ZAP
E831597
dynamic application security testing tool
open-source software
web application security testing tool
ZAP is an open-source web application security testing tool developed by OWASP, widely used for finding vulnerabilities in web applications.
All labels observed (1)
| Label | Occurrences |
|---|---|
| ZAP canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T9963096 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
NED1
Entity disambiguation (via context triple)
gpt-5-mini-2025-08-07
Target entity: ZAP Context triple: [OWASP ZAP, abbreviation, ZAP]
-
A.
Zapped
Zapped is a Disney Channel original movie starring Zendaya as a tech-savvy teen who gains a smartphone app that lets her control boys’ behavior, leading to comedic chaos and life lessons.
-
B.
ZAZ
ZAZ is the IATA airport code for Zaragoza Airport, a major civilian and military airfield serving the city of Zaragoza in northeastern Spain.
-
C.
ZAG
ZAG is the commonly used abbreviation for Zagłębie Lubin, a professional football club based in Lubin, Poland.
-
D.
ZAG
ZAG is the three-letter IATA airport code for Zagreb Franjo Tuđman Airport, the main international airport serving Croatia’s capital city, Zagreb.
-
E.
ZP
ZP is a German vehicle registration code assigned to the Erzgebirgskreis district in the state of Saxony.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
NED2
Entity disambiguation (via description)
gpt-5-mini-2025-08-07
Target entity: ZAP Target entity description: ZAP is an open-source web application security testing tool developed by OWASP, widely used for finding vulnerabilities in web applications.
-
A.
Zapped
Zapped is a Disney Channel original movie starring Zendaya as a tech-savvy teen who gains a smartphone app that lets her control boys’ behavior, leading to comedic chaos and life lessons.
-
B.
ZAZ
ZAZ is the IATA airport code for Zaragoza Airport, a major civilian and military airfield serving the city of Zaragoza in northeastern Spain.
-
C.
ZAG
ZAG is the commonly used abbreviation for Zagłębie Lubin, a professional football club based in Lubin, Poland.
-
D.
ZAG
ZAG is the three-letter IATA airport code for Zagreb Franjo Tuđman Airport, the main international airport serving Croatia’s capital city, Zagreb.
-
E.
ZP
ZP is a German vehicle registration code assigned to the Erzgebirgskreis district in the state of Saxony.
- F. None of above. chosen
Statements (48)
| Predicate | Object |
|---|---|
| instanceOf |
dynamic application security testing tool
ⓘ
open-source software ⓘ web application security testing tool ⓘ |
| affiliation | OWASP NERFINISHED ⓘ |
| category |
penetration testing tools
ⓘ
web security ⓘ |
| developer | OWASP NERFINISHED ⓘ |
| fullName | OWASP Zed Attack Proxy NERFINISHED ⓘ |
| hasFeature |
HUD (Heads Up Display)
NERFINISHED
ⓘ
context-based scanning ⓘ graphical user interface ⓘ headless mode ⓘ marketplace for add-ons ⓘ plug-in architecture ⓘ report generation ⓘ |
| license | Apache License 2.0 ⓘ |
| maintainer | OWASP ZAP core team NERFINISHED ⓘ |
| notableFor | being widely used by security professionals and developers ⓘ |
| platform | cross-platform ⓘ |
| primaryUse |
vulnerability scanning
ⓘ
web application security testing ⓘ |
| programmingLanguage | Java ⓘ |
| repository | https://github.com/zaproxy/zaproxy ⓘ |
| runsOn |
Linux
NERFINISHED
ⓘ
Windows NERFINISHED ⓘ macOS NERFINISHED ⓘ |
| shortName | ZAP NERFINISHED ⓘ |
| sourceModel | open source ⓘ |
| supports |
AJAX spider
NERFINISHED
ⓘ
API security testing ⓘ REST API ⓘ WebSockets testing ⓘ active scanning ⓘ authentication testing ⓘ automation via scripts ⓘ command-line interface ⓘ fuzzing ⓘ passive scanning ⓘ session management testing ⓘ spidering ⓘ |
| supportsIntegrationWith |
GitHub Actions
NERFINISHED
ⓘ
GitLab CI NERFINISHED ⓘ Jenkins NERFINISHED ⓘ |
| usedFor |
DevSecOps pipelines
ⓘ
continuous integration security scanning ⓘ finding vulnerabilities in web applications ⓘ security regression testing ⓘ |
| website | https://www.zaproxy.org ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
Instruction
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Input
Subject: ZAP Description of subject: ZAP is an open-source web application security testing tool developed by OWASP, widely used for finding vulnerabilities in web applications.
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.