The Future of Zed Attack Proxy – Simon Bennetts, Ori Bendet – ASW #302
Zed Attack Proxy has been a crucial web app testing tool for decades. It's also had a struggle throughout 2024 to obtain funding that would enable the tool to add more features while remaining true to its open source history. Simon Bennetts, founder of ZAP, and Ori Bendet from Checkmarx update us on that journey, share some exploration of LLM fuzzing that ZAP has been working on, and what the future looks like for this well-loved project.
Segment Resources:
- https://www.zaproxy.org/blog/2024-09-24-zap-has-joined-forces-with-checkmarx/
- https://www.zaproxy.org/blog/2024-09-30-improving-fuzzing-payloads-for-llms-with-fuzzai/
- https://checkmarx.com/press-releases/checkmarx-joins-forces-with-zap-to-supercharge-dynamic-application-security-testing-dast-for-the-enterprise-and-enhance-community-growth/
- KICS: https://github.com/Checkmarx/kics
- 2MS: https://github.com/Checkmarx/2ms
Guests
Simon Bennetts is the Zed Attack Proxy (ZAP) Founder and Project Leader.
He has talked about and demonstrated ZAP at conferences all over the world, including Blackhat, JavaOne, FOSDEM and OWASP AppSec EU, USA & AsiaPac.
Prior to making the move into security he was a developer for 25 years and strongly believes that you cannot build secure web applications without knowing how to attack them.
Ori brings more than 18 years of senior-level experience to his role as VP of Product Management at Checkmarx where he oversees the entire AppSec portfolio, serving thousands of customers worldwide. He is an experienced product leader combining his strong technical and go-to-marketing skills. Ori also managed Checkmarx SAST which is a Gartner and Forrester market leading solution used by thousands of customers worldwide and has been instrumental in spearheading the flagship Checkmarx One AST Platform which is gaining ground with hundreds of global customers adopting the cloud-based platform. Prior to Checkmarx, he held leadership and engineering positions at Time To Know, HPE, PicApp, and Bezeq.
Hosts
