-
Notifications
You must be signed in to change notification settings - Fork 27
/
gin_juice.yaml
115 lines (115 loc) · 2.94 KB
/
gin_juice.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
---
env:
contexts:
- name: "GinAndJuice"
urls:
- "https://ginandjuice.shop"
includePaths:
- "https://ginandjuice.shop/*"
excludePaths: []
authentication:
method: "form"
parameters:
loginPageUrl: "https://ginandjuice.shop/login"
loginRequestUrl: "https://ginandjuice.shop/login"
loginRequestBody: "username={%username%}&password={%password%}"
verification:
method: "poll"
loggedInRegex: "Log out"
loggedOutRegex: "Log in"
pollFrequency: 60
pollUnits: "requests"
pollUrl: "https://ginandjuice.shop/my-account"
pollPostData: ""
sessionManagement:
method: "cookie"
parameters: {}
technology:
exclude: []
users:
- name: "carlos"
credentials:
password: "hunter2"
username: "carlos"
parameters:
failOnError: true
failOnWarning: false
progressToStdout: true
vars: {}
jobs:
- parameters:
maxAlertsPerRule: 0
scanOnlyInScope: true
maxBodySizeInBytesToScan: 0
enableTags: false
rules: []
name: "passiveScan-config"
type: "passiveScan-config"
- parameters:
context: "GinAndJuice"
user: "carlos"
url: "https://ginandjuice.shop/"
maxDuration: 10
maxDepth: 0
maxChildren: 0
acceptCookies: false
handleODataParametersVisited: false
handleParameters: "IGNORE_COMPLETELY"
maxParseSizeBytes: 0
parseComments: false
parseGit: false
parseRobotsTxt: false
parseSitemapXml: false
parseSVNEntries: false
postForm: false
processForm: false
requestWaitTime: 0
sendRefererHeader: false
userAgent: ""
name: "spider"
type: "spider"
- parameters:
context: "GinAndJuice"
user: "carlos"
url: "https://ginandjuice.shop/"
maxDuration: 60
maxCrawlDepth: 10
numberOfBrowsers: 16
runOnlyIfModern: false
name: "spiderAjax"
type: "spiderAjax"
- parameters: {}
name: "passiveScan-wait"
type: "passiveScan-wait"
- parameters:
context: "GinAndJuice"
user: "carlos"
policy: ""
maxRuleDurationInMins: 0
maxScanDurationInMins: 0
addQueryParam: false
delayInMs: 0
handleAntiCSRFTokens: false
injectPluginIdInHeader: false
scanHeadersAllRequests: false
threadPerHost: 5
policyDefinition:
defaultStrength: "medium"
defaultThreshold: "medium"
rules: []
name: "activeScan"
type: "activeScan"
#- parameters:
# template: "risk-confidence-html"
# reportDir: ""
# reportTitle: "ZAP Scanning Report"
# reportDescription: ""
# name: "report"
# type: "report"
- parameters:
template: "traditional-pdf"
reportDir: ""
reportTitle: "ZAP Scanning Report"
reportDescription: ""
name: "report-pdf"
type: "report"