zaproxy / zap-extensions
ZAP Add-ons
☆865Updated last week
Alternatives and similar repositories for zap-extensions:
Users that are interested in zap-extensions are comparing it to the libraries listed below
- A collection of ZAP scripts and tips provided by the community - pull requests very welcome!☆825Updated 3 weeks ago
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆653Updated 4 years ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆880Updated 5 months ago
- REST/JSON API to the Burp Suite security tool.☆558Updated 11 months ago
- The ZAP Heads Up Display (HUD)☆263Updated 2 months ago
- Finds unknown classes of injection vulnerabilities☆672Updated last week
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,856Updated 2 weeks ago
- OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.☆529Updated 4 years ago
- Web application security scanner created by lcamtuf for google - Unofficial Mirror☆706Updated 2 years ago
- A Powerful Subdomain Takeover Tool☆948Updated last year
- ☆2,256Updated last year
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,720Updated 11 months ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆472Updated last year
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆625Updated last year
- ZAP Python API☆191Updated 3 weeks ago
- This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.☆414Updated 3 years ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,400Updated 3 months ago
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆543Updated 7 years ago
- The XSS Hunter service - a portable version of XSSHunter.com☆1,518Updated 2 years ago
- Subdomain Takeover tool written in Go☆1,960Updated last year
- The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.☆1,203Updated 2 months ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,074Updated 4 months ago
- Setup script for Regon-ng☆929Updated 4 years ago
- dnsenum is a perl script that enumerates DNS information☆634Updated 5 years ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,229Updated last year
- ☆983Updated last week
- GoLismero - The Web Knife☆875Updated 4 years ago
- A script to enumerate virtual hosts on a server.☆687Updated 7 years ago
- ☆582Updated last year
- A simple tool for interacting with OWASP ZAP from the commandline.☆234Updated last year