Simon Bennetts, a recognized engineer at Jit, goes over among the flagship jobs of OWASP: the Zed Attack Proxy (ZAP) open source security screening tool. As ZAP’s main maintainer, Simon traces the tool’s origins and shares some anecdotes with SE Radio host Priyanka Raghavan on why there was a requirement for it. They take a deep dive into ZAP’s functions and its capability to incorporate with CI/CD, along with shift security left. Bennetts likewise considers what it requires to construct an effective open source task prior to hanging out on ZAP’s capability to script to offer richer outcomes. Lastly, the discussion ends with some concerns on ZAP’s future in this AI-powered world of bots.
Associated links
SE Radio episodes
Referrals
Podcast: Play in brand-new window| Download
Subscribe: Apple Podcasts|
Tags: Application Security, DAST, screening