Skip to content
The OWASP ZAP core project
Branch: develop
Clone or download
psiinon Merge pull request #5269 from thc202/log-exception-params
Log exception when validating/saving panels
Latest commit 4a5e6dc Mar 20, 2019
Type Name Latest commit message Commit time
Failed to load latest commit information.
.github/ISSUE_TEMPLATE Add labels to issue templates Dec 12, 2018
build Merge pull request #5171 from thc202/rm-build-help-tasks Mar 13, 2019
docker Correct copy task in Docker live image Mar 18, 2019
docs Add to the Websocket Passive scan ID Mar 15, 2019
examples Add example reports for 2.4.3 Jan 29, 2016
lib Fix #4016; Fix #3959; Create the subjectAlternativeName in the issued… Jan 9, 2019
php/api/zapv2 Fix readme headings. Apr 20, 2017
python/scripts Update test_zap.config Dec 22, 2016
snap Upgrade snap to stable Sep 26, 2018
src Merge pull request #5269 from thc202/log-exception-params Mar 20, 2019
testlib Add Java 9 to Travis CI builds Jul 10, 2018
.gitignore Updated .gitignore: Ignores the plugin directory with the extensions Nov 7, 2017
.project Don't require lang dir on the classpath Jul 16, 2018
.travis.yml Added a code of conduct Sep 20, 2018 Tweak PR guidelines for authors in May 22, 2018 Fix #4016; Fix #3959; Create the subjectAlternativeName in the issued… Jan 9, 2019
LICENSE Add badge to README Aug 29, 2018


License GitHub release Build Status CII Best Practices Coverity Scan Build Status Github Releases Javadocs OWASP Flagship Language grade: Java Twitter Follow

The OWASP Zed Attack Proxy (ZAP) is one of the world’s most popular free security tools and is actively maintained by hundreds of international volunteers*. It can help you automatically find security vulnerabilities in your web applications while you are developing and testing your applications. Its also a great tool for experienced pentesters to use for manual security testing.

Please help us to make ZAP even better for you by answering the ZAP User Questionnaire!

For general information about ZAP:

  • Home page - the official ZAP page on the OWASP wiki (includes a donate button;)
  • Twitter - official ZAP announcements (low volume)
  • Blog - official ZAP blog
  • Monthly Newsletters - ZAP news, tutorials, 3rd party tools and featured contributors
  • Swag! - official ZAP swag that you can buy, as well as all of the original artwork released under the CC License

For help using ZAP:

Information about the official ZAP Jenkins plugin:

To learn more about ZAP development:


Justification for the statements made in the tagline at the top;)


  • ToolsWatch Annual Best Free/Open Source Security Tool Survey:


You can’t perform that action at this time.