re: Automatic security tests in Jenkins with OWASP ZAP VIEW POST

TOP OF THREAD FULL DISCUSSION
re: Hey Grégoire, Take a look at Probely (probely.com) and gives us your feedback. Thanks, Filipe
 

Hello Filipe,

Seems nice! But in my case I can have the same functionalities for free with Jenkins.

 

Hi Grégoire, not really sure if I understood your comment. Probely has a plugin that can be used within Jenkins to perform dynamic application security testing.

And Gregoire said he can do the same thing, but with owasp zap instead, since it's free. so why pay for probely?

@selaru , not really trying to argue here, just wanted to understand his comment.

If you ignore the cost for a human resource to operate it, then yes, Zap is free. Zap is better suitable for a pentester, to help him/her doing the pentest. Probely is more suitable for point&shoot and wait for the results. Two different scenarios.

code of conduct - report abuse