application-security
OWASP ZAP
OWASP Zed Attack Proxy
Definition
OWASP ZAP is an open-source web application security scanner maintained by the OWASP Foundation. It functions as an intercepting proxy and automated scanner capable of detecting a wide range of vulnerabilities including XSS, SQL injection, and security misconfigurations.
ZAP's REST API and Docker integration make it suitable for automated security testing in CI/CD pipelines as part of a DAST strategy.
Ship secure code faster
Crash Override integrates security into the developer workflow. No context switching, no waiting on reviews.