# ubuntu
apt install -y openjdk-11-jre-headless firefox
# centos
yum install -y java-11-openjdk-headless firefoxunpacking to dir /opt
tar xf ZAP_2.11.1_Linux.tar.gz -C /opt/Update add-ons from the ZAP Marketplace
cd /opt/ZAP_2.11.1
./zap.sh -addonupdate -daemonThe default directory that ZAP uses is ~/.ZAP/.
log file ~/.ZAP/zap.log
| options | description | remark |
|---|---|---|
-daemon |
daemon mode, without UI | defalut with UI |
-config |
specified key=value pair | -config api.disablekey=true |
-configfile |
specified properties file | example |
-host |
host used for proxying | default addr 127.0.0.1 |
-port |
port used for proxying | default port 8080 |
mkdir -p /etc/zap
cat > /etc/zap/zap.conf << EOF
api.key=bba1c841d09bcef7c1fba17bbdff80a5
api.addrs.addr.name=.*
api.addrs.addr.regex=true
connection.timeoutInSecs=600
EOFcat > /etc/systemd/system/zap.service << EOF
[Unit]
Description=The OWASP Zed Attack Proxy Scanner
After=network.target networking.service
ConditionKernelCommandLine=!recovery
[Service]
Type=simple
ExecStart=/opt/ZAP_2.11.1/zap.sh -daemon -host 0.0.0.0 -port 80 -configfile /etc/zap/zap.conf
Restart=always
TimeoutStopSec=10
[Install]
WantedBy=multi-user.target
EOF
systemctl daemon-reload
systemctl start zap
systemctl enable zap