June 2017
Intermediate to advanced
338 pages
8h 28m
English
OWASP ZAP is a great open source introduction to proxy-based scanning and fuzzing. That being said, most testers have already found that additional tools are necessary to carry out a complete test, for reasons like having the ability to cover more input vectors, cover additional content types like Flash and Webservice vulnerabilities, and automate more report and audit processes. More can be learned about the many toolsets at SecToolMarket.com (http://www.sectoolmarket.com/price-and-feature-comparison-of-web-application-scanners-unified-list.html ). The effort to coordinate with outside toolsets to complete anything more than a small penetration test is more trouble that is worth. A large number of ...
Read now
Unlock full access