Updated on April 30, 2019
OWASP ZAP project released a new version V12 that includes an updated HTTPSInfo plugin. The HTTPSInfo plugin includes support for TLS analysis based upon DeepViolet v5.1.16. DeepViolet is a TLS/SSL API and tool set you can use in your Java projects. The plugin provides metadata from X.509 certificates, TLS/SSL connections, and session attributes. It’s like a baby OpenSSL but for Java programs that need an API. A previous post describes how to install the ZAP plugin and run the report, Using OWASP DeepViolet within OWASP ZAP.