07 October 2010 | 15,677 views

OWASP ZAP – Zed Attack Proxy – Web Application Penetration Testing

Check Your Web Security with Acunetix

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who a new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually.

Features

  • Intercepting proxy
  • Automated scanner
  • Passive scanner
  • Spider

Next Release

The next release of OWASP ZAP, planned for later this year, is expected to include:

  • OWASP rebranding
  • Improvements to the passive and active automated scanners
  • Improvements the Spider
  • The addition a basic port scanner
  • The ability to brute force files and directories (using components from DirBuster)

ZAP is actually a fork from Paros Proxy.

You can download ZAP v1.0 here:

Cross Platform – ZAP_1.0.0b_installation.tar.gz
Windows Installer – ZAP_1.0.0_installer.exe

Or read more here.



Recent in Hacking Tools:
- ParanoiDF – PDF Analysis & Password Cracking Tool
- XSSYA – Cross Site Scripting (XSS) Scanner Tool
- clipcaptcha – CAPTCHA Service Impersonation Tool

Related Posts:
- Zed Attack Proxy – ZAProxy v1.3.0 Released – Integrated Penetration Testing Tool
- OWASP (Open Web Application Security Project) Testing Guide v3 Released
- OWASP Bricks – Modular Deliberately Vulnerable Web Application

Most Read in Hacking Tools:
- Top 15 Security/Hacking Tools & Utilities - 1,861,184 views
- Brutus Password Cracker – Download brutus-aet2.zip AET2 - 1,048,775 views
- wwwhack 1.9 – Download wwwhack19.zip Web Hacking Tool - 621,205 views

Low-cost VPS Hosting

Comments are closed.