diff --git a/addons/index.html b/addons/index.html index 891dcda60c..c6aa51c05f 100644 --- a/addons/index.html +++ b/addons/index.html @@ -1416,18 +1416,18 @@

ZAP Marketplace

Repository - Download + Download
- FuzzDB web backdoors and attack files which can be used with the ZAP fuzzer or for manual penetration testing + FuzzDB web backdoors and attack files which can be used with the ZAP fuzzer or for manual penetration testing - contains files that may well be flagged by anti-virus tools fuzzdboffensive - 4 + 5 release @@ -1436,7 +1436,7 @@

ZAP Marketplace

ZAP Dev Team - 2021-06-11 + 2024-01-11 diff --git a/docs/desktop/addons/fuzzdb-offensive/index.html b/docs/desktop/addons/fuzzdb-offensive/index.html index 1f3dcf5fd9..8388dd2309 100644 --- a/docs/desktop/addons/fuzzdb-offensive/index.html +++ b/docs/desktop/addons/fuzzdb-offensive/index.html @@ -1607,6 +1607,7 @@

 ZAP

FuzzDB Offensive

FuzzDB web backdoors and attack files which can be used with the ZAP fuzzer or for manual penetration testing.

+

This add-on contains files that may be flagged by anti-virus tools.

diff --git a/search/index.json b/search/index.json index 6a2f7ab2a4..b599142a60 100644 --- a/search/index.json +++ b/search/index.json @@ -6669,7 +6669,7 @@ "keywords": ["","marketplace","zap"], "tags": null, "summary": "ZAP Marketplace contains ZAP add-ons which have been written by the ZAP team and the community. The add-ons help to extend the functionalities of ZAP. If you are using the latest version of ZAP then you can browse and download add-ons from within ZAP by clicking on this button in the toolbar:", - "content": "zap marketplace contains addons which have been written by team community help extend functionalities you using latest version then can browse download from within clicking button toolbar: also import that downloaded manually via file load addon menu option desktop name id status author last updated access control testing adds set tools web applications accesscontrol alpha dev 20230908 active scanner rules release ascanrules 59 20231207 ascanrulesalpha 44 beta ascanrulesbeta 48 advanced sqlinjection injection bundle sqli derived sqlmap sqliplugin 15 andrea pompili yhawke 20211020 ajax spider allows sites make heavy use javascript crawljax spiderajax 23180 20231110 alert filters automate changing risk levels alertfilters 19 20231116 all one notes simple extension view pane allinonenotes david vassallo 20211007 attack surface detector analyzes application source code generate endpoints used penetration attacksurfacedetector 114 secure decisions matthew deletto 20190307 authentication helper helps identify up handling authhelper 0110 20240110 statistics records logged inout contexts scope authstats automation framework 0340 beanshell console provides browser render html responses like browserview 20230313 bug tracker bugtracker 20220923 call graph user selected resources callgraph colm o39flaherty home handles calls services callhome 0100 20231103 client side integration exposes information firefox chrome extensions 070 20231201 dx includes request response data xml reports ability upload directly server codedx inc collection: pentester pack collection ideal pentesters packpentester 010 20220512 scan just containing packscanrules 001 20220513 common library other commonlib 1200 scripts useful communityscripts 17 20230628 core language files translations corelang 20220214 custom payloads add edit remove ie scanners custompayloads 0130 database engines related infrastructure 030 20231012 development 050 diff displays dialog showing differences between requests uses diffutils diffmatchpatch 14 directory list v10 names forced fuzzer directorylistv1 v23 lists directorylistv23 lc lower case directorylistv23lc dom xss rule domxss 18 aabha biyani encoder encodedecodehash support scripted processors 140 eval villain when launched evalvillain dennis goodlett 20230926 fileupload detect them find vulnerabilities 121 ksasan preetkaran20gmailcom 20231023 browsing directories owasp dirbuster tool bruteforce fuzzdb offensive backdoors manual fuzzdboffensive 20210611 fuzz 13120 getting started guide short gettingstarted 16 graalvm engine scripting graaljs graphql inspect 0220 20231219 groovy 310 arabic helparsa crowdin 20220118 bosnian helpbsba 20180208 chinese simplified helpzhcn english filipino helpfilph french helpfrfr 10 indonesian helpidid japanese helpjajp malay helpmsmy portuguese brazilian helpptbr 11 russian helpruru 20220224 spanish helpeses turkish helptrtr highlighter highlight strings tabs hud heads display 0180 image location privacy passive imagelocationscanner jay ball veggiespam importexport export functionality exim 080 thatsn0tmysite invoke external passing context such urls parameters json shows messages nicely formatted jsonview juha kiveks 20230907 jwt 103 20230102 kotlin 110 stackhawk engineering levoai build openapi specs traffic 020 20221226 linux webdrivers webdriverlinux 69 20240103 macos webdrivermacos map local mapping content chosen maplocal keindel andrey maksimov 20231005 neonmarker colors history table items based tags 160 kingthorin 20230817 network networking capabilities 20231117 oast exploit outofband 0170 online menus onlinemenu 12 imports spiders definitions 38 plus joanna bona nathalie bouchahine artur grzesica mohammad kamar markus kiss michal materniak marcin spiewak sda se open industry solutions parameter digger hidden unlinked finding cache poisoning paramdigger arkaprabha chakraborty 20230606 pscanrules 53 20231130 pscanrulesalpha 41 pscanrulesbeta 35 plugnhack configuration supports mozilla standard: https:developermozillaorgenusdocsplugnhack 13 20221027 port target portscan postman collections python templates included jython quick start tab quickly test quickstart 43 reflect finds reflected 0011 caleb kinney 20210219 regular expression tester expressions regextester replacer easy way replace report generation official 0270 requester send 740 surikato retest presenceabsence previously generated alerts retirejs retire 0290 nikita mundhada reveal show fields enable disabled revisit site any time past session ruby jruby saml 20221028 script jsr 223 languages selenium webdriver provider htmlunit 15160 sequence gives possibility defining scanned serversent events sse communication soap scans wsdl 21 alberto albertov91 automatically uris svn svndigger tips tricks token analysis analyze pseudo random tokens those csrf protection tokengen treetools tree carl sampson value generator define field values submitting app added modified enableddisabled deleted formhandler 650 viewstate aspjsf decoder editor calum hutton wappalyzer technology detection wappalyzer: wappalyzercom 21290 websockets websocket 30 windows webdriverwindows zest graphical security zaps macro steroids " + "content": "zap marketplace contains addons which have been written by team community help extend functionalities you using latest version then can browse download from within clicking button toolbar: also import that downloaded manually via file load addon menu option desktop name id status author last updated access control testing adds set tools web applications accesscontrol alpha dev 20230908 active scanner rules release ascanrules 59 20231207 ascanrulesalpha 44 beta ascanrulesbeta 48 advanced sqlinjection injection bundle sqli derived sqlmap sqliplugin 15 andrea pompili yhawke 20211020 ajax spider allows sites make heavy use javascript crawljax spiderajax 23180 20231110 alert filters automate changing risk levels alertfilters 19 20231116 all one notes simple extension view pane allinonenotes david vassallo 20211007 attack surface detector analyzes application source code generate endpoints used penetration attacksurfacedetector 114 secure decisions matthew deletto 20190307 authentication helper helps identify up handling authhelper 0110 20240110 statistics records logged inout contexts scope authstats automation framework 0340 beanshell console provides browser render html responses like browserview 20230313 bug tracker bugtracker 20220923 call graph user selected resources callgraph colm o39flaherty home handles calls services callhome 0100 20231103 client side integration exposes information firefox chrome extensions 070 20231201 dx includes request response data xml reports ability upload directly server codedx inc collection: pentester pack collection ideal pentesters packpentester 010 20220512 scan just containing packscanrules 001 20220513 common library other commonlib 1200 scripts useful communityscripts 17 20230628 core language files translations corelang 20220214 custom payloads add edit remove ie scanners custompayloads 0130 database engines related infrastructure 030 20231012 development 050 diff displays dialog showing differences between requests uses diffutils diffmatchpatch 14 directory list v10 names forced fuzzer directorylistv1 v23 lists directorylistv23 lc lower case directorylistv23lc dom xss rule domxss 18 aabha biyani encoder encodedecodehash support scripted processors 140 eval villain when launched evalvillain dennis goodlett 20230926 fileupload detect them find vulnerabilities 121 ksasan preetkaran20gmailcom 20231023 browsing directories owasp dirbuster tool bruteforce fuzzdb offensive backdoors manual may flagged antivirus fuzzdboffensive 20240111 fuzz 13120 getting started guide short gettingstarted 16 graalvm engine scripting graaljs graphql inspect 0220 20231219 groovy 310 arabic helparsa crowdin 20220118 bosnian helpbsba 20180208 chinese simplified helpzhcn english filipino helpfilph french helpfrfr 10 indonesian helpidid japanese helpjajp malay helpmsmy portuguese brazilian helpptbr 11 russian helpruru 20220224 spanish helpeses turkish helptrtr highlighter highlight strings tabs hud heads display 0180 image location privacy passive imagelocationscanner jay ball veggiespam importexport export functionality exim 080 thatsn0tmysite invoke external passing context such urls parameters json shows messages nicely formatted jsonview juha kiveks 20230907 jwt 103 20230102 kotlin 110 stackhawk engineering levoai build openapi specs traffic 020 20221226 linux webdrivers webdriverlinux 69 20240103 macos webdrivermacos map local mapping content chosen maplocal keindel andrey maksimov 20231005 neonmarker colors history table items based tags 160 kingthorin 20230817 network networking capabilities 20231117 oast exploit outofband 0170 online menus onlinemenu 12 imports spiders definitions 38 plus joanna bona nathalie bouchahine artur grzesica mohammad kamar markus kiss michal materniak marcin spiewak sda se open industry solutions parameter digger hidden unlinked finding cache poisoning paramdigger arkaprabha chakraborty 20230606 pscanrules 53 20231130 pscanrulesalpha 41 pscanrulesbeta 35 plugnhack configuration supports mozilla standard: https:developermozillaorgenusdocsplugnhack 13 20221027 port target portscan postman collections python templates included jython quick start tab quickly test quickstart 43 reflect finds reflected 0011 caleb kinney 20210219 regular expression tester expressions regextester replacer easy way replace report generation official 0270 requester send 740 surikato retest presenceabsence previously generated alerts retirejs retire 0290 nikita mundhada reveal show fields enable disabled revisit site any time past session ruby jruby saml 20221028 script jsr 223 languages selenium webdriver provider htmlunit 15160 sequence gives possibility defining scanned serversent events sse communication soap scans wsdl 21 alberto albertov91 automatically uris svn svndigger tips tricks token analysis analyze pseudo random tokens those csrf protection tokengen treetools tree carl sampson value generator define field values submitting app added modified enableddisabled deleted formhandler 650 viewstate aspjsf decoder editor calum hutton wappalyzer technology detection wappalyzer: wappalyzercom 21290 websockets websocket 30 windows webdriverwindows zest graphical security zaps macro steroids " }, { "url": "/docs/scans/firingrange/",