Last Posted Monday April 3, 2023
March 2023 updates and ongoing feature development statuses.
Last Posted Tuesday September 13, 2022
An overview of ZAP Extender scripts with examples. Use ZAP as a web server, subscribe to internal ZAP events, and more!
Last Posted Tuesday December 14, 2021
A walkthrough of using the new Log4Shell Alpha Active Scan rule with the ZAP Automation Framework.
Last Posted Monday August 23, 2021
An overview of the features of the OAST add-on for OWASP ZAP. This add-on allows you to discover out-of-band vulnerabilities like SSRF.
Last Posted Friday August 28, 2020
GraphQL Schemas can be very large and testing them can be a very time-consuming process. Currently, there is a lack of tools that allow developers to launch and automate attacks on these endpoints. The GraphQL add-on for ZAP intends to fill this gap.
The add-on is still in an early stage, so the range of its functionality is limited.