OWASP Zed Attack Proxy (ZAP)- Using on your home network

OWASP -The Open Web Application Security Project is an online community which creates freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security. (Wikipedia)

If you have wanted to learn how to test your network and the devices, you can begin with OWASP Zed Attack Proxy (ZAP).  Remember, when you get ready to attack, you must own the network and the devices on the network.

You can download OWASP Zed Attack Proxy from the link above.

Once you install the program, you may want to make exceptions in your anti-virus or anti-malware software. Plug-ins may be detected as viruses, however, this is common with security software.

no-worriesno-worries-2no-worries-3

Once you have installed OWASP Zed Active Proxy, you may want to update and add some components.  If you are new at scanning and testing security, be sure to look at the tutorials and OWASP videos below.  Again, make sure you own the network and devices on the network.

update

updating

You now need targets.  Start with things such as your router or other devices on your network.  A good way to find them is to use Netscan or Softperfect’s Wi-Fi Guard.

Here’s a basic list of some of the devices on my home network.

softperfect

  • Open OWASP Zed Attack Proxy (basic scan)
  • Enter the IP address to attack
  • Click on Attack

a-scan-history

  • Attacks are entered into the URL box in the right pane (above)

b-scan-alerts

  • View the alert information by selecting the tab (above)

c-scan-spider

  • Look at spider information by selecting the appropriate tab. (above)
  • You can view the history of an attack. (below)

d-scan-active-scan

  • Below- You can right click and open links with a browser (dozens of more features)

z-after-scans

  • Go to Reports and Export as HTML – This will give you links and information on the vulnerabilities of the device. (below)

report

Basics and other videos (found in the links below)

Other information-:

About TCAT Shelbyville IT Department

The Tennessee College of Applied Technology - is one of 46 institutions in the Tennessee Board of Regents System, the seventh largest system of higher education in the nation. This system comprises six universities, fourteen community colleges, and twenty-six Applied Technology Colleges.
This entry was posted in Computer Security, computer troubleshooting, Computers, Education, Free Software, Hacking, higher ed, higher education, Information Technology, internet security;, IoT, Microsoft Windows, Microsoft Windows 10, Networking, Technology, Windows 10 Quick Tips, Windows 7, Windows 8, Windows 8.1, Windows Security, Windows Server, Wireless and tagged , , , , , , , . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s