Merge pull request #1867 from zapbot/update-site-content

kingthorin · web-flow · commit 8b3efbe27864 · 2025-09-24T08:50:31.000-04:00
Update site content
diff --git a/docs/testapps/altoroj/index.html b/docs/testapps/altoroj/index.html
@@ -216,6 +216,7 @@ <h3 id="crawling">Crawling <a class="header-link" href="#crawling"><svg class="f
 </span></span></code></pre></div>
 <h3 id="scanning">Scanning <a class="header-link" href="#scanning"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h3>
 <p>We are not aware of a definitive list of the vulnerabilities in AltoroJ.</p>
+<p>Not too surprisingly you will need to configure the <a href="/docs/desktop/addons/automation-framework/job-ascan/">activeScan</a> job, and you will probably want to generate a <a href="/docs/desktop/addons/report-generation/automation/">report</a>.</p>
 </main>
   </article>
 </section>
diff --git a/docs/testapps/crapi/index.html b/docs/testapps/crapi/index.html
@@ -283,6 +283,7 @@ <h3 id="scanning">Scanning <a class="header-link" href="#scanning"><svg class="f
 <li>The NoSQL Injection in the coupon validation functionality.</li>
 <li>The SSRF in the contact mechanic functionality.</li>
 </ul>
+<p>Not too surprisingly you will need to configure the <a href="/docs/desktop/addons/automation-framework/job-ascan/">activeScan</a> job, and you will probably want to generate a <a href="/docs/desktop/addons/report-generation/automation/">report</a>.</p>
 </main>
   </article>
 </section>
diff --git a/docs/testapps/ginnjuiceshop/index.html b/docs/testapps/ginnjuiceshop/index.html
@@ -218,6 +218,9 @@ <h3 id="crawling">Crawling <a class="header-link" href="#crawling"><svg class="f
 </span></span></code></pre></div>
 <h3 id="scanning">Scanning <a class="header-link" href="#scanning"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h3>
 <p>Gin &amp; Juice Shop has a well documented set of <a href="https://ginandjuice.shop/vulnerabilities">vulnerabilities</a>.</p>
+<p>Not too surprisingly you will need to configure the <a href="/docs/desktop/addons/automation-framework/job-ascan/">activeScan</a> job, and you will probably want to generate a <a href="/docs/desktop/addons/report-generation/automation/">report</a>.</p>
+<p>Some of the Gin N Juice shop vulnerabilities can only be found using <a href="/blog/2021-08-23-oast-with-owasp-zap/">OAST</a>. You will need to configure ZAP to use OAST as it is disabled by default,
+due to the fact that it will send data to 3rd party services.</p>
 </main>
   </article>
 </section>
diff --git a/docs/testapps/juiceshop/index.html b/docs/testapps/juiceshop/index.html
@@ -246,6 +246,7 @@ <h3 id="crawling">Crawling <a class="header-link" href="#crawling"><svg class="f
 <h3 id="scanning">Scanning <a class="header-link" href="#scanning"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h3>
 <p>Although Juice Shop has lots of vulnerabilities, many of them can be very challenging for a DAST tool to identify.</p>
 <p>The only significant vulnerability that we are aware of which ZAP should be able to identify but cannot is the DOM XSS vulnerability in the Search box.</p>
+<p>Not too surprisingly you will need to configure the <a href="/docs/desktop/addons/automation-framework/job-ascan/">activeScan</a> job, and you will probably want to generate a <a href="/docs/desktop/addons/report-generation/automation/">report</a>.</p>
 </main>
   </article>
 </section>
diff --git a/search/index.json b/search/index.json
