ICTU / zap2docker-auth-weekly
Zap baseline scanner in Docker with authentication
☆103Updated 11 months ago
Alternatives and similar repositories for zap2docker-auth-weekly:
Users that are interested in zap2docker-auth-weekly are comparing it to the libraries listed below
- ☆123Updated last year
- NextJS-based single-page application for completing and reviewing SAMM assessments☆72Updated 2 years ago
- The ZAP Heads Up Display (HUD)☆263Updated 2 months ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- drHEADer helps with the audit of security headers received in response to a single request or a list of requests.☆110Updated 3 months ago
- A simple tool for interacting with OWASP ZAP from the commandline.☆234Updated last year
- This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.☆24Updated 4 years ago
- ☆32Updated last year
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆102Updated last year
- Damn Vulnerable Java (EE) Application☆138Updated last year
- Container Security Verification Standard☆58Updated 5 years ago
- Software Component Verification Standard (SCVS)☆143Updated 3 weeks ago
- An application to catch, search and analyze HTTP secure headers.☆65Updated 3 years ago
- OWASP ASVS checklist for audits☆202Updated last year
- A tool geared towards pentesting APIs using OpenAPI definitions.☆174Updated 2 years ago
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆66Updated 10 months ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- OWASP Foundation Web Repository☆47Updated 3 months ago
- The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.☆60Updated 6 months ago
- Python API library for DefectDojo☆41Updated 2 years ago
- Check any website (or set of websites) for insecure security headers.☆250Updated last year
- A simple web app that helps developers understand the ASVS requirements.☆157Updated last month
- Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …☆200Updated last year
- Pin designs for security related items☆37Updated 11 months ago
- Predict Mongo ObjectIds☆130Updated 6 years ago
- Integrates OWASP Zed Attack Proxy reports into SonarQube☆70Updated last year
- Python script to check HTTP security headers☆65Updated 3 months ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆62Updated 9 months ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆125Updated 2 years ago
- AppSecPipeline Specification for DevOps automation.☆40Updated 2 years ago