https://github.com/TypeError/reflect

OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently
https://github.com/TypeError/reflect

owasp owasp-zap zaproxy

Last synced: 19 days ago
JSON representation

OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently

• Host: GitHub
• URL: https://github.com/TypeError/reflect
• Owner: TypeError
• License: apache-2.0
• Created: 2020-02-15T10:20:04.000Z (over 5 years ago)
• Default Branch: master
• Last Pushed: 2021-02-19T10:48:59.000Z (over 4 years ago)
• Last Synced: 2025-04-25T00:03:31.653Z (about 1 month ago)
• Topics: owasp, owasp-zap, zaproxy
• Language: Kotlin
• Homepage:
• Size: 366 KB
• Stars: 12
• Watchers: 2
• Forks: 2
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

• WebHackersWeapons - reflect

README

        
# Reflect

An [OWASP Zed Attack Proxy (ZAP)](https://www.zaproxy.org) add-on to help find reflected parameter vulnerabilities.

#### Features:

* Inspect in scope urls for reflected parameters

* Save requests/responses to table

![Reflect](/images/reflect.png)

## Install the Reflect add-on

### Download or build the extension

#### Option 1: Download release

You can find the latest release (ZAP file) [here](https://github.com/TypeError/reflect/releases). 

#### Option 2: Build the extension

```sh

gradle build

```

Add-on ZAP file will be located at: `./build/zapAddOn/bin`

### Load the extension

1. Open OWASP ZAP

2. File

3. Load Add-on file

4. Select reflect `.zap` file