Hacking Web Applications — Web Spidering using OWASP ZAP
Finding vulnerabilities
May 13, 2021
Launch our Parrot Security OS > MATE Terminal > Type sudo su > Type cd > Type
zaproxyChoose “No, I do not want to persist this session at this moment in time” > Click Start
Enter the website in the text field > Click Attack. Our case study this time is http://mybayar.rmp.gov.my.
Spider
The URLs tab contains various links for hidden content and functionality associated with the target website
Message
More detailed information regarding the URLs obtained while performing the web spidering.
Alert
List of issues that are found during the scan, broken out into risk categories.
