Upgrade to Pro — share decks privately, control downloads, hide ads and more …

What is ZAP?

Yuho Kameda
August 30, 2015
450

What is ZAP?

Yuho Kameda

August 30, 2015
Tweet

Transcript

  1. OWASP ZAPとは
    What is ZAP?
    @YuhoKameda

    View full-size slide

  2. • OWASP ZAPとは?
    • What is ZAP?
    Agenda

    View full-size slide

  3. OWASP ZAPとは?
    • OWASP ZAP (Zed Attack Proxy)
    – Webアプリケーションの診断ツール
    – This tool is penetration testing tool for finding vulnerabilities in web applications.
    – ローカルプロキシツール
    – Local Proxy Tool
    https://github.com/zaproxy/zaproxy
    https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project

    View full-size slide

  4. What is ZAP?
    • ローカルプロキシツールとは?
    • What is Local Proxy?
    – 通信を中継しキャプチャするツール
    – This tool capture the traffics.

    View full-size slide

  5. What is ZAP?
    • Paros (version 3.2.13)をフォークしたツール
    • This tool was forked Paros version 3.2.13.
    • 簡単に使える、Webアプリケーションの脆弱
    性を発見するための診断ツールです。
    • This tool is an easy to use integrated penetration testing tool for finding
    vulnerabilities in web applications.

    View full-size slide

  6. Any Question
    • Social Account
    – Twitter : @YuhoKameda
    • Web Page
    – https://www.owasp.org/index.php/User:Yuho_Kameda
    • E-mail
    [email protected]

    View full-size slide