Alternatives and similar repositories for zap-extensions

Users that are interested in zap-extensions are comparing it to the libraries listed below

• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆831Updated 3 weeks ago
• OWASP / OWASP-VWAD
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆880Updated 8 months ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆687Updated last month
• zaproxy / zap-api-python
  ZAP Python API
  ☆195Updated this week
• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆656Updated 4 years ago
• bugcrowd / HUNT
  ☆2,265Updated last year
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆265Updated 4 months ago
• owtf / owtf
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,875Updated 2 weeks ago
• spinkham / skipfish
  Web application security scanner created by lcamtuf for google - Unofficial Mirror
  ☆712Updated 2 years ago
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,739Updated last year
• jhaddix / domain
  Setup script for Regon-ng
  ☆932Updated 4 years ago
• SecurityInnovation / AuthMatrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆629Updated last year
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆537Updated 7 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆474Updated 2 years ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,418Updated 5 months ago
• vulnersCom / burp-vulners-scanner
  Vulnerability scanner based on vulners.com search API
  ☆858Updated last year
• wireghoul / dotdotpwn
  DotDotPwn - The Directory Traversal Fuzzer
  ☆1,061Updated 2 years ago
• nahamsec / HostileSubBruteforcer
  ☆472Updated 4 years ago
• epsylon / xsser
  Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…
  ☆1,324Updated 9 months ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,528Updated 2 years ago
• maK- / parameth
  This tool can be used to brute discover GET and POST parameters
  ☆1,374Updated 5 years ago
• nahamsec / JSParser
  ☆815Updated last year
• PortSwigger / http-request-smuggler
  ☆998Updated last week
• gbrindisi / xsssniper
  An automatic XSS discovery tool
  ☆403Updated 7 years ago
• appsecco / bugcrowd-levelup-subdomain-enumeration
  This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
  ☆633Updated 6 years ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,979Updated last year
• ajinabraham / OWASP-Xenotix-XSS-Exploit-Framework
  OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.
  ☆532Updated 5 years ago
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,088Updated 6 months ago
• wireghoul / graudit
  grep rough audit - source code auditing tool
  ☆1,621Updated last month
• payloadbox / open-redirect-payload-list
  🎯 Open Redirect Payload List
  ☆599Updated 11 months ago