If you just want to get stuck in and download it then head over to http://code.google.com/p/zaproxy/downloads/list : it's available for Windows, Linux and Mac OS.
(Note that the Mac OS specific release is coming soon, but the Linux release is actually cross platform and will work fine on Macs)
And if you want to learn a bit more about the changes then read on...
We can only cover the new features at a high level in one blog post, but the plan is to host a Google hangout demonstrating many of these features at 17:00 UTC on Friday 8th Feb. Details to be announced via https://twitter.com/zaproxy
Simon will also be presenting a talk at FOSDEM on Feb 2nd: Practical Security for developers, using OWASP ZAP
New featuresAn integrated add-ons marketplace
A replacement for the 'standard' Spider
A new 'Ajax' spider
Web Socket support
Quick Start tab
User defined Contexts
- Safe, in which no potentially dangerous operations permitted
- Protected, in which you can perform any actions on URLs in scope
- Standard, in which you can do anything to any URLs
A scripting console
More API support
Fine grained scanning controls
New and improved active and passive scanning rules
And a special mention to the 3 Google Summer of Code students who implemented key features in this release:
- Cosmin Stefan : Spider and Session awareness
- Guifre Ruiz : Ajax Spider
- Robert Koch : WebSockets
If you have any questions about this release then you can add a comment here or post them to the ZAP users group.