zaproxy / zap-hudLinks
The ZAP Heads Up Display (HUD)
☆269Updated last week
Alternatives and similar repositories for zap-hud
Users that are interested in zap-hud are comparing it to the libraries listed below
Sorting:
- Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"☆230Updated last week
- The Secure Coding Framework☆267Updated 5 years ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆129Updated 2 years ago
- These are the regexes that power truffleHog☆218Updated 2 years ago
- The DevSecOps toolset for REST APIs☆276Updated 2 years ago
- A simple web app that helps developers understand the ASVS requirements.☆159Updated 6 months ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆181Updated 2 years ago
- A simple tool for interacting with OWASP ZAP from the commandline.☆243Updated 2 years ago
- A collection of ZAP scripts and tips provided by the community - pull requests very welcome!☆846Updated 2 weeks ago
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆184Updated 3 weeks ago
- The OWASP SecureTea Project provides a one-stop security solution for various devices (personal computers / servers / IoT devices)☆298Updated last year
- ☆276Updated 3 years ago
- The source of ZAP website☆75Updated this week
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆357Updated 4 years ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆881Updated 2 weeks ago
- a Damn Vulnerable Serverless Application☆541Updated 2 years ago
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆212Updated 10 months ago
- ☆124Updated last year
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆547Updated 2 years ago
- OWASP Testing Guide☆110Updated 9 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆106Updated last year
- Some good resources for getting started with application security☆142Updated 4 years ago
- OWASP ASVS checklist for audits☆208Updated last year
- Host and manage multiple Juice Shop instances for security trainings and Capture The Flags☆292Updated this week
- portscanner in javascript☆69Updated 4 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆459Updated 6 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆562Updated 2 years ago
- ZAP Add-ons☆895Updated this week
- ☆173Updated 2 years ago
- materials we hand out☆147Updated 2 months ago