[Owasp-std] Security regression testing using ZAP
psiinon
psiinon at gmail.com
Mon Sep 19 09:15:45 EDT 2011
Hi folks,
I've created a POC showing how you can convert existing regression tests (in
this case using Selenium) into security tests by proxying them through ZAP.
The POC and all related tools are open source - see here for more details:
http://code.google.com/p/bodgeit/wiki/RegTests
This is at a very early stage, but I think it shows what can be achieved
with minimal investment in time and no financial cost.
I'll be covering this and more in my AppSec USA talk:
http://www.appsecusa.org/talks.html#zap
Hope to see some of you on this list there - please introduce yourselves to
me :)
Cheers,
Simon
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-std/attachments/20110919/8fb03537/attachment.html
More information about the Owasp-std
mailing list