Welcome to ZAP API Documentation! The OWASP Zed Attack Proxy (ZAP) is one of the world's most popular free security tools which lets you automatically find security vulnerabilities in your applications. ZAP also has an extremely powerful API that allows you to do nearly everything that possible via the desktop interface. This allows the developers to automate pentesting and security regression testing of the application in the CI/CD pipeline. This repository provides example guides & API definitions for ZAP APIs.
The live documentation can be viewed in the following URL.
Contributing to the Documentation
The guidelines for contribution is available in the following page.
ZAP documentation is built using Slate. The source files for the documentation are available
source/includes directory. View the contribution guide on how to start contributing to the document.
To deploy to https://zaproxy.org/
bundle installif you have not done so before
bundle exec middleman build --clean
- Copy the build directory to your own clone of https://github.com/zaproxy/zaproxy.github.io e.g.
cp -R build/* ../zaproxy.github.io/docs/api/
- Commit and push any changes then open a PR on https://github.com/zaproxy/zaproxy.github.io