OWASP® Zed Attack Proxy (ZAP)

The world’s most widely used web app scanner. Free and open source. Actively maintained by a dedicated international team of volunteers. A GitHub Top 1000 project.

Quick Start Guide Download Now

Intro to ZAP

If you are new to security testing, then ZAP has you very much in mind. Check out our ZAP in Ten video series to learn more!

Automate with ZAP

ZAP provides range of options for security automation. Check out the automation docs to start automating!

ZAP Marketplace

ZAP marketplace contains add-ons that have been contributed by the community. Check out how you can extend ZAP with the add-ons!

We want to hear from you! If you use ZAP please fill in this 1 page ZAP Usage Questionnaire

A big thank you to our Platinum Sponsor(s):

For details of other ZAP sponsors see the Supporters page.