Postman unable sending to OWASP ZAP with the same proxy configuration
I'm trying to do vulnerability scanning API. but when I send the Postman with post method, it don't get detect by OWASP ZAP or don't get send to OWASP ZAP.
I try to use IP 127.0.0.1 but OWASP ZAP don't allow it. Are there any tips to solve the issue?
Solution
If something else is using port 8080 then ZAP wont be able to use it. Just choose a different port for ZAP, e.g. 8090.
- Does my code prevent directory traversal?
- How to securely store access token and secret in Android?
- Where to save a JWT in a browser-based application and how to use it
- What's the difference between retrieving WindowsPrincipal from WindowsIdentity and Thread.CurrentPrincipal?
- Can't find class org.bouncycastle.cms.CMSSignedData
- Safety of leaking memory
- Security Warning when running scripts - Unblock-File not unblocking file
- Why do people put code like "throw 1; <dont be evil>" and "for(;;);" in front of json responses?
- Secure method to download files in Ruby
- Amazon Web Services : Setting S3 policy to allow putObject and getObject but deny listBucket
- Escaping strings for use in XML
- Limiting the scopes of an OAuth 2.0 flow
- How can I tell password managers what pattern to use?
- Protecting against MitM (https) seeing password with encryption using included pub. key in iOS/Android app
- Why are iframes considered dangerous and a security risk?
- Vulnerabilities in spring-webmvc-5.3.39 to 5.3.40
- Limit GraphQL Queries by Breadth
- Securing a UDP connection
- Cross Domain Form POSTing
- How is PHP's mt_rand seeded?
- Customize android app preview when it is in background with secure flag
- Can a client-side login be safe?
- How to store sensitive data in React Native or expo code ? ( with Keychain and Keystore )
- How to validate if a URL is an Okta domain?
- How to make Google Analytics respond to "Do Not Track"
- My Vercel API tokens leaked on GitHub. How do I regenerate them?
- Implementing Custom Expression Handling with Spring Security 6
- What are the security concerns for JSF?
- App attestation failed with Firebase App check in release on Android
- SQL Server returns error "Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'." in Windows application