ZAP Proxy and OWASP Top 10
Zusammenfassung
The Zed Attack Proxy is a well-known and popular assessment tool in the cybersecurity community. The Open Web Application Security Project community offers, develops, and maintains the Zed Attack Proxy. The Open Web Application Security Project community also publishes the top ten security risks faced by web applications. Paired with the Zed Attack Proxy, The Open Web
Application Security Project’s top 10 security risks publication, serves as a baseline for security professionals assessing the security compliance of web applications. This study aims to evaluate the effectiveness and efficiency of the Open Web
Application Security Project’s Zed Attack Proxy tool against real-world production web applications and vulnerable by design penetration labs web applications. Key Terms ⎯ Open-Source, Penetration Testing, Security Assessment, Web Applications.