OWASP ZAP

Web application security scanner. Find vulnerabilities in your web apps during development and testing.

Visit Website★ GitHub (13K)

About OWASP ZAP

OWASP ZAP (Zed Attack Proxy) is the world's most widely used web app security scanner. It helps you automatically find security vulnerabilities in your web applications while you are developing and testing.

Key Features

Automated vulnerability scanning
Active & passive scanning
Spider/crawler for discovery
Fuzzer for input testing
REST API for CI/CD integration
Marketplace for add-ons

Why choose OWASP ZAP?

OWASP ZAP is an open source alternative to Burp Suite, Acunetix. Licensed under Apache-2.0, it gives you full access to the source code and the freedom to modify, self-host, and contribute. It is available as a desktop or web application.

Quick Info

LicenseApache-2.0
LanguageJava
GitHub Stars★ 13K
Self-HostedNo
Alternative toBurp Suite, Acunetix

Categories

🔒 Security & Auth💻 Developer Tools

Related Projects

TensorFlow✓ Verified★ 188K
End-to-end open source machine learning platform. Build and deploy ML models at scale.
AI & Machine LearningApache-2.0
Alt: PyTorch, JAXC++ / Python
Hugging Face Transformers✓ Verified★ 140K
State-of-the-art NLP and ML models. Thousands of pretrained models for text, vision, and audio.
AI & Machine LearningApache-2.0
Alt: OpenAI API, Google Vertex AIPython
LangChain✓ Verified★ 98K
Framework for building LLM-powered applications. Chains, agents, and retrieval-augmented generation.
AI & Machine LearningMIT
Alt: LlamaIndex, Semantic KernelPython