secdec/attack-surface-detector-zap

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/secdec/attack-surface-detector-zap)

secdec / attack-surface-detector-zap

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

☆67

Alternatives and similar repositories for attack-surface-detector-zap

Users that are interested in attack-surface-detector-zap are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

secdec / attack-surface-detector-cli
View on GitHub
☆87Mar 16, 2022Updated 4 years ago
Ruggedy-Limited / ruggedy-vma
View on GitHub
Ruggedy Vulnerability Management App
☆14Dec 8, 2019Updated 6 years ago
zaproxy / zap-api-rust
View on GitHub
☆15Aug 25, 2023Updated 2 years ago
filescanio / fsio-cli
View on GitHub
Python CLI covering the FileScan.IO API - enabling automatic interaction with www.filescan.io or private instances
☆18Jul 15, 2025Updated 8 months ago
kantega / kwashc
View on GitHub
Kantega Web Application Security Hero Challenge
☆19Dec 3, 2020Updated 5 years ago
ramiKahmed / Penetration-Testing-Bash-Scripts-
View on GitHub
Pentesting-related Bash Scripts
☆12Jan 4, 2020Updated 6 years ago
TypeError / reflect
View on GitHub
OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently
☆12Feb 19, 2021Updated 5 years ago
luisfontes19 / orgsec-guide
View on GitHub
A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program
☆47Feb 2, 2026Updated last month
karelorigin / XSS-Problems
View on GitHub
☆34Oct 1, 2019Updated 6 years ago
guelfoweb / iwmap
View on GitHub
[BASH] Wardriving tool. Collect all the Wi-Fi wireless networks in a log file (csv format) skipping duplicate.
☆18Jun 4, 2011Updated 14 years ago
egrullon / Wounty
View on GitHub
Wounty is a simple web enumeration script that makes use of other popular tools to automate the early stages of recognition in Bug Bounty…
☆14Feb 6, 2022Updated 4 years ago
matterpreter / misc
View on GitHub
Collection of things I've written on pentests to make life easier.
☆16Mar 14, 2019Updated 7 years ago
hahwul / can-i-protect-xss
View on GitHub
Everything about xss protection technology
☆14Oct 22, 2019Updated 6 years ago
zaproxy / fuzzdb-offensive
View on GitHub
ZAP add-on containing the web-backdoors and attack files from FuzzDB
☆20Mar 1, 2026Updated 3 weeks ago
secdec / adapt
View on GitHub
ADAPT is a tool that performs automated Penetration Testing for WebApps.
☆193Sep 24, 2019Updated 6 years ago
ahhh / GLSE
View on GitHub
GoLang Scripting Expert, a repo for template scripts regarding basic golang functions, many with a security focus
☆22Jun 22, 2020Updated 5 years ago
kiview / damn-vulnerable-spring-boot-app
View on GitHub
Spring-Boot app for demonstrating security vulnaribilities
☆13Aug 21, 2019Updated 6 years ago
hahwul / vais
View on GitHub
SWF Vulnerability & Information Scanner
☆18Nov 24, 2018Updated 7 years ago
h0rv4th / c2matrix-analyzer
View on GitHub
Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
☆12Apr 18, 2020Updated 5 years ago
sparcflow / GibsonBird
View on GitHub
☆42Dec 22, 2020Updated 5 years ago
brianwarehime / nights_watch
View on GitHub
Easy to use GuardDuty alerting with the help of Terraform and Slack
☆19Apr 3, 2021Updated 4 years ago
ByteHackr / AwesomeMobilePentest
View on GitHub
Awesome Mobile Application Penetration Testing Cheat Sheet
☆14May 29, 2021Updated 4 years ago
plenumlab / GQL-Helper
View on GitHub
This is a small extension to make graphql readable
☆30Dec 14, 2018Updated 7 years ago
stevespringett / threatmodel-sdk
View on GitHub
A Java library for parsing and programmatically using threat models
☆82Feb 15, 2023Updated 3 years ago
yashrs / safecopy
View on GitHub
Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…
☆18May 17, 2020Updated 5 years ago
kempy007 / VulManAgg
View on GitHub
Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)
☆32Apr 21, 2023Updated 2 years ago
zaproxy / zap-admin
View on GitHub
ZAP Admin
☆31Updated this week
iriusrisk / resty-burp
View on GitHub
REST/JSON interface to Burp Suite
☆33Oct 12, 2020Updated 5 years ago
codedx / codepulse
View on GitHub
Code Pulse is a real-time code coverage tool for penetration testing activities
☆122Dec 7, 2022Updated 3 years ago
wurstbrot / security-pins
View on GitHub
Pin designs for security related items
☆37Feb 16, 2026Updated last month
epsylon / ecoin
View on GitHub
ECOin is a P2P crypto-currency with the goal of providing a long-term energy-efficient digital economy strategy.
☆13Feb 28, 2026Updated 3 weeks ago
pwnwiki / dfirwiki
View on GitHub
Digital Forensics and Incident Response Wiki
☆40May 19, 2014Updated 11 years ago
OWASP / CodeReviewGuide
View on GitHub
Repository for OWASP Code Review document
☆17Jun 24, 2014Updated 11 years ago
ahsansmir / pinata-csrf-tool
View on GitHub
pinata-csrf-tool
☆13Dec 20, 2019Updated 6 years ago
Orange-Cyberdefense / mass-nessus-docker
View on GitHub
Deploy multiple instances of Nessus in docker containers easily
☆20Mar 31, 2021Updated 4 years ago
aws-samples / aws-control-tower-guardduty-enabler
View on GitHub
☆43Nov 28, 2023Updated 2 years ago
dxa4481 / bygonessl
View on GitHub
A tool to discover bygonessl vulnerabilities using the facebook API
☆20Oct 2, 2019Updated 6 years ago
jchrisfarris / detect-credential-compromise
View on GitHub
Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.
☆29Aug 18, 2019Updated 6 years ago
codingo / guides
View on GitHub
A companion repo to accompany detailed guides and YouTube content to allow users to follow along
☆13Aug 29, 2020Updated 5 years ago