The Zed Attack Proxy (ZAProxy) included in the Co-browse Server installation package is based on the OWASP Zed Attack Proxy Project.
ZAProxy can run in two modes:
- UI-less ZAProxy—can only be used as a proxy injecting web site with the instrumentation snippet.
- UI-based ZaProxy—in addition to acting as a proxy, the ZAProxy also provides a UI for validating the vulnerabilities in your website. For details, see Testing with ZAProxy SecurityTesting.
Start and Configure ZAProxy
Set up your Web Browser
- Start your web browser.
- Open your Internet settings. For instance, in Firefox, select Tools > Options. The Options dialog window appears.
- Select Advanced and in the Network tab, click Settings.... The Connection Settings dialog window opens.
- Select the Manual proxy configuration option and do the following:
- Enter your host IP address in the HTTP Proxy text box.
- Enter the port used by the ZAProxy in the Port text box. This is the port you made note of in Configure ZAProxy Host and Port.
- Select the Use this proxy server for all protocols option.
This page was last edited on February 23, 2017, at 21:24.