back to project home page
|| is this release?
| ZAP 1.3.4 - 05/11/2011 - (download)
| Release Description: This release is a bugfix and usability release. Compared to older releases, the 1.3.x branch includes the following significant changes:
- Fuzzing: Strings in a response can now be fuzzed to try to find vulnerabilities. Anti CRSF tokens can be detected and automatically regenerated when fuzzing. This functionality is based on code from the OWASP JBroFuzz project.
- Dynamic SSL certificates: The support for SSL connections was improved and simplified. User's can now create their own root certificate and distribute this into their HTTP clients.
- Daemon mode: Starting ZAP with the "-daemon" command line option will cause it to run in the background in 'headless' mode, meaning that no UI is displayed.
- API: An initial API has been implemented in XML, JSON and HTML.
- Beanshell integration: The BeanShell is an interactive Java shell that can be used to execute BeanShell scripts. BeanShell integration in OWASP ZAP enables you to write scripts using the ZAP functions and data set.
- Full internationalisation: All displayed strings are now fully internationalised.
- Localisation: Out of the box support for the following languages: English, Brazilian Portuguese, Chinese, French, German, Greek, Indonesian, Japanese, Polish, Spanish
| Release License: Apache License 2.0
|| worked on this release?
| Release Leader(s):
|| can you learn more?
| Release Notes: View
| Release Rating: Not Reviewed - Assessment Details
- Contact Psiinon @ to contribute to this project
- Contact Psiinon @ to review or sponsor this project
- Contact the GPC to report a problem or concern about this release info or to update information.