AboutWeb attends cf.Objective () to showcase ZAP, an open source tool for assessing security vulnerability.

AboutWeb's Dave Epler was in attendance at cf.Objective() in Minnesota last week to discuss the Open Web Application Security Program (OWASP) Zed Attack Proxy (ZAP). This is an easy to use, integrated penetration testing tool for finding vulnerabilities in web applications. The idea is behind OWASP ZAP is to provide a free, open-source tool to assess vulnerabilities. In effect, this minimizes both hacks and massive reports from security. Dave led sessions instructing users on how to get ZAP installed, test web applications, and integrate ZAP with other tools. More information can be found at the following link: http://cfobjective.com/sessions/using-owasp-zap-to-find-vulnerabilities-in-your-web-apps/