- Course
- Security
Automated Scanning with ZAP
Automated security testing with OWASP ZAP reduces dev bottlenecks and missed vulnerabilities. This course shows you how to integrate it seamlessly into your CI/CD pipeline.
What you'll learn
Manual security testing creates significant bottlenecks in modern development pipelines, leaving teams struggling to keep pace with rapid deployments while ensuring applications remain secure against evolving threats. In this course, Automated Scanning with ZAP, you'll learn to implement comprehensive automated security testing that seamlessly integrates into CI/CD workflows without sacrificing development velocity. First, you'll explore automated active scanning configuration and result analysis to identify vulnerabilities efficiently across different environments. Next, you'll discover advanced authentication handling techniques for complex scenarios including multi-factor authentication, SSO integration, and API token management. Finally, you'll learn how to deploy the ZAP automation framework using YAML-based configurations that enable consistent, scalable security testing across your entire application portfolio. When you're finished with this course, you'll have the skills and knowledge of ZAP automation needed to establish enterprise-grade automated security testing pipelines that protect applications while maintaining rapid deployment cycles.
Table of contents
About the author
Mike is an information security manager who has worked in the IT field for 17+ years. The focus of Mike's career now centers on pentesting and risk assessments. An active member in the infosec community and attends or speaks at various conferences.