Zed Attack ProxySubmitted by psiinon on Wed, 09/08/2010 - 07:01 |
Hi,
I've just released the Zed Attack Proxy (ZAP): http://code.google.com/p/zaproxy/
Its a fork of Paros, and is explicitly aimed at people with little or no pen test experience.
I've added a load of help pages, and new functionality detailed here: http://code.google.com/p/zaproxy/wiki/HelpReleases1_0_0
Be great if you would consider it for the OWASP Live CD.
Many thanks,
Psiinon
OWASP ZAP
ZAP has now been accepted as an OWASP project, and its new home page is here: http://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project
Psiinon
Great news!
psiinon,
Thanks for sharing with us!
Matt and I are working toward a stable release of the current live CD, and if it isn't too late, I'll see about getting this on there.
ZAP 1.1.0
Hi there,
I've emailed this to Matt directly as well, but just to let you know that ZAP 1.1.0 is now available.
This release adds the following main features:
OWASP rebranding
Brute Force scanner c/o the OWASP DirBuster project
Port scanner
Active Scan tab
Enhancements to the Spider tab
Smartcard support c/o Andiparos
A new 'Attack' menu
More internationalization (all main tabs and menu items)
Localization: Brazilian Portuguese, German, Polish and Spanish
Many thanks,
Psiinon
ZAP 1.2.0
Hi,
ZAP 1.2.0 is now available (http://code.google.com/p/zaproxy/downloads/list)
Significant changes:
* Memory leaks have been fixed in the active scanner and spider.
* External applications can now be invoked from the Sites and History tabs.
* The passive scanner now looks for vulnerabilities
More details here: http://code.google.com/p/zaproxy/wiki/HelpReleases1_2_0
Thanks,
Psiinon