Join the WWHF Community
00:00 – PreShow Banter™ — Developers and Infosec Living Together
10:47 – PreShow Banter™ — Do you Know Why Its Called ZED?
13:21 – FEATURE Automating OWASP ZAP
19:11 – Configuration
27:59 – Command Line Quick Scan
40:30 – Webswing
46:17 – package scans
47:07 – ZAP API
50:37 – Automation Framework
54:11 – Wrap up
Simon Bennetts is the OWASP Zed Attack Proxy (ZAP) Project Leader and a Distinguished Engineer at StackHawk, a company that uses ZAP to help users fix application security bugs before they hit production. He has talked about and demonstrated ZAP at conferences all over the world, including Blackhat, JavaOne, FOSDEM and OWASP AppSec EU, USA & AsiaPac. Prior to making the move into security he was a developer for 25 years and strongly believes that you cannot build secure web applications without knowing how to attack them.