OWASP Zed Attack Proxy

The OWASP Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in webapp

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.

It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing.

ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually.

Project Leader of OWASP_ZAP : Simon Bennetts

Intended Audience: Students, Professionals, Testers

OWASP Zed Attack Proxy - Overview
ZAP 2.4.0 introduction
ZAP Initial Setup Guide
Security Testing in Development and QA
A1: Injection
Running a Web Security Testing Program with OWASP ZAP and ThreadFix
ZAP Tutorial - Authentication, Session and Users Management titled Lesson
ZAP Tutorial - Ajax Spidering authenticated websites

What's included

  • 8 Video Lessons

  • Works on all devices
  • Certificate of completion

John Patrick Lita

Instructor