Alternatives and similar repositories for zap-hud

Users that are interested in zap-hud are comparing it to the libraries listed below

• tomdev / teh_s3_bucketeers
  ☆275Updated 3 years ago
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements.
  ☆158Updated 4 months ago
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆353Updated 4 years ago
• OWASP / DVSA
  a Damn Vulnerable Serverless Application
  ☆541Updated last year
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 9 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆177Updated 2 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆103Updated last year
• zaproxy / zap-extensions
  ZAP Add-ons
  ☆874Updated this week
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆139Updated last year
• secdec / adapt
  ADAPT is a tool that performs automated Penetration Testing for WebApps.
  ☆190Updated 5 years ago
• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆830Updated 3 weeks ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆326Updated 3 years ago
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆266Updated 4 years ago
• juice-shop / pwning-juice-shop
  Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"
  ☆229Updated last week
• anshumanbh / brutesubs
  An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
  ☆258Updated 3 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆454Updated 6 years ago
• Grunny / zap-cli
  A simple tool for interacting with OWASP ZAP from the commandline.
  ☆239Updated 2 years ago
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆282Updated 2 weeks ago
• zaproxy / zaproxy-website
  The source of ZAP website
  ☆72Updated this week
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆181Updated 6 months ago
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆537Updated 7 years ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆207Updated last year
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆521Updated 2 years ago
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆563Updated 2 years ago
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆250Updated last month
• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆656Updated 4 years ago
• szski / shapeshifter
  GraphQL security testing tool
  ☆122Updated 3 years ago
• 0xhelloworld-dev / public
  stuff i'm willing to share with the world lol
  ☆170Updated 2 years ago
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 5 years ago
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆126Updated 2 years ago