Ever since, we started our online journey of Application Security, we were thinking of which tool to try, which tool to implement in our Application Security Vulnerability Assessments. We tried many tools, which were available in the market for our scanning needs, authentication needs, and ultimately for our Security Automation needs. We tried many off the shelf marketed tools, but nobody, nobody comes as close to OWASP ZAP. Coupled with the option of doing premilimany scan whenever, an application is handed over to us, or complete Security Automation implementation.

We have now implemented OWASP ZAP into our CI CD Pipeline and our implementation team is now using OWASP ZAP as Security Automation tool. This session would be this story.