Install and run:
- for today we will ignore the 'SSL Root CA certificate' warning, so click 'Later'
- Menu: FireFox > Preferences > Advanced > Network
- click 'Settings'
- Manual proxy Configuration: (click on radio button)
- HTTP Proxy: 127.0.0.1
- Port: 8080
- Click OK
With the proxy in place - now all requests you make in the browser go:
So, if you keep the browser open and quit ZAP, the browser wont get a connection.
- Browser -> ZAP -> Internet
To make the proxy switching easier, I downloaded 'Elite Proxy Switcher'
REMEMBER - this will do an INVASIVE scan when you do an 'Active Scan' - meaning it will try to do XSS, CSRF, etc so do NOT do an active scan on anything but your work!