How to use spider in Burp through ZAP?
Burp Community Edition from version 2.x doesn't have the scanning/spidering as a free option.
Is it possible to use spidering in Burp Community Edition using ZAP as a proxy?
Solution
- Open ZAP and go to
Options > Local Proxiesand set it to localhost:8081 (for example). - Go to Firefox Connection Settings and set up the proxy for the same port:
- Start Burp Community Edition and go to
Proxy > Optionstab and verify Burp is listening at localhost:8080
- Now go back to ZAP and in
Options > Connection > Use Proxy ChaincheckUse an outgoing proxy serverand fill in the Burp's port settings:
- If you now visit the target page in Firefox, it will show up in both ZAP and Burp dashboards. But now you can use ZAP's crawling option by right clicking the site and selecting Attack > Spider and the resulting pages will show up in Burp as well.
Credit: found it here.
- Why isn't HttpClientHandler picking up and using default proxy settings correctly?
- How to have the conf.d for Nginx in Termux
- How do I configure Nginx Proxy Manager to proxy an OnlyOffice Document Server Docker container?
- Creating HTTP Proxy and Detecting mimeType using finfo, it broke entire code (php)
- Class method return type lost after proxy wrapping
- Do HTTPS connections require HTTPS proxies or can I use HTTP proxies?
- How to get API requests from Android mobile app (I am not it's developer)?
- Inspect WebSocket packages with Charles proxy in Flutter app
- How many nginx buffers is too many?
- curl: (60) SSL certificate problem: when uploading behind proxy
- Cannot debug Vine and Twitter API via Charles debug proxy while Facebook, Flickr and any other API can be
- Linux Unsupported proxy configured
- Error: Fetching /usr/local/Homebrew/Library/Taps/homebrew/homebrew-core failed
- Nginx serves local file verse performing a proxy pass
- PowerShell Ftp upload
- Python - Pip Install - Proxy Error - 'Cannot connect to proxy.', OSError'
- How to exclude certain domains from an npm proxy
- How to make python Requests work via SOCKS proxy
- How can I set socks5 proxy for selenium webdriver?
- How to redirect an outgoing traffic to another address?
- Sniffing Android app's HTTPS traffic from Fiddler fails with only 'Tunnel To' entries in Fiddler
- Angular proxy config not having any effect
- How to forward a node request using axios?
- Real life usage of the X-Forwarded-Host header?
- Gradle failing to download distribution behind company proxy
- Setting up SOCKS5 proxy on browser for using on other apps
- Webpage does not load while intercepting with Burp
- How to configure proxy with Angular 17 (esbuild/vite)
- Proxy authentication for Azure CLI
- Nginx rules simplification for a proxy