ZAPping Web Application Vulnerabilities
Vulnerability assessment is a great addition to development lifecycles. Vulnerabilities found early are easier and cheaper to fix plus prevent that issue from reaching production applications. OWASP ZAP is a low-cost web application vulnerability scanner that identifies low-hanging fruit. OWASP ZAP does not charge a fee to use the tool, so it is a nice scanner to get started with dynamic vulnerability assessment.
It helps to have guildance to get over the learning curve. We created the following playlist to walk through the process. (Note: The PlayList opens on YouTube.)
Enjoy, and when you are ready for your security penetration test, Contact Us!