Automate Web Application Scans with OWASP ZAP and Python

by Mike Woolard

This course introduces individuals to the ZAP API and teaches you how it can be used in conjunction with python to set up automated scanning of web applications.

What you'll learn

Web application security assessments have always been performed by a specific group with knowledge and training on using specialized tools to perform the scan. In this course, Automated Web Application Scans with OWASP ZAP and Python, you’ll learn to how to automate this function so anyone in the business can scan and report on the health of an application. First, you’ll explore the ZAP API. Next, you’ll discover how to automate the calls to it with Python. Finally, you’ll learn how to retrieve reports back from the scan. When you’re finished with this course, you’ll have the skills and knowledge of using the ZAP API along with some Python scripting needed to automate a scan of the applications your business builds.

About the author

Mike is an information security manager who has worked in the IT field for 17+ years. A broad background from helpdesk to sysadmin, system engineer, networking, DB and development work. Most of Mike's work now centers around pentests and risk assessments, but an integral part will always be awareness training. An active member in various local security groups, Mike volunteers, speaks, or attends various information security cons.

Ready to upskill? Get started