zaproxy / zap-hudLinks
The ZAP Heads Up Display (HUD)
☆264Updated 4 months ago
Alternatives and similar repositories for zap-hud
Users that are interested in zap-hud are comparing it to the libraries listed below
Sorting:
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆353Updated 4 years ago
- The Secure Coding Framework☆268Updated 4 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆176Updated 2 years ago
- ☆275Updated 3 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆103Updated last year
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆279Updated last week
- The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…☆98Updated 11 years ago
- secretz, minimizing the large attack surface of Travis CI☆325Updated 3 years ago
- ☆173Updated 2 years ago
- OWASP Testing Guide☆110Updated 9 years ago
- Automate security tests using Burp Suite.☆226Updated 11 months ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆539Updated 2 years ago
- The source of ZAP website☆72Updated this week
- Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…☆215Updated 5 years ago
- A simple SSRF-testing sheriff written in Go☆327Updated 7 months ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆249Updated 3 weeks ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆455Updated 6 years ago
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆209Updated 7 months ago
- A simple web app that helps developers understand the ASVS requirements.☆158Updated 3 months ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆306Updated 6 years ago
- Damn Vulnerable Java (EE) Application☆138Updated last year
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆880Updated 7 months ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆258Updated 3 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆180Updated 6 years ago
- Zap baseline scanner in Docker with authentication☆103Updated last year
- Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆206Updated 11 months ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆519Updated 2 years ago
- ZAP Add-ons☆872Updated this week
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆561Updated 2 years ago
- SSRF testing tool☆244Updated 2 years ago