DEVOPSdigest

Parasoft announced the launch and extension of its static application security testing (SAST) and API testing platform with penetration testing, shifting security testing into developer workflows.

The platform integrates Parasoft SOAtest and the Smart API Test Generator with OWASP ZAP to build security into development workflows and address rising API security issues by identifying security vulnerabilities in APIs. Learn more about Parasoft's API testing platform and approach to comprehensive API security testing.

OWASP has been a foundational component in advancing application security practices globally through community engagement, training, and awareness for two decades, underscoring the criticality of software security. With commitment to application security testing, Parasoft announces sponsorship for the 20th anniversary celebration and corporate support for the OWASP ZAP project.

"OWASP is proud to have Parasoft sponsor our 20th Anniversary Celebration and we thank them for their generous donation to a Flagship project, OWASP ZAP. We also thank Parasoft for their longstanding support of OWASP, our events, projects, tools, and community," said Andrew van der Stock, Executive Director of the OWASP Foundation.

A provider of static application security testing (SAST) for decades, Parasoft supported OWASP early on through leading SAST tools. Developers can incorporate security testing without being security experts by invoking penetration testing in Parasoft's API testing platform as part of their API test scenarios. "This is an excellent way to push security left into developers' daily activities to leverage test automation and run security tests as part of API functional testing. It lowers the barriers to API security testing for novice users who aren't trained in security," said Kevin E. Greene, director of security solutions at Parasoft.

Popular with penetration testers and development teams, OWASP ZAP is a long-standing flagship product and one of the leading penetration tools in the market with strong support from the open source community. ZAP has broad adoption across application security (AppSec) and development teams.

"This is a great opportunity for Parasoft to extend the functionality of ZAP with our API testing platform to address significant customer and market challenges around API security testing. We realize the importance and value OWASP provides in advancing application security practices and will make a financial donation to the OWASP ZAP project and sponsor OWASP's 20th anniversary celebration," said Matt Klassen, VP of Marketing at Parasoft.