OWASP® Zed Attack Proxy (ZAP)

The world’s most widely used web app scanner. Free and open source. Actively maintained by a dedicated international team of volunteers. A GitHub Top 1000 project.

Quick Start Guide Download Now
We want to hear from you! If you use ZAP please fill in this 1 page ZAP Usage Questionnaire
A big thank you to our Platinum Sponsor(s):
For details of other ZAP sponsors see the Supporters page.