Saturday, September 4, 2010

ZAP - Zed Attack Proxy v1.0

A web application penetration testing tool designed for developers.

The Zed Attack Proxy (ZAP) is a penetration test tool designed to be used to make web applications more secure.
While ZAP can detect some security issues automatically, it is primarily designed to help you find security vulnerabilities manually.
Unlike some security tools it is designed to be used by people with a wide range of security experience.
As such it is suitable for developers and functional testers who a new to penetration testing.
You will still need to have a good understanding of how web applications work.

Some of ZAP's features:
Intercepting proxy
Automated scanner
Passive scanner

ZAP is a fork of the well regarded Paros Proxy.


No comments: