View on GitHub

ZAP

The OWASP Zed Attack Proxy

Download this project as a .zip file Download this project as a tar.gz file

OWASP ZAP

The OWASP Zed Attack Proxy (ZAP) is one of the world’s most popular free security tools and is actively maintained by hundreds of international volunteers*. It can help you automatically find security vulnerabilities in your web applications while you are developing and testing your applications. Its also a great tool for experienced pentesters to use for manual security testing.

Please help us to make ZAP even better for you by answering the ZAP User Questionnaire!

For general information about ZAP:

For help using ZAP:

To learn more about ZAP development: