From the course: Ethical Hacking: Hacking Web Servers and Web Applications
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Proxying with ZAP
From the course: Ethical Hacking: Hacking Web Servers and Web Applications
Proxying with ZAP
- [Instructor] Zed Attack Proxy is another web proxy tool which comes as part of Kali. Let's take a look at it. I select Applications, Web Application Analysis, OWASP ZAP. I'll accept the default of no persistence, and we get to the main ZAP page. Let's check Tools, Options, and Local Proxies. We can see that ZAP is set up to proxy on port 8080. I'll set up Firefox to run through a proxy by selecting Options at the top right, preferences, advanced, network settings. And I'll select manual proxy configuration. This needs to be set to 127.0.0.1 port 8080. And I'll connect through to the Zero Bank and I'll sign in as username and password. And I'll confirm the security exception. Back in ZAP we can click on Sites, and we can see the Zero Bank site that was accessed. And we have conversations in the bottom panel. I'll scroll to the post request for account login, and I'll click the Request tab, and we can see the plain text…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.