This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Projects/OWASP Zed Attack Proxy Project/Releases/ZAP 1.1.0/Notes"
(Created page with 'The following changes were made in this release: Significant changes: '''OWASP rebranding''' ZAP has been accepted as an OWASP project. Its homepage is now: http://www.owasp.or…') |
|||
| Line 3: | Line 3: | ||
'''OWASP rebranding''' | '''OWASP rebranding''' | ||
| + | |||
ZAP has been accepted as an OWASP project. | ZAP has been accepted as an OWASP project. | ||
Its homepage is now: http://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project | Its homepage is now: http://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project | ||
'''Brute Force''' | '''Brute Force''' | ||
| + | |||
The ability to brute force files and directories based on code from the OWASP DirBuster? project. | The ability to brute force files and directories based on code from the OWASP DirBuster? project. | ||
The new Brute Force tab shows the files and directories found. | The new Brute Force tab shows the files and directories found. | ||
'''Port Scan''' | '''Port Scan''' | ||
| + | |||
The ability to port scan sites. | The ability to port scan sites. | ||
The new Port Scan tab shows the ports found. | The new Port Scan tab shows the ports found. | ||
'''Active Scan tab''' | '''Active Scan tab''' | ||
| + | |||
The new Active Scan tab shows the requests and responses as a result of actively scanning a site. | The new Active Scan tab shows the requests and responses as a result of actively scanning a site. | ||
'''Spider tab''' | '''Spider tab''' | ||
| + | |||
The Spider tab now allows you to continue using ZAP while spidering a site. | The Spider tab now allows you to continue using ZAP while spidering a site. | ||
You can also pause and resume the spider. | You can also pause and resume the spider. | ||
'''Smartcard support''' | '''Smartcard support''' | ||
| + | |||
Smart card support has been added c/o the Andiparos project. | Smart card support has been added c/o the Andiparos project. | ||
The following smartcard devices are known to work on Windows: | The following smartcard devices are known to work on Windows: | ||
| − | + | * Safeguard | |
| − | + | ** Aladdin eToken | |
| − | + | ** Aladdin eToken Pro | |
| − | + | * Omnikey | |
| − | + | ** Omnikey 3121 | |
| − | + | ** CardMan? 6121 | |
| + | * Gemalto | ||
| + | ** Reflex 20 V2 | ||
| + | ** Swiss Stick | ||
| − | The following smartcard devices are reported to work: Omnikey CardMan | + | The following smartcard devices are reported to work: |
| + | * Omnikey | ||
| + | ** CardMan 4040 | ||
'''Attack menu''' | '''Attack menu''' | ||
| + | |||
The new Sites tab right click 'Attack' menu allows you to start various scans. | The new Sites tab right click 'Attack' menu allows you to start various scans. | ||
'''More internationalisation''' | '''More internationalisation''' | ||
| + | |||
All of the main tabs and menu items have now been internationalised. | All of the main tabs and menu items have now been internationalised. | ||
'''Localisation''' | '''Localisation''' | ||
| + | |||
Support for the following languages are built into this version: | Support for the following languages are built into this version: | ||
| − | + | * English (The default language) | |
| − | + | * Brazilian Portuguese | |
| − | + | * German | |
| − | + | * Polish | |
| − | + | * Spanish | |
'''Language selection''' | '''Language selection''' | ||
| + | |||
On start up you will be prompted to choose the language to use. | On start up you will be prompted to choose the language to use. | ||
New languages are automatically detected by the presence of files with names of the form Messages<locale>.properties in the ZAP directory. | New languages are automatically detected by the presence of files with names of the form Messages<locale>.properties in the ZAP directory. | ||
| Line 54: | Line 69: | ||
'''Disabled 'default file' plugins''' | '''Disabled 'default file' plugins''' | ||
| + | |||
The plugins which detect default files are effectively made redundant by the new brute force scanner. | The plugins which detect default files are effectively made redundant by the new brute force scanner. | ||
These have therefore been disabled. | These have therefore been disabled. | ||
'''Scanner summaries''' | '''Scanner summaries''' | ||
| + | |||
Counts of the number and types of the current scans are now displayed in the footer. | Counts of the number and types of the current scans are now displayed in the footer. | ||
Revision as of 15:05, 4 December 2010
The following changes were made in this release: Significant changes:
OWASP rebranding
ZAP has been accepted as an OWASP project. Its homepage is now: http://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project
Brute Force
The ability to brute force files and directories based on code from the OWASP DirBuster? project. The new Brute Force tab shows the files and directories found.
Port Scan
The ability to port scan sites. The new Port Scan tab shows the ports found.
Active Scan tab
The new Active Scan tab shows the requests and responses as a result of actively scanning a site.
Spider tab
The Spider tab now allows you to continue using ZAP while spidering a site. You can also pause and resume the spider.
Smartcard support
Smart card support has been added c/o the Andiparos project. The following smartcard devices are known to work on Windows:
- Safeguard
- Aladdin eToken
- Aladdin eToken Pro
- Omnikey
- Omnikey 3121
- CardMan? 6121
- Gemalto
- Reflex 20 V2
- Swiss Stick
The following smartcard devices are reported to work:
- Omnikey
- CardMan 4040
Attack menu
The new Sites tab right click 'Attack' menu allows you to start various scans.
More internationalisation
All of the main tabs and menu items have now been internationalised.
Localisation
Support for the following languages are built into this version:
- English (The default language)
- Brazilian Portuguese
- German
- Polish
- Spanish
Language selection
On start up you will be prompted to choose the language to use. New languages are automatically detected by the presence of files with names of the form Messages<locale>.properties in the ZAP directory.
Minor changes:
Disabled 'default file' plugins
The plugins which detect default files are effectively made redundant by the new brute force scanner. These have therefore been disabled.
Scanner summaries
Counts of the number and types of the current scans are now displayed in the footer.
