zaproxy / community-scripts
A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
☆789Updated last week
Related projects ⓘ
Alternatives and complementary repositories for community-scripts
- ZAP Add-ons☆840Updated this week
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆873Updated 3 weeks ago
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,821Updated 3 weeks ago
- Application Security Automation☆522Updated last year
- Discover Your Attack Surface!☆1,362Updated 2 years ago
- A simple tool for interacting with OWASP ZAP from the commandline.☆229Updated last year
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆632Updated 3 years ago
- REST/JSON API to the Burp Suite security tool.☆547Updated 5 months ago
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,112Updated 5 years ago
- Setup script for Regon-ng☆923Updated 4 years ago
- The ZAP Heads Up Display (HUD)☆253Updated last week
- Subdomain Takeover tool written in Go☆1,911Updated last year
- ☆2,183Updated 11 months ago
- Easy automated vulnerability scanning, reporting and analysis☆696Updated 4 years ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆731Updated 2 years ago
- Cloudflare DNS Enumeration Tool for Pentesters☆516Updated 2 years ago
- OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.☆523Updated 4 years ago
- This project is about creating and publishing threat model examples.☆409Updated 3 years ago
- SimplE RePort wrIting and COllaboration tool☆1,093Updated 4 years ago
- ZAP Python API☆181Updated last week
- Vulnerability scanner based on vulners.com search API☆834Updated 7 months ago
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆532Updated 7 years ago
- Exploits written by the Rhino Security Labs team☆1,059Updated 3 years ago
- BDD Automated Security Tests for Web Applications☆562Updated 2 years ago
- A collection of AWS penetration testing junk☆1,173Updated last year
- A security scanner for HTTP response headers.☆294Updated last year
- Security Knowledge Framework (SKF) Python Flask / Angular project☆813Updated 8 months ago
- Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.☆720Updated 8 months ago
- WeirdAAL (AWS Attack Library)☆781Updated last year
- Tool to search secrets in various filetypes.☆977Updated last year