Dast Zap is a production-ready Claude Code skill (quality score 70/100) in the appsec-tools sub-category. It ships as a SKILL.md file that Claude Code auto-discovers under ~/.claude/skills/dast-zap/ and loads when your prompt matches the skill's trigger.
When to invoke it: Use when: (1) Performing runtime security testing of web applications and APIs, (2) Detecting vulnerabilities like XSS, SQL injection, and authentication flaws in deployed applications, (3) Automating security scans in CI/CD pipelines with Docker containers, (4) Conducting authenticated testing with session management, (5) Generating security reports with OWASP and CWE mappings for compliance.
The Dast Zap skill is built for security engineers, penetration testers, DevSecOps practitioners, and development teams hardening codebases and infrastructure. It is part of the open ClaudSkills registry, a community-curated catalog of 15,000+ capabilities you can install for Claude Code — the Claude CLI agent.
mkdir -p ~/.claude/skills/dast-zap curl -L https://claudskills.com/skills/dast-zap/SKILL.md \ -o ~/.claude/skills/dast-zap/SKILL.md
Or just download SKILL.md directly and drop it into ~/.claude/skills/dast-zap/. Claude Code auto-discovers it on next session.
Skills live at ~/.claude/skills/dast-zap/SKILL.md on macOS/Linux, or %USERPROFILE%\.claude\skills\dast-zap\SKILL.md on Windows. See the full install guide for step-by-step instructions.
The ClaudSkills desktop app installs any skill directly into ~/.claude/skills/ with one click — no terminal required. Pro starts at $9/mo or $149 lifetime.
Browse all Security skills in the ClaudSkills registry, or explore these top-rated picks from the same category:
Part of Acreator Store — Adam Lankamer's AI tools: GifPerfect · AspectPerfect · SlomoPerfect · Ucaption · UTagger · AutoXPoster · TestYourSkills