248 个评分
5,896 人已注册
Scan websites for vulnerabilities
Setup and use OWASP ZAP Proxy
Use a dictionary list to find files and folders and spider crawl to find links and URLs
By the end of this project, you will learn the fundamentals of how to use OWASP Zed Attack Proxy (ZAP). This tool greatly aids security professionals and penetration testers to discover vulnerabilities within web applications. You will learn how to perform a basic web app vulnerability scan, analyze the results, and generate a report of those results. This course includes steps on how to configure the browser proxy to passively scan web requests and responses by simply exploring websites. This course will also include how to use dictionary lists to find files and folders on a web server, and how to spider crawl websites to find all the links and URLs. Finally, the end of the course gives a brief overview of how to intercept, view, modify, and forward web requests that occur between the browser and web application. Note: This course works best for learners who are based in the North America region. We’re currently working on providing the same experience in other regions.
在与您的工作区一起在分屏中播放的视频中,您的授课教师将指导您完成每个步骤:
Introduction and overview of what OWASP ZAP is and how it is important for web security professionals.
Understand the layout of OWASP ZAP and scan a website for vulnerabilities.
Analyze the OWASP ZAP vulnerability scan results and generate a vulnerability report from those results.
Setup and configure FoxyProxy within the Firefox browser to use ZAP as a proxy.
Find files and directories of a web server using a dictionary list within OWASP ZAP.
Using OWASP ZAP to crawl and spider websites to find links and URLs.
Using OWASP ZAP as a web proxy to intercept a valid request, modify it to make it invalid, and then send it to the web server to provoke unexpected behavior from it.
您的工作空间就是浏览器中的云桌面,无需下载
在分屏视频中,您的授课教师会为您提供分步指导
由 MN 提供
Jan 16, 2022This course is excellent to start journey as pen Tester.
由 AS 提供
Oct 7, 2020The topic was bang on target. Easy to understand and follow.
由 AM 提供
May 12, 2022Explore me more to acquire entirely different knowledge of what I thought I know
由 MA 提供
Jun 16, 2020As a beginner it was very helpful to me. Iam able to learn quickly as well.
购买指导项目后,您将获得完成指导项目所需的一切,包括通过 Web 浏览器访问云桌面工作空间,工作空间中包含您需要了解的文件和软件,以及特定领域的专家提供的分步视频说明。
由于您的工作空间包含适合笔记本电脑或台式计算机使用的云桌面,因此指导项目不在移动设备上提供。
指导项目授课教师是特定领域的专家,他们在项目的技能、工具或领域方面经验丰富,并且热衷于分享自己的知识以影响全球数百万的学生。
您可以从指导项目中下载并保留您创建的任何文件。为此,您可以在访问云桌面时使用‘文件浏览器’功能。
指导项目不符合退款条件。请查看我们完整的退款政策。
指导项目不提供助学金。
指导项目不支持旁听。
您可在页面顶部点按此指导项目的经验级别,查看任何知识先决条件。对于指导项目的每个级别,您的授课教师会逐步为您提供指导。
是,您可以在浏览器的云桌面中获得完成指导项目所需的一切。
您可以直接在浏览器中于分屏环境下完成任务,以此从做中学。在屏幕的左侧,您将在工作空间中完成任务。在屏幕的右侧,您将看到有授课教师逐步指导您完成项目。
还有其他问题吗?请访问 学生帮助中心。
