Simon Bennetts ⚡

@[email protected]
896 Followers
170 Following
332 Posts
ZAP Project Lead
Twitterhttps://twitter.com/psiinon
Homepagehttps://www.zaproxy.org/docs/team/psiinon/
Githubhttps://github.com/psiinon/
Twitter Verificationhttps://twittodon.com/share.php?t=psiinon&[email protected]
Simon Bennetts ⚡2d ago
ZAP2d ago
New ZAP Blog Post: Introducing DeepViolet: The Engine Behind ZAP’s New TLS Analysis
https://www.zaproxy.org/blog/2026-03-19-introducing-deepviolet/
Thanks to Milton Smith
#zaproxy #deepviolet #appsec
Introducing DeepViolet

Introducing DeepViolet: The Engine Behind ZAP’s New TLS Analysis

ZAP
Simon Bennetts ⚡Feb 25
ZAPFeb 25
Do you need even more control over the browsers that you can launch from ZAP?
You’ve got it!
https://www.zaproxy.org/blog/2026-02-24-custom-browsers-and-preferences/
#zaproxy #appsec
Custom Browsers and Preferences

You can now add custom browsers to ZAP and manage any browser preferences.

ZAP
Show threadSimon Bennetts ⚡Feb 17
@zersiax @zaproxy Count me in!
Simon Bennetts ⚡Feb 17
ZAPFeb 17
Combine the Encode/Decode/Hash add-on with CyberChef operations in ZAP Encode/Decode Scripts for flexible encoding, decoding, and hashing in your testing workflow.
https://www.zaproxy.org/blog/2026-02-17-encoder-cyberchef-via-scripts/
#zaproxy #appsec #cyberchef
Using ZAP's Encode/Decode/Hash Add-on with CyberChef via Encode/Decode Scripts

Combine the Encode/Decode/Hash add-on with CyberChef operations in ZAP Encode/Decode Scripts for flexible encoding, decoding, and hashing in your testing workflow.

ZAP
Simon Bennetts ⚡Feb 6
ZAPFeb 6
New Blog Post: Detecting Circular Type References in GraphQL Schemas
https://www.zaproxy.org/blog/2026-02-06-detecting-graphql-cycles/
#zaproxy #appsec #graphql
Detecting Circular Type References in GraphQL Schemas

ZAP can now detect cycles in GraphQL schemas that could lead to denial of service attacks.

ZAP
Simon Bennetts ⚡Feb 2
ZAPFeb 2
New blog post: https://www.zaproxy.org/blog/2026-02-02-zap-updates-2025-highlights-2026-plans/
Highlights of 2025 and our initial plans for 2026, including more 3rd Party tool integrations, enhanced exploring and, yes, AI integration!
#zaproxy #appsec #ai
ZAP Updates - 2025 Highlights and Plans for 2026

Highlights of 2025 and our initial plans for 2026, including more 3rd Party tool integrations, enhanced exploring and, yes, AI integration!

ZAP
Show threadSimon Bennetts ⚡Feb 2
@zersiax @zaproxy Its not one or the other 😉
Show threadSimon Bennetts ⚡Feb 2
@mensrea @zaproxy There are actually some very good usecases, but yes, it will always be optional and opt-in.
Simon Bennetts ⚡Feb 2
We have made a good start on #AI integration in @zaproxy
We know some of you will be very anti-AI, so this will be optional and opt-in.
We have lots of plans, but feedback also appreciated - what integrations would you really like to see .. or not see?
Simon Bennetts ⚡Jan 19
ZAPJan 19
https://www.zaproxy.org/blog/2026-01-19-owasp-ptk-add-on/
#zaproxy #owasp #appsec
OWASP PTK Integration with ZAP

OWASP PTK is now pre-installed in the browsers launched by ZAP (Chrome, Edge and Firefox). This post shows how to run PTK’s DAST, IAST, SAST, and SCA inside the same authenticated session you’re testing, plus practical JWT and cookie workflows—while ZAP remains your traffic and context hub.

ZAP