owasp-zap / zaproxy / zap-cli

owasp-zap / zaproxy / zap-cli#

OWASP ZAP web app proxy / scanner (authorized testing).

$ zaproxy
$ zap.sh -daemon -port 8090 -config api.disablekey=true
$ zap-cli quick-scan --self-contained https://target
$ zap-cli active-scan https://target