We ship OWASP ZAP (Zed Attack Proxy) pre-baked into our stack, along with the best-of-breed cloud native OSS Security Tools developers love
ZAP is the world's most widely used web app scanner and is a part of OWASP - the foremost security engineering community. ZAP was built by security engineers for developers, to be easily integrated into developer workflows using automation. ZAP gives you the attacker view of your application - these are the vulnerabilities the bad guys will be able to find very easily.
Start FreeJit makes it ridiculously simple for engineering teams to add continuous security (CS) to their CI/CD. Jit orchestrates & plugs in the most popular and best-of-breed OSS cloud-native security tools for your entire stack. From the code to the cloud, CI/CD, APIs, imports, and more.
Start FreeTo setup ZAP on Jit, activate the Runtime Security items in the "My Plan" page:
Setting up ZAP via Jit's platform:
Researching your own tools?
Integrating and configuring them manually?
Wiring them into your CI/CD?
Getting output in siloed dashboards?
Unify and automate your DevSecOps with Jit.