Cyber Tzar added to the list of OWASP ZAP Third Party Suppliers
Who are OWASP?
The Open Web Application Security Project® (OWASP) is a nonprofit foundation that works to improve the security of software. Through community-led open-source software projects, hundreds of local chapters worldwide, tens of thousands of members, and leading educational and training conferences, the OWASP Foundation is the source for developers and technologists to secure the web.
- Tools and Resources
- Community and Networking
- Education & Training
Corporations, foundations, developers, and volunteers have supported the OWASP Foundation and its work for nearly two decades.
What is OWASP ZAP?
OWASP Zed Attack Proxy (ZAP) is the world’s most widely used web app scanner, free and open source, actively maintained by a dedicated international team of volunteers, and a GitHub Top 1000 project.
ZAP provides Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) for web applications, APIs, and mobile apps (that deliver functionality from server-side infrastructure.
How does Cyber Tzar use OWASP ZAP?
Cyber Tzar uses OWASP ZAP to perform vulnerability scanning, returning the results of the scans.
How does Cyber Tzar enhance and extend OWASP ZAP?
We save results allowing us to view scan history and share that history with our clients. We can track “change over time” across various key metrics.
Our dedicated team of security consultants, drawn from across the industry, regularly asses all vulnerabilities, both new and old, held in our database and classify them in terms of impact and likelihood, allowing us to categorise them into “risk groups”. We calculate our metrics using these assessments, and our insights mean we can make recommendations about our customers’ “remediation pathways”.