securityOpen Source
OWASP ZAP
Açık kaynak web uygulama güvenlik tarayıcısı. Otomatik ve manuel testlerle web uygulamalarındaki güvenlik açıklarını bulur.
DAST web-security penetration-testing OWASP
7.9
Overall Score / 10
Usability7.7
Documentation7.6
Community7.4
Security7.5
Price/Performance7.8
Pros
- Tamamen ücretsiz ve açık kaynak
- Kapsamlı DAST yetenekleri
- Aktif ve pasif tarama modları
- CI/CD pipeline entegrasyonu
Cons
- Arayüzü karmaşık
- False positive oranı yüksek
- Modern SPA uygulamalarında sınırlı kapsam
Pricing
Open Source
Source code is open, free to use and contribute to.
Related Tools
View AllTrivy
Open Source8.8/10
Aqua Security's comprehensive security scanner. Scans container images, file systems, Git repositories and Kubernetes configurations.
securitycontainervulnerabilityscanning
View Comparison
Snyk
Freemium8.6/10
Developer-focused security platform. Detects vulnerabilities in open-source dependencies, container images and IaC code.
securitydependencyvulnerabilityDevSecOps
View Comparison
HashiCorp Vault
Freemium9/10
Secret management and data encryption platform. Centrally manages and audits API keys, passwords and certificates.
secretsencryptionsecuritycompliance
View Comparison
Weekly DevOps Newsletter
Get new tool reviews, comparisons and DevOps trends delivered to your inbox weekly.