From this post, we are going to see the steps for the installation of OWASP ZAP (Zed Attack Proxy) (latest version 2.90) in the Windows machine.
Kindly execute the downloaded executable file by double-clicking on the same. (Here we need the administrator rights to install).
The Welcome screen of the setup wizard will appear. Kindly click “Next”.
The License Agreement screen of the setup wizard will appear. Kindly select the option “I accept the agreement” and click “Next”.
The Select Installation Type screen of the setup wizard will appear. Kindly select the option “Standard Installation” ( This option would be helpful for the beginners/newbies) and click “Next”.
The Ready to Install screen of the setup wizard will appear. Here we can review our settings. Click “Install” to proceed further.
The installation will start and it will take some time based on the speed of the machine.
Finally, the completion screen of the setup wizard will appear. Kindly click “Finish” to complete the installation.
Kindly open the application by searching for ZAP in the Search bar and click the app “ZAP 2.9.0”.
After clicking the app, Windows Security Alert will appear to enable the ZAP app at the firewall level. Kindly select the option based on the network requirement and click “Allow Access”.
The App will start after the loading process.
Optional step: By default, OWASP ZAP will use port number 8080. If that port is being used by some other app, it will ask to provide an alternate port number. Kindly enter the port number and click “Yes”.
Finally, the home screen of OWASP ZAP will appear like as mentioned below:
As the next step, we can use the app to do the DAST (Dynamic Application Security Testing) on any of the web applications.