|
|
(27 intermediate revisions by 2 users not shown) |
Line 1: |
Line 1: |
− | '''Upcoming Talks:''' | + | '''Upcoming Talks/Training:''' |
| | | |
− | '''2014 Feb 23: SCALE 12x Los Angeles [http://www.socallinuxexpo.org/scale12x/presentations/zapping-your-applications Aaron Guzman: ZAPping your applications]'''
| + | For details of upcoming ZAP related talks or training please see the latest [https://github.com/zaproxy/zaproxy/wiki/Newsletters ZAP Newsletter] |
− | | |
− | The OWASP Zed Attack Proxy (ZAP) is an easy to use integrated testing tool for finding vulnerabilities and bugs in web applications.
| |
− | | |
− | ZAP is a flagship OWASP project with an active community behind it. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually.
| |
− | | |
− | It is designed to be used by people with a wide range of experience in developing, security penetration testing and functional testing.
| |
− | | |
− | As such, this presentation will be covering basic to intermediate testing on web applications, use cases, basic scripting, zest scripting, and integration automation for software development lifecycle.
| |
− | | |
− | | |
− | '''2014 May 13-16: CF.Objective() Bloomington, MN [http://www.cfobjective.com/sessions/using-owasp-zap-to-find-vulnerabilities-in-your-web-apps/ Dave Epler: Using OWASP ZAP to find vulnerabilities in your web apps]'''
| |
− | | |
− | Target Audience: Developers
| |
− | | |
− | Assumed Knowledge: Basic knowledge of OWASP Top Ten
| |
− | | |
− | Objective: To learn how to use OWASP ZAP to test your web application for vulnerabilities
| |
− | | |
− | * What is OWASP ZAP
| |
− | * Why use ZAP
| |
− | * Testing for vulnerabilties with ZAP
| |
− | * Automated Testing
| |
− | * Directed Testing
| |
− | * Integrating ZAP with other tools
| |
Latest revision as of 01:55, 14 November 2017
Upcoming Talks/Training:
For details of upcoming ZAP related talks or training please see the latest ZAP Newsletter