DEV Community

GaMa
GaMa

Posted on

Self-Signed Certificate with HSTS Site and ZAP with Chrome

#owasp #zap #hsts #owaspzap

If you happen to have problems with OWASP ZAP using Chrome and visiting a site that supports HSTS in Windows? Just follow theses steps:

  1. Enable unsafe renegotiation in ZAP

  2. Install Java Cryptography Extension (JCE) for your Java version. Here is the link for Java 8

    • Download and unzip the file.
    • Extract jce\local_policy.jar and jce\US_export_policy.jar from the archive to the folder %JAVA_HOME%\jre\lib\security, overwriting the files already present in the directory.

  3. Disable security in Chrome options.

    • Go to chrome://settings
    • Click on Protect you and your device from dangerous sites to disable it.

Top comments (0)

Read next

tspannhw profile image

AIM Weekly for 04Nov2024

Timothy Spann. πŸ‡ΊπŸ‡¦ -

ravikishan profile image

Building a Regex Engine in Go: Introducing MatchGo

Ravi Kishan -

fazly_fathhy profile image

Why AWS CodeCommit

Fazly Fathhy -

ishmam_jahan_4269b6f13ba5 profile image

Total Quality Management Framework with AI: Revolutionizing Business Excellence

Ishmam Jahan -