AgentReadyHomeAgent Listing

โ† Agent Listing

mcp-zap-server (dtkmn)

MCP Tools and AgentsFreeOpen Source

Self-hosted OWASP ZAP MCP operator exposing guided web security scans, findings, reports, and production guardrails.

๐Ÿ›ก๏ธ AgentReady threat assessment

MAESTRO 7-layer threat model + OWASP AIVSS risk score for mcp-zap-server (dtkmn), derived from its capabilities.

AIVSS 6.9 ยท Medium
View MAESTRO 7-layer threat model โ†’

Overview

mcp-zap-server gives AI agents a safe, self-hosted OWASP ZAP operator over streamable HTTP so they can run operator-controlled web security scans, retrieve findings, generate reports, and stay within production guardrails. It emphasizes controlled, guided scanning rather than unconstrained attacks. As a DAST control surface, its guardrails and scoping are the key security features.

Key features

Use cases