Automating Web Pentesting with ZAP null Bangalore Meet 26 August 2017 Combined null/OWASP/G4H meet - August
Abstract
Automating Web Pentesting with ZAP
This is a hands-on demo on using OWASP ZAP for automating web app pentesting
Outline
- Intro to OWASP ZAP
- Quick ZAP GUI tour
- Exploring ZAP API
- Using ZAP Python library
- Automated web app spidering
- Automated API spidering
- Passive scan | Active scan
- Handling authentication
Instructions
- Anyone can follow through the talk and try the demos
- You need a laptop with OWASP ZAP, Python 2.x installed
- Demo scripts will be provided through github
Speaker
Timing
Starts at Saturday August 26 2017, 09:30 AM. The sessions runs for about 1 hour.