Mastodawn

We have started to document how to configure ZAP against well known vulnerable apps: https://www.zaproxy.org/docs/testapps/ Let @psiinon know if you have any feedback or specific requests

ZAP – ZAP Vs Test Apps

The world’s most widely used web app scanner. Free and open source. ZAP is a community project actively maintained by a dedicated international team, and a GitHub Top 1000 project.

ZAP May 15

Is My App Security Testable?
https://www.zaproxy.org/docs/getting-further/is-my-app-testable/
#zaproxy #appsec

ZAP – Is My App Security Testable?

The world’s most widely used web app scanner. Free and open source. ZAP is a community project actively maintained by a dedicated international team, and a GitHub Top 1000 project.

ZAP May 6

Heres what the ZAP team have been working on during April https://www.zaproxy.org/blog/2025-05-05-zap-updates-april-2025/

ZAP Updates - April 2025

April 2025 updates and ongoing feature development statuses.

ZAP

ZAP Apr 22

ZAP just won an award! Thanks DefectDojo!
https://www.zaproxy.org/blog/2025-04-22-zap-wins-inaugural-defectdojo-award-for-open-source/
#zaproxy #appsec #award

ZAP Wins Inaugural DefectDojo Award for Open-Source Cybersecurity

ZAP was recognised as being one of the best dynamic application security testing (DAST) Tools.

ZAP

ZAP Apr 9

New ZAP blog post c/o Jemimah O https://www.zaproxy.org/blog/2025-04-09-portswigger-labs-broken-brute-force-protection-ip-block/
#zaproxy #appsec

PortSwigger Labs: Broken Brute-Force Protection, IP Block

Walkthrough for the PortSwigger lab, “Broken brute-force protection, IP block”.

ZAP

ZAP Apr 2

The monthly ZAP Update Blog Post: https://www.zaproxy.org/blog/2025-04-02-zap-updates-march-2025/
#zaproxy #appsec

ZAP Updates - March 2025

We released 2.16.1 and made more authentication handling improvements.

ZAP

ZAP Mar 25

ZAP by Checkmarx 2.16.1 has just been released. This is a bug fix release, along with some minor enhancements.
See https://www.zaproxy.org/blog/2025-03-25-zap-2-16-1/