The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually.

LicenseApache 2.0
Organization OWASP
HomePage https://www.zaproxy.org/
DateJan 17, 2020
Filesjar (5.1 MB)  View All
RepositoriesCentral
Ranking#81611 in MvnRepository (See Top Artifacts)
Used By4 artifacts
VulnerabilitiesDirect vulnerabilities:
CVE-2022-27820

Vulnerabilities from dependencies:
CVE-2022-42889
CVE-2022-41853
CVE-2022-41852
View 13 more ...

Note: There is a new version for this artifact

New Version2.12.0


Compile Dependencies (25)

Category/License Group / ArtifactVersionUpdates

BSD 3-clause
com.fifesoft » rsyntaxtextarea 3.0.43.3.0
Semantic Versioning
MIT
com.github.zafarkhaja » java-semver 0.9.0
Reflection
Apache 2.0
commons-beanutils » commons-beanutils 1.9.4
Base64
Apache 2.0
commons-codec » commons-codec 1.131.15
Collections
Apache 2.0
commons-collections » commons-collections 3.2.24.4
Config
Apache 2.0
commons-configuration » commons-configuration 1.102.8.0
HTTP Clients
Apache 2.0
commons-httpclient » commons-httpclient 3.14.5.13
I/O
Apache 2.0
commons-io » commons-io1 vulnerability 2.62.11.0
Core Utils
Apache 2.0
commons-lang » commons-lang 2.63.12.0

Apache 2.0
edu.umass.cs.benchlab » harlib 1.1.21.1.3
Java Spec
javax.help » javahelp 2.0.05
Logging
Apache 2.0
log4j » log4j5 vulnerabilities 1.2.172.19.0
HTML Parser
ApacheEPL 1.0LGPL
net.htmlparser.jericho » jericho-html 3.4
JSON Lib
Apache 2.0
net.sf.json-lib » json-lib 2.4
Core Utils
Apache 2.0
org.apache.commons » commons-lang3 3.93.12.0
String Utils
Apache 2.0
org.apache.commons » commons-text1 vulnerability 1.81.10.0
CSV
Apache 2.0
org.apache.commons » commons-csv 1.71.9.0

BouncyCastle
org.bouncycastle » bcmail-jdk15on 1.641.70
Encryption Lib
BouncyCastle
org.bouncycastle » bcprov-jdk15on1 vulnerability 1.641.70
Encryption Lib
BouncyCastle
org.bouncycastle » bcpkix-jdk15on 1.641.70
Embedded SQL DB
org.hsqldb » hsqldb1 vulnerability 2.5.02.7.1
Chart Library
LGPL
org.jfree » jfreechart 1.0.191.5.3

EPL 2.0LGPL 2.1
org.jgrapht » jgrapht-core 0.9.01.5.1

LGPL
org.swinglabs.swingx » swingx-all 1.6.5-1
JDBC Driver
Apache 2.0
org.xerial » sqlite-jdbc 3.28.03.40.0.0

Runtime Dependencies (6)

Licenses

LicenseURL
The Apache License, Version 2.0 http://www.apache.org/licenses/LICENSE-2.0.txt

Developers

NameEmailDev IdRolesOrganization
Everyone who has contributed to ZAPzaproxy-develop<at>googlegroups.comAllZapDevs

Mailing Lists

NameDetails
OWASP ZAP User Group Subscribe
Unsubscribe
OWASP ZAP Developer Group Subscribe
Unsubscribe