Docker Community Forums

Share and learn in the Docker community.

OWASP docker scan after login in web

I want to scan my website with docker but can only scan with login page, how can i login and scan in website with email and password?

I tried like below but still not working

docker run --rm -v $(pwd):/zap/wrk/:rw --net zapnet -t ictu/zap2docker-weekly zap-full-scan.py -I -j -m 10 -T 60 -t http://172.22.0.2:8080/WebGoat
–hook=/zap/auth_hook.py -r 20210417-ictuzap-full-scan.html -z “auth.loginurl=http://172.22.0.2:8080/WebGoat/login
auth.username=“mydeveloperplanet”
auth.password=“password” auth.auto=1”