The OWASP Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing as well as being a useful addition to an experienced pen testers toolbox. ZAP’s features include:Intercepting Proxy,Automated scanner,Brute Force scanner,Port scanner, Dynamic SSL certificates and Beanshell integration.
Source: https://thehackernews.com/2011/08/owasp-zed-attack-proxy-zap-v132.html