Alternatives and similar repositories for zap-extensions:

Users that are interested in zap-extensions are comparing it to the libraries listed below

• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆825Updated 3 weeks ago
• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆653Updated 4 years ago
• OWASP / OWASP-VWAD
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆880Updated 5 months ago
• vmware / burp-rest-api
  REST/JSON API to the Burp Suite security tool.
  ☆558Updated 11 months ago
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆263Updated 2 months ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆672Updated last week
• owtf / owtf
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,856Updated 2 weeks ago
• ajinabraham / OWASP-Xenotix-XSS-Exploit-Framework
  OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.
  ☆529Updated 4 years ago
• spinkham / skipfish
  Web application security scanner created by lcamtuf for google - Unofficial Mirror
  ☆706Updated 2 years ago
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆948Updated last year
• bugcrowd / HUNT
  ☆2,256Updated last year
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,720Updated 11 months ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆472Updated last year
• SecurityInnovation / AuthMatrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆625Updated last year
• zaproxy / zap-api-python
  ZAP Python API
  ☆191Updated 3 weeks ago
• NetSPI / xssValidator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆414Updated 3 years ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,400Updated 3 months ago
• jobertabma / ground-control
  A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
  ☆543Updated 7 years ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,518Updated 2 years ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,960Updated last year
• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,203Updated 2 months ago
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,074Updated 4 months ago
• jhaddix / domain
  Setup script for Regon-ng
  ☆929Updated 4 years ago
• fwaeytens / dnsenum
  dnsenum is a perl script that enumerates DNS information
  ☆634Updated 5 years ago
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,229Updated last year
• PortSwigger / http-request-smuggler
  ☆983Updated last week
• golismero / golismero
  GoLismero - The Web Knife
  ☆875Updated 4 years ago
• jobertabma / virtual-host-discovery
  A script to enumerate virtual hosts on a server.
  ☆687Updated 7 years ago
• nahamsec / lazys3
  ☆582Updated last year
• Grunny / zap-cli
  A simple tool for interacting with OWASP ZAP from the commandline.
  ☆234Updated last year