OWASP Zap Other Advice

Vijayanathan Naganathan
Director - Head of Delivery Services at Ticking Minds Technology Solutions Pvt Ltd
When people are trying to make use of OWASP Zap, I would advise first read through and understand the OWASP vulnerabilities very well. Then start looking at features, tutorials of the OWASP ZAP Proxy that are made available online. There are a lot of YouTube videos, articles in the internet that talk about how to use the tools. These are quite easy to understand. Do a small POC. Pick an application which is already having vulnerabilities and assess the application around with the ZAP Proxy tool. In terms of ZAP Proxy tool ease of use, I would rate it nine out of ten. View full review »
Vidar Folden
Consultant at Moller
I would advise someone considering this solution to try and read about it on internet forums and see if it fits your needs. I would rate this solution an eight out of ten. It does what it says it will do and it's not hard to set up. It is also easy to use both automatically and manually and has a plug-in into every major build-tool, like Jenkins , Gitlab and others. You can automate it through a building process. View full review »
GustavoGonzalez
Program Manager at a manufacturing company with 1,001-5,000 employees
This is a very mature tool. It is capable of facilitating the work of many security experts. I highly recommend it for beginners and advanced users when some other tools fail to catch traffic. View full review »
Find out what your peers are saying about OWASP , PortSwigger, Acunetix and others in Application Security Testing (AST). Updated: September 2019.
366,486 professionals have used our research since 2012.
Anish Mishra
Team Lead at a tech services company with 51-200 employees
I would rate it an eight out of 10, based on the usability and variety of features provided. It is highly customizable in terms of usability and reporting, and all of this is available in a free solution. View full review »
Vinod_Gupta
CEO and Founder at Indicrypt Systems
I would recommend that you should go through the documentation really well. That's it. I would rate this product 8 out of 10. View full review »
Associa299191
Security Testing Engineer at a tech services company with 1,001-5,000 employees
The community edition updates services regularly. They add new vulnerabilities into the scanning list. View full review »
Manager677
Senior Manager at a marketing services firm with 10,001+ employees
I would rate this solution as 7 out of 10, as I am still in the process of exploring. So far I think it's fine, but I think I still need to explore it a bit further and try to do a more comparative analysis. View full review »
OwaspZ677
Senior Engineer at a aerospace/defense firm with 10,001+ employees
I will rate this product a seven out of ten, because I think the visibility needs to be improved, and the support person needs to do a better job. What's more, additional features, like domain support or different authentication support also needs to be improved. View full review »
Krystian Przybyl
User
It is a very good product. Though, the port scanner is a little too slow. View full review »
Find out what your peers are saying about OWASP , PortSwigger, Acunetix and others in Application Security Testing (AST). Updated: September 2019.
366,486 professionals have used our research since 2012.
Sign Up with Email