/docs/desktop/addons/network/options/ Recent content in Options on ZAP Hugo en-us /docs/desktop/addons/network/options/clientcertificates/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/desktop/addons/network/options/clientcertificates/ <h1 id="client-certificates">Client Certificates</h1> <p>This screen allows you to add a client certificate to use when testing applications protected using mutual SSL.<br> After adding the certificate it can be set as active in the KeyStore tab.<br> Unlike other options screens, the changes done to the keystore are not undone if the Options dialogue is cancelled.</p> /docs/desktop/addons/network/options/connection/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/desktop/addons/network/options/connection/ <h1 id="connection">Connection</h1> <h2 id="general">General <a class="header-link" href="#general"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h2> <p>This tab allows you to configure the general connection options.</p> <h3 id="timeout-in-seconds">Timeout (in seconds) <a class="header-link" href="#timeout-in-seconds"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h3> <p>Allows to configure the connection and read timeout, a higher timeout allows to test slower applications.<br> Default: <code>20</code>.</p> /docs/desktop/addons/network/options/globalexclusions/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/desktop/addons/network/options/globalexclusions/ <h1 id="global-exclusions">Global Exclusions</h1> <p>The URLs/domains that should be ignored by the local proxies and scanners/tools. The <code>Value</code> is a regular expression matched against the requested target.</p> <h2 id="see-also">See also <a class="header-link" href="#see-also"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h2> <table> <thead> <tr> <th></th> <th></th> <th></th> </tr> </thead> <tbody> <tr> <td></td> <td><a href="/docs/desktop/addons/network/">Network</a></td> <td>the introduction to Network add-on</td> </tr> </tbody> </table> /docs/desktop/addons/network/options/localservers/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/desktop/addons/network/options/localservers/ <h1 id="local-serversproxies">Local Servers/Proxies</h1> <h2 id="local-serversproxies-1">Local Servers/Proxies <a class="header-link" href="#local-serversproxies-1"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h2> <p>This tab allows you to configure the addresses and ports on which ZAP accepts incoming connections.</p> <h3 id="main-proxy">Main Proxy <a class="header-link" href="#main-proxy"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h3> <p>By default ZAP will listen on one local address and port, and usually these should be the address and port that you must configure your browser to use as a proxy.</p> /docs/desktop/addons/network/options/ratelimit/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/desktop/addons/network/options/ratelimit/ <h1 id="rate-limit">Rate Limit</h1> <h2 id="rate-limit-1">Rate Limit <a class="header-link" href="#rate-limit-1"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h2> <p>The Rate Limit feature limits the request rate of HTTP/HTTPS (not web sockets) traffic to hosts or domains to prevent overloading the target or being blocked. The limit is applied using a matcher against the request host to pick an individual host, an entire domain, or anything between. In the case a host matches multiple rules, the rule with the most restrictive rate is used.</p> /docs/desktop/addons/network/options/servercertificates/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/desktop/addons/network/options/servercertificates/ <h1 id="server-certificates">Server Certificates</h1> <p>This screens allows to manage and configure the root CA certificate and issued certificates.</p> <p>ZAP allows you to transparently decrypt SSL connections. For doing so, ZAP has to encrypt each request before sending to the server and decrypt each response, which comes back. But, this is already done by the browser. That&rsquo;s why, the only way to decrypt or intercept the transmission, is to do a &lsquo;manipulator in the middle&rsquo; approach.</p>