OWASP ZAP
Rank #20319pulsemcp/lisberndt-zap
Integrates with OWASP ZAP to provide comprehensive web application security testing through active vulnerability scanning, passive analysis, traditional spidering, and AJAX crawling with configurable scan policies, session management, and evidence collection for automated penetration testing workflows.
OWASP ZAP is a Model Context Protocol (MCP) server published by lisberndt. It ranks #20319 of 58,832 servers tracked on MCP Toplist, and its repository has 5 GitHub stars. OWASP ZAP is listed on PulseMCP, and ships as a single rolling release with no explicit version metadata. It was first listed on Sep 15, 2025.
Ranks ahead of 38,513 of 58,832 servers on MCP Toplist.
Use OWASP ZAP
OWASP ZAP doesn’t publish a machine-readable install config. Follow the setup instructions in its repository ↗, or open one of its registry listings above.
Listed on 1 registry
lisberndt
Not versioned
This server is published through a registry that does not expose explicit version metadata, and no GitHub release tags were found on the linked repository. The listing tracks a single rolling release.
Frequently asked questions
- What is OWASP ZAP?
- Integrates with OWASP ZAP to provide comprehensive web application security testing through active vulnerability scanning, passive analysis, traditional spidering, and AJAX crawling with configurable scan policies, session management, and evidence collection for automated penetration testing workflows.
- Who maintains OWASP ZAP?
- OWASP ZAP is maintained by lisberndt, which publishes 1 MCP server (0 total versions) tracked on MCP Toplist.
- Is OWASP ZAP an official MCP server?
- OWASP ZAP is not on the Official MCP Registry. It is listed on PulseMCP.
- How many versions does OWASP ZAP have?
- OWASP ZAP ships as a single rolling release with no explicit version metadata.
- Where can I find the source code for OWASP ZAP?
- The source code for OWASP ZAP is hosted at github.com/lisberndt/zap-mcp-server.