The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually.

LicenseApache 2.0
Organization OWASP
HomePage https://www.zaproxy.org/
DateOct 07, 2021
Filespom (8 KB)  jar (5.2 MB)  View All
RepositoriesCentral
Ranking#81561 in MvnRepository (See Top Artifacts)
Used By4 artifacts
VulnerabilitiesDirect vulnerabilities:
CVE-2022-27820

Vulnerabilities from dependencies:
CVE-2022-42889
CVE-2022-41853
CVE-2022-41852
View 12 more ...

Note: There is a new version for this artifact

New Version2.12.0


Compile Dependencies (26)

Category/License Group / ArtifactVersionUpdates

BSD 3-clause
com.fifesoft » rsyntaxtextarea 3.1.33.3.0
Semantic Versioning
MIT
com.github.zafarkhaja » java-semver 0.9.0
Reflection
Apache 2.0
commons-beanutils » commons-beanutils 1.9.4
Base64
Apache 2.0
commons-codec » commons-codec 1.15
Collections
Apache 2.0
commons-collections » commons-collections 3.2.24.4
Config
Apache 2.0
commons-configuration » commons-configuration 1.102.8.0
HTTP Clients
Apache 2.0
commons-httpclient » commons-httpclient 3.14.5.13
I/O
Apache 2.0
commons-io » commons-io 2.11.0
Core Utils
Apache 2.0
commons-lang » commons-lang 2.63.12.0

Apache 2.0
edu.umass.cs.benchlab » harlib 1.1.3
Java Spec
javax.help » javahelp 2.0.05
HTML Parser
ApacheEPL 1.0LGPL
net.htmlparser.jericho » jericho-html 3.4
JSON Lib
Apache 2.0
net.sf.json-lib » json-lib 2.4
Core Utils
Apache 2.0
org.apache.commons » commons-lang3 3.12.0
String Utils
Apache 2.0
org.apache.commons » commons-text1 vulnerability 1.91.10.0
CSV
Apache 2.0
org.apache.commons » commons-csv 1.81.9.0
Logging
Apache 2.0
org.apache.logging.log4j » log4j-api 2.14.12.19.0
Logging Bridge
Apache 2.0
org.apache.logging.log4j » log4j-1.2-api 2.14.12.19.0

BouncyCastle
org.bouncycastle » bcmail-jdk15on 1.681.70
Encryption Lib
BouncyCastle
org.bouncycastle » bcprov-jdk15on 1.681.70
Encryption Lib
BouncyCastle
org.bouncycastle » bcpkix-jdk15on 1.681.70
Embedded SQL DB
org.hsqldb » hsqldb1 vulnerability 2.5.22.7.1
Chart Library
LGPL
org.jfree » jfreechart 1.5.3

EPL 2.0LGPL 2.1
org.jgrapht » jgrapht-core 0.9.01.5.1

LGPL
org.swinglabs.swingx » swingx-all 1.6.5-1
JDBC Driver
Apache 2.0
org.xerial » sqlite-jdbc 3.36.0.13.40.0.0

Licenses

LicenseURL
The Apache License, Version 2.0 http://www.apache.org/licenses/LICENSE-2.0.txt

Developers

NameEmailDev IdRolesOrganization
Everyone who has contributed to ZAPzaproxy-develop<at>googlegroups.comAllZapDevs

Mailing Lists

NameDetails
OWASP ZAP User Group Subscribe
Unsubscribe
OWASP ZAP Developer Group Subscribe
Unsubscribe