Using OWASP ZAP To Find Vulnerabilities In Your Web Apps

Jul 20, 2017
1:30 PM - 2:30 PM
NPC Ballroom

In this session, David takes you through OWASP Zed Attack Proxy (ZAP), an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. Showing you how to get ZAP installed, test your web application, and have more confidence that you won't have a massive report from security or hackers pwn your web application first.

You will learn:

  • What is OWASP ZAP
  • Why use ZAP
  • Testing for vulnerabilities with ZAP
  • Automated Testing
  • Directed Testing
  • Integrating ZAP with other tools
  • mod_security
  • sqlmap, nikto