(FR] Automate all the ZAPs with Zack and Daniel Wozniak
OWASP ZAP is one of the worlds most popular free and open source web application security tools. It has an extremely powerful scripting interface that provides full access to all of the ZAP code and data structures.
In this workshop we will quickly cover the basics then introduce you to the different types of scripts that can be written for ZAP. We will then explain how you can include scans in your application DLC to assert the presence or absence of basic vulnerabilities such as the lack of control over user input.