Tag: Guest

Enhancing ZAP with AI for Bug Bounty Hunting

Posted Friday November 28, 2025 975 Words

Building an intelligent security testing system that leverages ZAP’s automation capabilities and machine learning to improve vulnerability detection

Solving Caido Labs

Posted Wednesday October 15, 2025 1972 Words

In this blog we show how to solve Caido labs using ZAP.

PortSwigger Labs: Broken Brute-Force Protection, IP Block

Posted Wednesday April 9, 2025 3989 Words

Walkthrough for the PortSwigger lab, “Broken brute-force protection, IP block”.

Solving Portswigger Lab File Path Traversal Simple Case with ZAP

Posted Thursday February 27, 2025 168 Words

Video and explanation of How to Solve the Portswigger labs using ZAP, in this case: ‘Path Traversal Simple Case’

Use ZAP with Flagger in Kubernetes

Posted Tuesday December 24, 2024 2150 Words

Learn how to integrate ZAP with Flagger in a Kubernetes cluster to scan the security of each new deployment.

Powering Up DAST with ZAP and Noir

Posted Monday November 11, 2024 732 Words

Integrating Noir, a tool for discovering hidden endpoints in source code, with ZAP enhances dynamic application security testing (DAST).

Automated ZAP Scans for Orchard Core Apps

Posted Friday December 8, 2023 542 Words

If you have an app running on the ASP.NET Core web framework and CMS Orchard Core, you can now easily run ZAP scans for it.

Map Local Add-on

Posted Tuesday October 31, 2023 314 Words

Allows mapping of responses to content of chosen local file.

Running ZAP on a raspberry pi

Posted Thursday August 25, 2022 1069 Words

Setting up ZAP on the raspberry pi.

PortSwigger Labs: Username Enumeration with ZAP Scripts

Posted Thursday April 14, 2022 618 Words

How to solve the PortSwigger Lab: Username enumeration via account lock using ZAP scripts.

PortSwigger Labs: 2FA Broken Logic

Posted Wednesday April 6, 2022 369 Words

How to solve the PortSwigger Lab: 2FA Broken Logic using ZAP.

The Eval Villain Add-on

Posted Wednesday December 1, 2021 1560 Words

Eval Villain was recently added to the ZAP Marketplace. This add-on installs the Eval Villain web extension in Firefox and allows the inspection of arguments to arbitrary native JavaScript functions.

Automate checking ASVS controls using ZAP scripts

Posted Wednesday February 10, 2021 1606 Words

Write scripts in ZAP which will check a target application’s compliance against ASVS controls.

ZAP JWT Support Add-on

Posted Thursday September 3, 2020 423 Words

With the popularity of JSON Web Tokens (JWTs) there comes the need to secure their use so that they are not misused because of bad configuration, older libraries, or buggy implementations. So the JWT Support add-on is used to find such vulnerabilities and this blog explains on how to use it.