Alternatives and similar repositories for zap-extensions:

Users that are interested in zap-extensions are comparing it to the libraries listed below

• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆814Updated this week
• owtf / owtf
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,845Updated 3 months ago
• OWASP / OWASP-VWAD
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆878Updated 4 months ago
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆258Updated last month
• spinkham / skipfish
  Web application security scanner created by lcamtuf for google - Unofficial Mirror
  ☆699Updated 2 years ago
• ajinabraham / OWASP-Xenotix-XSS-Exploit-Framework
  OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.
  ☆528Updated 4 years ago
• OWASP / OWASP-WebScarab
  OWASP WebScarab
  ☆607Updated 3 years ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆652Updated last year
• psiinon / bodgeit
  The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
  ☆268Updated 6 months ago
• vmware / burp-rest-api
  REST/JSON API to the Burp Suite security tool.
  ☆553Updated 9 months ago
• epsylon / xsser
  Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…
  ☆1,266Updated 5 months ago
• bugcrowd / HUNT
  ☆2,247Updated last year
• zaproxy / zap-api-python
  ZAP Python API
  ☆189Updated last month
• P0cL4bs / kadimus
  kadimus is a tool to check and exploit lfi vulnerability.
  ☆526Updated 4 years ago
• OWASP / O-Saft
  O-Saft - OWASP SSL advanced forensic tool
  ☆375Updated this week
• Grunny / zap-cli
  A simple tool for interacting with OWASP ZAP from the commandline.
  ☆233Updated last year
• jobertabma / ground-control
  A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
  ☆541Updated 7 years ago
• appsecco / bugcrowd-levelup-subdomain-enumeration
  This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
  ☆634Updated 6 years ago
• vulnersCom / burp-vulners-scanner
  Vulnerability scanner based on vulners.com search API
  ☆847Updated 10 months ago
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,218Updated last year
• SecurityInnovation / AuthMatrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆622Updated 11 months ago
• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆649Updated 4 years ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆202Updated 8 months ago
• golismero / golismero
  GoLismero - The Web Knife
  ☆871Updated 4 years ago
• juice-shop / juice-shop-ctf
  Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF
  ☆417Updated last week
• SerpicoProject / Serpico
  SimplE RePort wrIting and COllaboration tool
  ☆1,095Updated 4 years ago
• jhaddix / domain
  Setup script for Regon-ng
  ☆925Updated 4 years ago
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆526Updated 6 years ago
• chuckfw / owaspbwa
  OWASP Broken Web Applications Project
  ☆301Updated 11 months ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆451Updated 5 years ago