OWASP ZAP

License: Freeware
Platform: Windows
Publisher: <a href="https://www.owasp.org/index.php/Scrubbr" rel="nofollow noopener" target="_blank">Arshan Dabirsiaghi
File size: 93.80 Mb

2.9.0

Download 1 Screenshot No Video

OWASP ZAP: A feature-rich and robust penetration testing program that can spot the vulnerabilities of your web applications

OWASP ZAP is a powerful tool that lets you test your web applications for vulnerabilities. It includes a large number of components which let you analyze the security risks of vulnerabilities detected in your online application.

To test a web application you’ll have to enter its URL and press the Attack button. This will start the test operation and offer initial results almost instantly. You’ll be able to see all recovered information in a lower panel, sorted in multiple tabs.

You can see all vulnerabilities detected by OWASP ZAP in the Alerts section – information provided for each vulnerability includes its name, URL, reliability, risk level and parameter among others. Also, the program will offer a possible solution to assist you in the removal of the discovered vulnerabilities.

OWASP ZAP packs a few more components such as the Spider and the Fuzzer, of which the latter allows you to send invalid data to a specific target.