Hacking Web Applications — Web Spidering using OWASP ZAP

Launch our Parrot Security OS > MATE Terminal > Type sudo su > Type cd > Type


Choose “No, I do not want to persist this session at this moment in time” > Click Start

Enter the website in the text field > Click Attack. Our case study this time is http://mybayar.rmp.gov.my.


The URLs tab contains various links for hidden content and functionality associated with the target website


More detailed information regarding the URLs obtained while performing the web spidering.


List of issues that are found during the scan, broken out into risk categories.




Software engineering and film. All are work-in-progress.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Islander Mainnet: “Grand Admirals” Quest Overview

Evidence Collecting Tools for Fast Forensics

{UPDATE} Mississippi Stud Poker Casino Hack Free Resources Generator

Bordering states: data localization and its relationship to cyber sovereignty in Russia and Estonia

Seclore Launches Data-Centric Security for Microsoft Teams

{UPDATE} Real Car Fast Drive Hack Free Resources Generator

My Cyber Why — Craig Jones, Director Cybercrime, Interpol

{UPDATE} Fate Oath Hack Free Resources Generator

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store


Software engineering and film. All are work-in-progress.

More from Medium

[Hack The Box] Developer — Walkthrough

Cybersecurity and Ethical Hacking

THM Chocolate factory writeup

Dante ProLabs (HackTheBox) Review