OWASP Zed Attack Proxy(ZAP) is an open source web application security scanner. You can integrate ZAP security tool with the Jenkins CI environment.
Jenkins and OWASP Zed Attack Proxy integration
Getting ready
Go to https://github.com/zaproxy/zaproxy/wiki/Downloads and download the Windows (64) Installer.
Install it on Windows.
Open OWASP ZAP in Windows, click on File | Persist Session and save it in the Jenkins workspace in the directory of the build job:
Now you are good to configure ZAP plugins in Jenkins.
How to do it...
- Go to the Jenkins dashboard | Configure system...