Hi security engineers and hackers! Authz0 v1.1.0 has been released π First of all, I would like to thank many of you for your good feedback.
Summary
- Add setCred command
- Add –include-zap flag in new command
- Add –include-har flag in new command
- Add –include-burp flag in new command
- Add –assert-fail-size-margin flag in new command
- Support multiple same assert type
- Improve report
- Fixed bugs
Credentials and setCred
Now, we can add credentials to the template using the setCred
command.
|
|
Once added, can check it on the template like this.
|
|
The added credentials information is used in the scan.
|
|
|
|
include from ZAP and Burp, HAR
Now, we can include ZAP and Burp History, HAR File.
- Add –include-zap flag in new command
- Add –include-har flag in new command
- Add –include-burp flag in new command
|
|
Support multiple same assert
We can now use multiple identical types of assertions. In the example below, we can designate two fail sizes and set the error range through margin.
- –assert-fail-size ints Set fail size assert (support duplicate flag)
- –assert-fail-size-margin int Set approximation range of fail size assert
|
|