Fazer tab

The Fuzzer tab shows you the requests and responses performed when you fuzz string.
Selecting a row see the full requests and responses. You can also search for strings in the fuzz results using the Pretraga tab.

HTTP Fuzzer results

The results have to be manually assessed to know if any vulnerability was found.
Meaning of values of the "State" column:

Desni klik meni

Right clicking on a row will bring up a menu which will allow you to:

Isključi iz

This menu has the following submenus:

Proxy

This will exclude the selected nodes from the proxy. They will still be proxied via ZAP but will not be shown in any of the tabs.
This can be used to ignore URLs that you know are not relevant to the system you are currently testing.
The nodes can be included again via the Svojstva Sesije dialog

Skener

This will prevent the selected nodes from being actively scanned.
The nodes can be included again via the Svojstva Sesije dialog

Pauk

This will prevent the selected nodes from being spidered.
The nodes can be included again via the Svojstva Sesije dialog

Ponovno...

This will bring up the Ponovno slanje dijalog which allows you to resend the request after making any changes to it that you want to.

Novo Upozorenje...

This will bring up the Dodaj Upozorenje dijalog which allows you to manually record a new alert against this request.

Otvori URL u Pretraživaču

This will open the URL of the selected node in your default browser.

Još vidjeti

     UI Pregledza pregled korisničkog interfejsa
     Opcije Fuzzer ekranafor details of the fuzz configuration