857,6 +1054,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -867,6 +1067,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ✓ Pass |
+
@@ -877,6 +1080,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ✓ Pass |
+
@@ -887,6 +1093,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -897,6 +1106,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -907,6 +1119,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -917,6 +1132,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -927,6 +1145,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -937,6 +1158,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -947,6 +1171,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -957,6 +1184,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -967,6 +1197,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -977,6 +1210,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -987,6 +1223,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -997,6 +1236,9 @@ ZAP vs Security Crawl Maze
✓ Pass |
+
+ ❌ FAIL |
+
@@ -1007,6 +1249,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1017,6 +1262,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1027,6 +1275,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1037,6 +1288,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1047,6 +1301,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1057,6 +1314,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1067,6 +1327,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1077,6 +1340,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1087,6 +1353,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1097,6 +1366,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1107,6 +1379,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
@@ -1117,6 +1392,9 @@ ZAP vs Security Crawl Maze
❌ FAIL |
+
+ ❌ FAIL |
+
diff --git a/docs/scans/juiceshop/index.html b/docs/scans/juiceshop/index.html
index 5fbbba0582..234e3dc2dd 100644
--- a/docs/scans/juiceshop/index.html
+++ b/docs/scans/juiceshop/index.html
@@ -176,13 +176,15 @@ ZAP vs OWASP Juice Shop
-
-
-
+
+
+
+
| Section |
|
+ |
Score |
@@ -196,17 +198,20 @@ ZAP vs OWASP Juice Shop
|
|
+ |
91% |
- | Individual Tests |
+ Individual Tests |
Standard |
Ajax |
+ Client |
| Top Level: https://OWASP Juice Shop |
|
|
+ |
@@ -217,6 +222,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -227,6 +235,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -237,6 +248,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -247,6 +261,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -257,6 +274,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -267,6 +287,9 @@ ZAP vs OWASP Juice Shop
❌ FAIL |
+
+ |
+
@@ -277,6 +300,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -287,6 +313,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -297,6 +326,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -307,6 +339,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -317,6 +352,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -327,6 +365,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -337,6 +378,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -347,6 +391,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -357,6 +404,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -367,6 +417,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -377,6 +430,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -387,6 +443,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -397,6 +456,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -407,6 +469,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -417,6 +482,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -427,6 +495,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -437,6 +508,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -447,6 +521,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -457,6 +534,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -467,6 +547,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -477,6 +560,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -487,6 +573,9 @@ ZAP vs OWASP Juice Shop
❌ FAIL |
+
+ |
+
@@ -497,6 +586,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -507,6 +599,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -517,6 +612,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -527,6 +625,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -537,6 +638,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -547,6 +651,9 @@ ZAP vs OWASP Juice Shop
❌ FAIL |
+
+ |
+
@@ -557,6 +664,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -567,6 +677,9 @@ ZAP vs OWASP Juice Shop
❌ FAIL |
+
+ |
+
@@ -577,6 +690,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -587,6 +703,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -597,6 +716,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -607,6 +729,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -617,6 +742,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -627,6 +755,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -637,6 +768,9 @@ ZAP vs OWASP Juice Shop
❌ FAIL |
+
+ |
+
@@ -647,6 +781,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -657,6 +794,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -667,6 +807,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -677,6 +820,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -687,6 +833,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -697,6 +846,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -707,6 +859,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -717,6 +872,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -727,6 +885,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
@@ -737,6 +898,9 @@ ZAP vs OWASP Juice Shop
✓ Pass |
+
+ |
+
diff --git a/search/index.json b/search/index.json
index 29f5f997ba..28681cdf49 100644
--- a/search/index.json
+++ b/search/index.json
@@ -6405,7 +6405,7 @@
"keywords": ["","juice","owasp","shop","vs","zap"],
"tags": null,
"summary": "OWASP Juice Shop is \u0026ldquo;probably the most modern and sophisticated insecure web application!\u0026rdquo;.\nThe main project page is https://owasp.org/www-project-juice-shop/\nIt is actively maintained.\nIn this case we use it to check that the AJAX Spider finds all of the expected pages. Juice Shop was manually explored using a browser - if you find a new URL in Juice Shop that can be discovered by \u0026rsquo;normal' exploration but which is not listed then please raise an issue.",
- "content": "owasp juice shop probably most modern sophisticated insecure web application main project page https:owasporgwwwprojectjuiceshop actively maintained case we use check that ajax spider finds all expected pages was manually explored using browser you find new url can discovered by normal exploration which not listed then please raise issue section score urls 91 individual tests standard top level: https:owasp get http:cdnjscloudflarecomajaxlibscookieconsent2310cookieconsentmincss 10003 pass http:cdnjscloudflarecomajaxlibscookieconsent2310cookieconsentminjs http:cdnjscloudflarecomajaxlibsjquery224jqueryminjs http:localhost:3000 http:localhost:3000materialiconsregularwoff2 http:localhost:3000aesvg 10060 fail http:localhost:3000apichallengesname http:localhost:3000apifeedbacks http:localhost:3000apiquantitys http:localhost:3000assetsi18nenjson http:localhost:3000assetspublicfaviconjsico http:localhost:3000assetspublicimagesjuiceshoplogopng http:localhost:3000assetspublicimagescarousel1jpg http:localhost:3000assetspublicimagescarousel2jpg http:localhost:3000assetspublicimagescarousel3jpg http:localhost:3000assetspublicimagescarousel4jpg http:localhost:3000assetspublicimagescarousel5png http:localhost:3000assetspublicimagescarousel6jpg http:localhost:3000assetspublicimagescarousel7jpg http:localhost:3000assetspublicimageshackinginstructorpng http:localhost:3000assetspublicimagesproductsapplejuicejpg http:localhost:3000assetspublicimagesproductsapplepressingsjpg http:localhost:3000assetspublicimagesproductsartwork2jpg http:localhost:3000assetspublicimagesproductsbananajuicejpg http:localhost:3000assetspublicimagesproductscarrotjuicejpeg http:localhost:3000assetspublicimagesproductseggfruitjuicejpg http:localhost:3000assetspublicimagesproductsfanfacemaskjpg http:localhost:3000assetspublicimagesproductsfangirliejpg http:localhost:3000assetspublicimagesproductsfruitpressjpg http:localhost:3000assetspublicimagesproductsgreensmoothiejpg http:localhost:3000assetspublicimagesproductslemonjuicejpg http:localhost:3000assetspublicimagesproductsmelonbikejpeg http:localhost:3000assetspublicimagesproductspermafrostjpg http:localhost:3000azsvg http:localhost:3000fontmfizzwoff http:localhost:3000ftplegalmd http:localhost:3000mainjs http:localhost:3000polyfillsjs http:localhost:3000restadminapplicationconfiguration http:localhost:3000restadminapplicationversion http:localhost:3000restcaptcha http:localhost:3000restlanguages http:localhost:3000restproducts1reviews http:localhost:3000restproductssearchq http:localhost:3000restuserwhoami http:localhost:3000runtimejs http:localhost:3000socketioeiosidttransport http:localhost:3000socketioeiosidtransport http:localhost:3000socketioeiottransport http:localhost:3000stylescss http:localhost:3000tutorialjs http:localhost:3000vendorjs post http:localhost:3000socketioeiosidttransport40 configuration config details frequency daily scripts https:githubcomzapbotzapmgmtscriptsblobmasterscansjuiceshop action https:githubcomzapbotzapmgmtscriptsactionsworkflowszapvsjuiceshopyml settings latest nightly zap docker image run default against app exceptions "
+ "content": "owasp juice shop probably most modern sophisticated insecure web application main project page https:owasporgwwwprojectjuiceshop actively maintained case we use check that ajax spider finds all expected pages was manually explored using browser you find new url can discovered by normal exploration which not listed then please raise issue section score urls 91 individual tests standard client top level: https:owasp get http:cdnjscloudflarecomajaxlibscookieconsent2310cookieconsentmincss 10003 pass http:cdnjscloudflarecomajaxlibscookieconsent2310cookieconsentminjs http:cdnjscloudflarecomajaxlibsjquery224jqueryminjs http:localhost:3000 http:localhost:3000materialiconsregularwoff2 http:localhost:3000aesvg 10060 fail http:localhost:3000apichallengesname http:localhost:3000apifeedbacks http:localhost:3000apiquantitys http:localhost:3000assetsi18nenjson http:localhost:3000assetspublicfaviconjsico http:localhost:3000assetspublicimagesjuiceshoplogopng http:localhost:3000assetspublicimagescarousel1jpg http:localhost:3000assetspublicimagescarousel2jpg http:localhost:3000assetspublicimagescarousel3jpg http:localhost:3000assetspublicimagescarousel4jpg http:localhost:3000assetspublicimagescarousel5png http:localhost:3000assetspublicimagescarousel6jpg http:localhost:3000assetspublicimagescarousel7jpg http:localhost:3000assetspublicimageshackinginstructorpng http:localhost:3000assetspublicimagesproductsapplejuicejpg http:localhost:3000assetspublicimagesproductsapplepressingsjpg http:localhost:3000assetspublicimagesproductsartwork2jpg http:localhost:3000assetspublicimagesproductsbananajuicejpg http:localhost:3000assetspublicimagesproductscarrotjuicejpeg http:localhost:3000assetspublicimagesproductseggfruitjuicejpg http:localhost:3000assetspublicimagesproductsfanfacemaskjpg http:localhost:3000assetspublicimagesproductsfangirliejpg http:localhost:3000assetspublicimagesproductsfruitpressjpg http:localhost:3000assetspublicimagesproductsgreensmoothiejpg http:localhost:3000assetspublicimagesproductslemonjuicejpg http:localhost:3000assetspublicimagesproductsmelonbikejpeg http:localhost:3000assetspublicimagesproductspermafrostjpg http:localhost:3000azsvg http:localhost:3000fontmfizzwoff http:localhost:3000ftplegalmd http:localhost:3000mainjs http:localhost:3000polyfillsjs http:localhost:3000restadminapplicationconfiguration http:localhost:3000restadminapplicationversion http:localhost:3000restcaptcha http:localhost:3000restlanguages http:localhost:3000restproducts1reviews http:localhost:3000restproductssearchq http:localhost:3000restuserwhoami http:localhost:3000runtimejs http:localhost:3000socketioeiosidttransport http:localhost:3000socketioeiosidtransport http:localhost:3000socketioeiottransport http:localhost:3000stylescss http:localhost:3000tutorialjs http:localhost:3000vendorjs post http:localhost:3000socketioeiosidttransport40 configuration config details frequency daily scripts https:githubcomzapbotzapmgmtscriptsblobmasterscansjuiceshop action https:githubcomzapbotzapmgmtscriptsactionsworkflowszapvsjuiceshopyml settings latest nightly zap docker image run default against app exceptions "
},
{
"url": "/docs/scans/crawlmaze/",
@@ -6413,7 +6413,7 @@
"keywords": ["","crawl","maze","security","vs","zap"],
"tags": null,
"summary": "Google Security Crawl Maze is a comprehensive testbed for web security crawlers.\nIt is available online at https://security-crawl-maze.app/ and the GitHub repo is https://github.com/google/security-crawl-maze It does appear to be being actively maintained and has merged a fix that we submitted.\nAs long as one of the ZAP spiders finds the relevant page we count that as a pass, but ideally both spiders will find as many of the URLs as possible.",
- "content": "google security crawl maze comprehensive testbed web crawlers available online https:securitycrawlmazeapp github repo https:githubcomgooglesecuritycrawlmaze does appear being actively maintained has merged fix that we submitted long one zap spiders finds relevant page count pass ideally both will find many urls possible changes which any missed either spider eligible bounty: see issue 7152 more details section score all 78 individual tests standard ajax top level: 61 27 javascriptframeworksangulareventhandlerfound 10060 fail javascriptframeworksangularrouteroutletfound javascriptframeworksangularjsnghreffound javascriptframeworkspolymereventhandlerfound javascriptframeworkspolymerpolymerrouterfound javascriptframeworksreactindexhtmlsearchfound javascriptframeworksreactroutepathfound testcssfontfacefound 10003 testheaderscontentlocationfound testheaderslinkfound testheaderslocationfound testheadersrefreshfound testhtmlbodyahreffound testhtmlbodyapingfound testhtmlbodyappletarchivefound testhtmlbodyappletcodebasefound testhtmlbodyaudiosourcesrcfound testhtmlbodyaudiosourcesrcset1xfound testhtmlbodyaudiosourcesrcset2xfound testhtmlbodyaudiosrcfound testhtmlbodybackgroundfound testhtmlbodyblockquotecitefound testhtmlbodyembedsrcfound testhtmlbodyformactiongetfound testhtmlbodyformactionpostfound testhtmlbodyformbuttonformactionfound testhtmlbodyframesetframesrcfound testhtmlbodyiframesrcfound testhtmlbodyiframesrcdocfound testhtmlbodyimgdynsrcfound testhtmlbodyimglongdescfound testhtmlbodyimglowsrcfound testhtmlbodyimgsrcdatafound testhtmlbodyimgsrcfound testhtmlbodyimgsrcset1xfound testhtmlbodyimgsrcset2xfound testhtmlbodyinputsrcfound testhtmlbodyisindexactionfound testhtmlbodymapareapingfound testhtmlbodyobjectcodebasefound testhtmlbodyobjectdatafound testhtmlbodyobjectparamvaluefound testhtmlbodyscriptsrcfound testhtmlbodysvgimagexlinkfound testhtmlbodysvgscriptxlinkfound testhtmlbodytablebackgroundfound testhtmlbodytabletdbackgroundfound testhtmlbodyvideoposterfound testhtmlbodyvideosrcfound testhtmlbodyvideotracksrcfound testhtmldoctypefound testhtmlheadbasehreffound testhtmlheadcommentconditionalfound testhtmlheadimportimplementationfound testhtmlheadlinkhreffound testhtmlheadmetacontentcspfound testhtmlheadmetacontentpinnedwebsitesfound testhtmlheadmetacontentreadingviewfound testhtmlheadmetacontentredirectfound testhtmlheadprofilefound testhtmlmanifestfound testhtmlmiscstringdotdotslashprefixfound testhtmlmiscstringdotslashprefixfound testhtmlmiscstringstringknownextensionpdf testhtmlmiscstringurlstringfound testhtmlmiscurlfullurlfound testhtmlmiscurlpathrelativeurlfound testhtmlmiscurlprotocolrelativeurlfound testhtmlmiscurlrootrelativeurlfound testjavascriptinteractivejsdeletefound testjavascriptinteractivejsposteventlistenerfound testjavascriptinteractivejspostfound testjavascriptinteractivejsputfound testjavascriptinteractivelistenerandeventattributefirstfound testjavascriptinteractivelistenerandeventattributesecondfound testjavascriptinteractivemultisteprequesteventattributefound testjavascriptinteractivemultisteprequesteventlistenerdivdomfound testjavascriptinteractivemultisteprequesteventlistenerdivfound testjavascriptinteractivemultisteprequesteventlistenerdomfound testjavascriptinteractivemultisteprequesteventlistenerfound testjavascriptinteractivemultisteprequestredefineeventattributefound testjavascriptinteractivemultisteprequestremovebuttonfound testjavascriptinteractivemultisteprequestremoveeventlistenerfound testjavascriptinteractivetwolistenersfirstfound testjavascriptinteractivetwolistenerssecondfound testjavascriptmiscautomaticpostfound testjavascriptmisccommentfound testjavascriptmiscstringconcatvariablefound testjavascriptmiscstringvariablefound testmiscknownfilesrobotstxtfound testmiscknownfilessitemapxmlfound configuration config frequency daily scripts https:githubcomzapbotzapmgmtscriptsblobmasterscanscrawlmaze action https:githubcomzapbotzapmgmtscriptsactionsworkflowszapvscrawlmazeyml settings latest nightly docker image run default against app following exceptions: traditional maxdepth set 10 deeper links number browsers launched by speed up crawling "
+ "content": "google security crawl maze comprehensive testbed web crawlers available online https:securitycrawlmazeapp github repo https:githubcomgooglesecuritycrawlmaze does appear being actively maintained has merged fix that we submitted long one zap spiders finds relevant page count pass ideally both will find many urls possible changes which any missed either spider eligible bounty: see issue 7152 more details section score all 78 individual tests standard ajax client top level: 61 27 javascriptframeworksangulareventhandlerfound 10060 fail 10003 javascriptframeworksangularrouteroutletfound javascriptframeworksangularjsnghreffound javascriptframeworkspolymereventhandlerfound javascriptframeworkspolymerpolymerrouterfound javascriptframeworksreactindexhtmlsearchfound javascriptframeworksreactroutepathfound testcssfontfacefound testheaderscontentlocationfound testheaderslinkfound testheaderslocationfound testheadersrefreshfound testhtmlbodyahreffound testhtmlbodyapingfound testhtmlbodyappletarchivefound testhtmlbodyappletcodebasefound testhtmlbodyaudiosourcesrcfound testhtmlbodyaudiosourcesrcset1xfound testhtmlbodyaudiosourcesrcset2xfound testhtmlbodyaudiosrcfound testhtmlbodybackgroundfound testhtmlbodyblockquotecitefound testhtmlbodyembedsrcfound testhtmlbodyformactiongetfound testhtmlbodyformactionpostfound testhtmlbodyformbuttonformactionfound testhtmlbodyframesetframesrcfound testhtmlbodyiframesrcfound testhtmlbodyiframesrcdocfound testhtmlbodyimgdynsrcfound testhtmlbodyimglongdescfound testhtmlbodyimglowsrcfound testhtmlbodyimgsrcdatafound testhtmlbodyimgsrcfound testhtmlbodyimgsrcset1xfound testhtmlbodyimgsrcset2xfound testhtmlbodyinputsrcfound testhtmlbodyisindexactionfound testhtmlbodymapareapingfound testhtmlbodyobjectcodebasefound testhtmlbodyobjectdatafound testhtmlbodyobjectparamvaluefound testhtmlbodyscriptsrcfound testhtmlbodysvgimagexlinkfound testhtmlbodysvgscriptxlinkfound testhtmlbodytablebackgroundfound testhtmlbodytabletdbackgroundfound testhtmlbodyvideoposterfound testhtmlbodyvideosrcfound testhtmlbodyvideotracksrcfound testhtmldoctypefound testhtmlheadbasehreffound testhtmlheadcommentconditionalfound testhtmlheadimportimplementationfound testhtmlheadlinkhreffound testhtmlheadmetacontentcspfound testhtmlheadmetacontentpinnedwebsitesfound testhtmlheadmetacontentreadingviewfound testhtmlheadmetacontentredirectfound testhtmlheadprofilefound testhtmlmanifestfound testhtmlmiscstringdotdotslashprefixfound testhtmlmiscstringdotslashprefixfound testhtmlmiscstringstringknownextensionpdf testhtmlmiscstringurlstringfound testhtmlmiscurlfullurlfound testhtmlmiscurlpathrelativeurlfound testhtmlmiscurlprotocolrelativeurlfound testhtmlmiscurlrootrelativeurlfound testjavascriptinteractivejsdeletefound testjavascriptinteractivejsposteventlistenerfound testjavascriptinteractivejspostfound testjavascriptinteractivejsputfound testjavascriptinteractivelistenerandeventattributefirstfound testjavascriptinteractivelistenerandeventattributesecondfound testjavascriptinteractivemultisteprequesteventattributefound testjavascriptinteractivemultisteprequesteventlistenerdivdomfound testjavascriptinteractivemultisteprequesteventlistenerdivfound testjavascriptinteractivemultisteprequesteventlistenerdomfound testjavascriptinteractivemultisteprequesteventlistenerfound testjavascriptinteractivemultisteprequestredefineeventattributefound testjavascriptinteractivemultisteprequestremovebuttonfound testjavascriptinteractivemultisteprequestremoveeventlistenerfound testjavascriptinteractivetwolistenersfirstfound testjavascriptinteractivetwolistenerssecondfound testjavascriptmiscautomaticpostfound testjavascriptmisccommentfound testjavascriptmiscstringconcatvariablefound testjavascriptmiscstringvariablefound testmiscknownfilesrobotstxtfound testmiscknownfilessitemapxmlfound configuration config frequency daily scripts https:githubcomzapbotzapmgmtscriptsblobmasterscanscrawlmaze action https:githubcomzapbotzapmgmtscriptsactionsworkflowszapvscrawlmazeyml settings latest nightly docker image run default against app following exceptions: traditional maxdepth set 10 deeper links number browsers launched by speed up crawling "
},
{
"url": "/docs/scans/webseclab/",