zaproxy/community-scripts external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

zaproxy/community-scripts

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/zaproxy/community-scripts)

Close

zaproxy / community-scriptsView on GitHubMore

• External links
• Readme badge

A collection of ZAP scripts and tips provided by the community - pull requests very welcome!

☆869Apr 1, 2026Updated last week

Alternatives and similar repositories for community-scripts

Users that are interested in community-scripts are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• zaproxy / zap-extensions

  View on GitHub
  ZAP Add-ons
  ☆922Apr 2, 2026Updated last week
• zaproxy / zap-hud

  View on GitHub
  The ZAP Heads Up Display (HUD)
  ☆272Dec 23, 2025Updated 3 months ago
• zaproxy / zap-admin

  View on GitHub
  ZAP Admin
  ☆31Updated this week
• zaproxy / zaproxy

  View on GitHub
  The ZAP by Checkmarx Core project
  ☆14,962Updated this week
• jfoote / burp-git-bridge

  View on GitHub
  Store Burp data and collaborate via git
  ☆53Oct 31, 2019Updated 6 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• zaproxy / zaproxy-website

  View on GitHub
  The source of ZAP website
  ☆79Updated this week
• zaproxy / zap-api-docs

  View on GitHub
  ZAP API Documentation
  ☆39Apr 3, 2026Updated last week
• tomsteele / burpbuddy

  View on GitHub
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆158Nov 29, 2018Updated 7 years ago
• owtf / owtf

  View on GitHub
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,930Apr 2, 2026Updated last week
• zaproxy / zap-swag

  View on GitHub
  Artwork for all official ZAP swag - posters, stickers, t-shirts etc
  ☆14Mar 7, 2024Updated 2 years ago
• zaproxy / zaproxy-test

  View on GitHub
  ZAP test code
  ☆14May 7, 2015Updated 10 years ago
• sepehrdaddev / zap-scripts

  View on GitHub
  Zed Attack Proxy Scripts for finding CVEs and Secrets.
  ☆128Jun 2, 2022Updated 3 years ago
• zaproxy / zap-core-help

  View on GitHub
  The help files for the ZAP core
  ☆202Apr 1, 2026Updated last week
• salesforce / vulnreport

  View on GitHub
  Open-source pentesting management and automation platform by Salesforce Product Security
  ☆601Feb 12, 2022Updated 4 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• silentsignal / burp-image-size

  View on GitHub
  Image size issues plugin for Burp Suite
  ☆95Jun 27, 2018Updated 7 years ago
• juliocesarfort / public-pentesting-reports

  View on GitHub
  A list of public penetration test reports published by several consulting firms and academic security groups.
  ☆9,481Mar 22, 2026Updated 2 weeks ago
• bugcrowd / HUNT

  View on GitHub
  ☆2,321Dec 8, 2023Updated 2 years ago
• zaproxy / zap-api-go

  View on GitHub
  ZAP Go API
  ☆62Jul 2, 2024Updated last year
• 1N3 / IntruderPayloads

  View on GitHub
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,912Sep 27, 2021Updated 4 years ago
• vmware-archive / burp-rest-api

  View on GitHub
  REST/JSON API to the Burp Suite security tool.
  ☆562Jul 14, 2025Updated 8 months ago
• infobyte / faraday

  View on GitHub
  Open Source Vulnerability Management Platform
  ☆6,324Feb 13, 2026Updated last month
• Grunny / zap-cli

  View on GitHub
  A simple tool for interacting with OWASP ZAP from the commandline.
  ☆257May 22, 2023Updated 2 years ago
• commixproject / commix

  View on GitHub
  Automated All-in-One OS Command Injection Exploitation Tool
  ☆5,700Apr 4, 2026Updated last week
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• nccgroup / autopwn

  View on GitHub
  Specify targets and run sets of tools against them
  ☆387Apr 23, 2019Updated 6 years ago
• marcohextor / BOAST

  View on GitHub
  BOAST is a server designed to receive and report Out-of-Band Application Security Testing (OAST) reactions.
  ☆64Mar 7, 2026Updated last month
• RedSiege / EyeWitness

  View on GitHub
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,679Jan 5, 2026Updated 3 months ago
• allfro / BurpKit

  View on GitHub
  Next-gen BurpSuite penetration testing tool
  ☆462Jan 27, 2016Updated 10 years ago
• michenriksen / aquatone

  View on GitHub
  A Tool for Domain Flyovers
  ☆5,921May 22, 2022Updated 3 years ago
• pathetiq / BurpSmartBuster

  View on GitHub
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆378Oct 12, 2020Updated 5 years ago
• OWASP / SecurityShepherd

  View on GitHub
  Web and mobile application security training platform
  ☆1,438Mar 31, 2026Updated last week
• trustedsec / ptf

  View on GitHub
  The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
  ☆5,499Sep 22, 2024Updated last year
• sensepost / DET

  View on GitHub
  (extensible) Data Exfiltration Toolkit (DET)
  ☆827Nov 3, 2017Updated 8 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• moloch-- / CSP-Bypass

  View on GitHub
  A Burp Plugin for Detecting Weaknesses in Content Security Policies
  ☆166May 19, 2023Updated 2 years ago
• owasp-amass / amass

  View on GitHub
  In-depth attack surface mapping and asset discovery
  ☆14,353Apr 1, 2026Updated last week
• andreycha / tangerine

  View on GitHub
  Tool for inspecting Windows Phone applications
  ☆28Jun 7, 2013Updated 12 years ago
• BuffaloWill / Serpico

  View on GitHub
  SimplE RePort wrIting and COllaboration tool
  ☆1,113May 3, 2020Updated 5 years ago
• fuzzdb-project / fuzzdb

  View on GitHub
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆8,869Nov 10, 2023Updated 2 years ago
• jhaddix / tbhm

  View on GitHub
  The Bug Hunters Methodology
  ☆4,273Aug 1, 2023Updated 2 years ago
• praetorian-inc / pyshell

  View on GitHub
  PyShell makes interacting with web-based command injection less painful, emulating the feel of an interactive shell as much as possible.
  ☆256Mar 30, 2017Updated 9 years ago