Webinar: Running a Web Security Testing Program with OWASP ZAP and ThreadFix


Simon Bennetts (@psiinon) and I will be doing a webinar Wednesday April 24th, 2013 at 10:30am Central Daylight Time to talk about how organizations can set up a web security testing program using the freely available tools OWASP Zed Attack Proxy (ZAP) and ThreadFix.

You can register online here: Running a Web Security Testing Program with OWASP ZAP and ThreadFix


OWASP’s Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. ThreadFix is a software vulnerability management platform that allows organizations to track the results of testing and communicate vulnerabilities to software development teams. Used together, these open source tools allow organizations to build a comprehensive program of web application security testing and vulnerability management. Security analysts can perform automated and manual testing of critical applications, track the results of their testing and report metrics on their program’s effectiveness. This webinar walks through the basics of using OWASP ZAP for web application scanning and testing. It then demonstrates storing and managing these results inside of ThreadFix and communicating them to development teams for resolution. Developers and security professionals alike will benefit from seeing how these two tools used in combination can allow any organization to start taking control of the security of their web applications.

Contact us if you woud like to talk more about getting the most out of great tools like OWASP ZAP and ThreadFix.


dan _at_ denimgroup.com


About Dan Cornell

A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.
More Posts by Dan Cornell

6 Responses to “Webinar: Running a Web Security Testing Program with OWASP ZAP and ThreadFix”

  1. free upc code

    Hi just wanted to give you a quick heads up and let you know a few of
    the pictures aren’t loading properly. I’m not sure why but I
    think its a linking issue. I’ve tried it in two different internet browsers and both show the same results.

  2. mgsecurity

    I drop a leave a response each time I especially enjoy a post on a site or if I have something to valuable to contribute to the conversation. It is a result of the passion communicated in the post I browsed. And on this post Webinar: Running a Web Security Testing Program with OWASP ZAP and ThreadFix – Denim Group, Ltd. Blog. I was actually excited enough to drop a thought ;) I do have a few questions for you if you don’t mind. Could it be simply me or do some of these comments look like they are left by brain dead people? :-P And, if you are writing on additional social sites, I’d like to follow you. Would you list all of your public sites like your linkedin profile, Facebook page or twitter feed?

  3. Gudrun

    A hot tubs in san dimas hot tub is made of plays a crucial role in the selection of the hot tub spas have grown in popularity immensely in recent years. Always show photos of the hot hot tubs in san dimas tub is priceless. You have to know the right thing and you will have the advantage. A twenty minute soak, a few large towels, and a conduit hole in the external wall.

  4. Jaunita

    If you love the idea hot tubs spring tx of hot tubs cannot be used for many different therapeutic uses. When you expose your body to make it worth the money.

  5. luxury chalets

    This is precisely the reason why so many technological skiing 5 star research companies employ the services of freelance PR pros. Messaging will need to start up in advertising public relations employment are expected to develop the channel of communication and fast paced environment.

  6. feminism

    Way cool! Some very valid points! I appreciate you writing this write-up and the rest of the site is also really good.

Leave a Reply

Your email address will not be published. Required fields are marked *