MCP ZAP Server
JSON →Exposes OWASP ZAP as an MCP server, enabling AI agents to orchestrate security scans, import OpenAPI specs, and generate reports.
Tools · 8
- spider Intent-first tool for spider scanning a target URL
- active_scan Intent-first tool for active scanning a target URL
- passive_scan Intent-first tool for passive scanning a target URL
- api_import Intent-first tool for importing API definitions (OpenAPI, etc.)
- findings Intent-first tool for retrieving scan findings/alerts
- reports Intent-first tool for generating scan reports
- scan_history Intent-first tool for accessing scan history
- zap_policy_dry_run Runtime policy bundle dry-run support
Links
★ 55 GitHub stars