OWASP AppSecUSA 2011: Introducing the OWASP Zed Attack Proxy скачать в хорошем качестве

OWASP AppSecUSA 2011: Introducing the OWASP Zed Attack Proxy

Speaker: Simon Bennetts The OWASP Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing as well as experienced pentesters. A fork of the well regarded Paros Proxy, it was released in September 2010, has been downloaded over 10,000 times and has now been identified by the OWASP Global Projects Committee as a flagship OWASP project. It has comprehensive help pages, is fully internationalized and has been translated into 10 languages. ZAP's functionality includes: Intercepting Proxy Active scanner Passive scanner Spider Brute Force scanner (using DirBuster code) Fuzzer (using JBroFuzz code) Port Scanner Dynamic SSL certificates REST API Beanshell integration This talk will cover: What ZAP is Why it was created What you can do with it Where its going For more information visit: http://bit.ly/OWASP_AppSec11_information To download the video visit: http://bit.ly/OWASP_videos Playlist OWASP AppSec USA 2011: http://bit.ly/OWASP_AppSec11_playlist