2018-07-09T07:46:00Z
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
  • 0
  • 22

What do you like most about OWASP Zap?

Hi Everyone,

What do you like most about OWASP Zap?

Thanks for sharing your thoughts with the community!

19
PeerSpot user
19 Answers
OA
Consultant with 1,001-5,000 employees
Consultant
Top 20
2022-09-19T18:01:12Z
Sep 19, 2022

The most valuable feature is scanning the URL to drill down all the different sites.

Search for a product comparison
AnkithKumar - PeerSpot reviewer
Application Security Consultant at Capgemini
Real User
Top 10Leaderboard
2022-06-22T13:07:44Z
Jun 22, 2022

The solution has tightened our security.

JoelGeorge - PeerSpot reviewer
Associate at Tata Consultancy
Real User
Top 5
2022-04-25T09:36:38Z
Apr 25, 2022

Two features are valuable. The first one is that the scan gets completed really quickly, and the second one is that even though it searches in a limited scope, what it does in that limited scope is very good. When you use Zap for testing, you're only using it for specific aspects or you're only looking for certain things. It works very well in that limited scope.

AP
Security Consultant
Real User
Top 5
2022-04-25T09:34:18Z
Apr 25, 2022

It updates repositories and libraries quickly.

Alan Gallagher - PeerSpot reviewer
CEO at Virtual Security International
Real User
Top 10
2021-08-13T19:10:06Z
Aug 13, 2021

It has evolved over the years and recently in the last year they have added, HUD (Heads Up Display).

Roshni Shinde - PeerSpot reviewer
Software Engineer at a computer software company with 201-500 employees
Real User
Top 10
2021-07-19T02:17:09Z
Jul 19, 2021

They offer free access to some other tools.

Learn what your peers think about OWASP Zap. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
653,757 professionals have used our research since 2012.
Eldar Aydayev - PeerSpot reviewer
President & Owner at Aydayev's Investment Business Group
Real User
Top 10Leaderboard
2021-06-16T14:05:43Z
Jun 16, 2021

The solution is scalable.

PiyushSharma - PeerSpot reviewer
Technical Specialist(DevOps) at a tech services company with 1,001-5,000 employees
Real User
Top 20
2021-04-06T13:58:13Z
Apr 6, 2021

Automatic scanning is a valuable feature and very easy to use.

RT
Subdirector de Seguridad Informática e Infraestructura at a financial services firm with 201-500 employees
Real User
Top 20
2021-02-11T05:01:31Z
Feb 11, 2021

The stability of the solution is very good.

Balaji Senthiappan - PeerSpot reviewer
Assistant Vice President at Hexaware Technologies Limited
Real User
Top 10
2020-11-12T08:21:07Z
Nov 12, 2020

The solution is good at reporting the vulnerabilities of the application.

EI
Information Security Professional at a energy/utilities company with 1,001-5,000 employees
Real User
2020-07-16T06:21:08Z
Jul 16, 2020

The interface is easy to use.

RK
Business Analyst at Experion Technologies
Real User
2020-07-05T09:38:09Z
Jul 5, 2020

Simple to use, good user interface.

Jaromir Tesar - PeerSpot reviewer
Embedded Software Engineer at Y Soft
Real User
2020-05-05T06:08:30Z
May 5, 2020

Automatic updates and pull request analysis.

AC
Senior Manager at a marketing services firm with 10,001+ employees
Real User
2019-06-24T12:13:00Z
Jun 24, 2019

The reporting is quite intuitive, which gives you a clear indication of what kind of vulnerability you have that you can drill down on to gather more information.

CD
Senior Engineer at Honeywell International Inc.
Real User
2019-06-23T09:40:00Z
Jun 23, 2019

The scalability of this product is very good.

Vijayanathan Naganathan - PeerSpot reviewer
Director - Head of Delivery Services at Ticking Minds Technology Solutions Pvt Ltd
Real User
2019-06-19T05:02:00Z
Jun 19, 2019

The OWASP's tool is free of cost, which gives it a great advantage, especially for smaller companies to make use of the tool.

Vidar Folden - PeerSpot reviewer
Consultant at Moller
Consultant
2019-02-05T07:16:00Z
Feb 5, 2019

This solution has improved my organization because it has made us feel safer doing frequent deployments for web applications. If we have something really big, we might get some professional company in to help us but if we're releasing small products, we will check it ourselves with Zap. It makes it easier and safer.

Dittin A - PeerSpot reviewer
Staff Scientist/Senior Tech. Officer at a tech vendor with 501-1,000 employees
Real User
2018-09-09T05:40:00Z
Sep 9, 2018

It can be used effectively for internal auditing.

RR
Security Testing Engineer at a tech services company with 1,001-5,000 employees
Real User
2018-07-09T07:46:00Z
Jul 9, 2018

The community edition updates services regularly. They add new vulnerabilities into the scanning list.

Related Questions
RT
Subdirector de Seguridad Informática e Infraestructura at a financial services firm with 201-500 employees
Nov 17, 2021
I would like to know if nowadays (2021) the license of Burp Suite Pro is worth the cost. Is it a good option to use OWASP Zap instead for testing security in web applications?
2 out of 3 answers
Mar 15, 2021
First things first both are having their own merits, however in my personal experience ZAP can replace your burpsuite for sure considering the License. Also as the latest ZAP versions are covering more advanced techniques and spidering patterns with lots of options in it, it is worth considering ZAP. However remember that burpsuite from latest versions with inbuilt chromium and it's emerging plugin support (Installable jars) you can use burp to the fullest and you can keep it as a swiss knife for your web and app pentesting. Couple of extensions in burp pro are interesting especially the race condition one. I always prefer using Burp and at instances I go with ZAP.
VD
Lead Security Architect at a comms service provider with 1,001-5,000 employees
Mar 17, 2021
Yes OWASP ZAP is a good option as it's an open source so always preferred but Burp Suite Pro  will give you more options, its one of the best tool to have for pentesters so defo worth it.
Mahesh Khopade - PeerSpot reviewer
Software Test Engineer at a tech company with 501-1,000 employees
Jan 23, 2020
I work as a Software Test Engineer, designing and executing test cases according to clients' functional specifications. I am currently evaluating OWASP Zap and Qualys. What are the main differences between the two? Which would you recommend and why? I appreciate the help. Thanks!
See 1 answer
Jan 23, 2020
por ahora estoy usando Owasp Zap, es muy intuitivo y sus reportes muy detallados, probe con burp suite pero no me convencio por el cosoto
Related Solutions
Download Free Report
Download our free OWASP Zap Report and get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
DOWNLOAD NOW
653,757 professionals have used our research since 2012.