"PASSIVE_WEB_SECURITY_CHECK" Command

Owned by Joseph Hamdan
Last updated: Jun 11, 2024
1 min read

Description: This feature is only available for customers who have a license. Performs passive scanning on all HTTP messages (requests and responses) sent to the web application being tested without making any changes to these requests and responses. This command requires ZAP installation on your device for local runs to work.

Usage Scenario: Suppose we want to run passive scan on our Reference app.

Procedure: Follow the instructions in https://subject7.atlassian.net/wiki/spaces/SD/pages/673579180

image-20240611-140843.png

 

 

 

Â