Updated on April 30, 2019

OWASP ZAP project released a new version V12 that includes an updated HTTPSInfo plugin. The HTTPSInfo plugin includes support for TLS analysis based upon DeepViolet v5.1.16. DeepViolet is a TLS/SSL API and tool set you can use in your Java projects. The plugin provides metadata from X.509 certificates, TLS/SSL connections, and session attributes. It’s like a baby OpenSSL but for Java programs that need an API. A previous post describes how to install the ZAP plugin and run the report, Using OWASP DeepViolet within OWASP ZAP.

Original ZAP project post

Interested to make easy work keeping your projects 3rd party dependencies up to date?  If so, push the easy button and read on.

Read more

Today Jim Manico (Twitter:@manicode) was nominated and announced a Java Champion.  Jim is the founder and leader of Manicode, a software security training company.  So why do I think this is amazing?

Read more