zaproxy / zap-hudLinks
The ZAP Heads Up Display (HUD)
☆268Updated 6 months ago
Alternatives and similar repositories for zap-hud
Users that are interested in zap-hud are comparing it to the libraries listed below
Sorting:
- The Secure Coding Framework☆267Updated 5 years ago
- A simple web app that helps developers understand the ASVS requirements.☆159Updated 6 months ago
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆183Updated this week
- The DevSecOps toolset for REST APIs☆274Updated 2 years ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆534Updated 2 years ago
- A collection of ZAP scripts and tips provided by the community - pull requests very welcome!☆842Updated 2 weeks ago
- Check any website (or set of websites) for insecure security headers.☆252Updated 2 years ago
- a Damn Vulnerable Serverless Application☆541Updated last year
- ZAP Add-ons☆890Updated this week
- These are the regexes that power truffleHog☆218Updated 2 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆355Updated 4 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆484Updated 2 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆181Updated 2 years ago
- drHEADer helps with the audit of security headers received in response to a single request or a list of requests.☆110Updated 7 months ago
- Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"☆229Updated this week
- A simple tool for interacting with OWASP ZAP from the commandline.☆242Updated 2 years ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆880Updated last week
- ☆276Updated 3 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆104Updated last year
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆745Updated 3 years ago
- Zap baseline scanner in Docker with authentication☆103Updated last year
- A starter secure code review checklist☆182Updated 6 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆564Updated 2 years ago
- OWASP ASVS checklist for audits☆207Updated last year
- ☆124Updated last year
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆128Updated 2 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆544Updated 2 years ago
- ADAPT is a tool that performs automated Penetration Testing for WebApps.☆191Updated 5 years ago
- The source of ZAP website☆73Updated this week
- An application to catch, search and analyze HTTP secure headers.☆65Updated 4 years ago