align-toparrow-leftarrow-rightbackbellblockcalendarcamerachatcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-crosscrosseditfacebookglobegoogleimagesinstagramlocation-pinmagnifying-glassmailmoremuplabelShape 3 + Rectangle 1outlookpersonplusImported LayersImported LayersImported Layersshieldstartwitteryahoo

Using OWASP ZAP to find vulnerabilities in your web apps

Do you dread when the web application you are working on has to go to security for a scan, only to get a massive report from Web Inspect or App Scan? Or worse, the web application is never scanned for vulnerabilities and just put into production? In this session, David takes you through OWASP Zed Attack Proxy (ZAP), an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. Showing you how to get ZAP installed, test your web application, and have more confidence that you won't have a massive report from security or hackers pwn your web application first.

• What is OWASP ZAP

• Why use ZAP

• Testing for vulnerabilities with ZAP

• Automated Testing

• Directed Testing

• Integrating ZAP with other tools

• mod_security, sqlmap, nikto

We will be using Kali 1.0.6 as the attack VM and OWASP Broken Web Apps 1.1.1 as the target VM.

Join or login to comment.

  • Amine R.

    I had a last moment predicament which prevented me from coming. Was there a deck that is available for sharing ?

    Thanks !

    1 · March 19, 2014

  • Kelly B.

    1 · March 16, 2014

    • Tara

      My 1st remote. We need password

      March 19, 2014

    • Kelly B.

      You can just login as guest to the connect session

      March 19, 2014

  • Omar

    I will be attending online.

    March 19, 2014

  • Lisa

    I'll also be attending remotely. Thanks, Kelly!

    March 19, 2014

  • Spencer J.

    I will be attending online

    March 19, 2014

  • Anisha

    I will attend online

    March 18, 2014

  • Derrik O.

    Will attend online

    March 18, 2014

Our Sponsors

  • AboutWeb

    Capital Area Cyber Security User Group

People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy