zaproxy / zap-extensions

Related projects ⓘ

Alternatives and complementary repositories for zap-extensions

• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆789Updated last week
• OWASP / OWASP-VWAD
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆873Updated 3 weeks ago
• wireghoul / dotdotpwn
  DotDotPwn - The Directory Traversal Fuzzer
  ☆989Updated 2 years ago
• owtf / owtf
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,821Updated 3 weeks ago
• vulnersCom / burp-vulners-scanner
  Vulnerability scanner based on vulners.com search API
  ☆834Updated 7 months ago
• ajinabraham / OWASP-Xenotix-XSS-Exploit-Framework
  OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.
  ☆523Updated 4 years ago
• fwaeytens / dnsenum
  dnsenum is a perl script that enumerates DNS information
  ☆610Updated 5 years ago
• intrigueio / intrigue-core
  Discover Your Attack Surface!
  ☆1,362Updated 2 years ago
• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆632Updated 3 years ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆637Updated last year
• bugcrowd / HUNT
  ☆2,183Updated 11 months ago
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,201Updated 11 months ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,911Updated last year
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆253Updated last week
• PortSwigger / http-request-smuggler
  ☆958Updated 11 months ago
• OWASP / O-Saft
  O-Saft - OWASP SSL advanced forensic tool
  ☆373Updated this week
• mandatoryprogrammer / cloudflare_enum
  Cloudflare DNS Enumeration Tool for Pentesters
  ☆516Updated 2 years ago
• SecurityInnovation / AuthMatrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆614Updated 8 months ago
• nccgroup / LoggerPlusPlus
  Advanced Burp Suite Logging Extension
  ☆630Updated 5 months ago
• jobertabma / ground-control
  A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
  ☆532Updated 7 years ago
• breenmachine / httpscreenshot
  ☆634Updated last month
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,037Updated 4 months ago
• zaproxy / zap-core-help
  The help files for the ZAP core
  ☆200Updated this week
• OWASP / www-project-web-security-testing-guide
  The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and secu…
  ☆448Updated 3 weeks ago
• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,107Updated 3 weeks ago
• darkoperator / dnsrecon
  DNS Enumeration Script
  ☆2,641Updated this week
• jhaddix / domain
  Setup script for Regon-ng
  ☆923Updated 4 years ago
• OWASP / OWASP-WebScarab
  OWASP WebScarab
  ☆605Updated 3 years ago
• Quitten / Autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆960Updated 3 weeks ago
• SerpicoProject / Serpico
  SimplE RePort wrIting and COllaboration tool
  ☆1,093Updated 4 years ago