Alternatives and similar repositories for zap-hud

Users that are interested in zap-hud are comparing it to the libraries listed below

• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆267Updated 5 years ago
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements.
  ☆159Updated 6 months ago
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆183Updated this week
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆274Updated 2 years ago
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆534Updated 2 years ago
• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆842Updated 2 weeks ago
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆252Updated 2 years ago
• OWASP / DVSA
  a Damn Vulnerable Serverless Application
  ☆541Updated last year
• zaproxy / zap-extensions
  ZAP Add-ons
  ☆890Updated this week
• dxa4481 / truffleHogRegexes
  These are the regexes that power truffleHog
  ☆218Updated 2 years ago
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆355Updated 4 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆484Updated 2 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆181Updated 2 years ago
• Santandersecurityresearch / DrHeader
  drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
  ☆110Updated 7 months ago
• juice-shop / pwning-juice-shop
  Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"
  ☆229Updated this week
• Grunny / zap-cli
  A simple tool for interacting with OWASP ZAP from the commandline.
  ☆242Updated 2 years ago
• OWASP / OWASP-VWAD
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆880Updated last week
• tomdev / teh_s3_bucketeers
  ☆276Updated 3 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆104Updated last year
• dsopas / assessment-mindset
  Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
  ☆745Updated 3 years ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated last year
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆182Updated 6 years ago
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆564Updated 2 years ago
• shenril / owasp-asvs-checklist
  OWASP ASVS checklist for audits
  ☆207Updated last year
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆124Updated last year
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆128Updated 2 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆544Updated 2 years ago
• secdec / adapt
  ADAPT is a tool that performs automated Penetration Testing for WebApps.
  ☆191Updated 5 years ago
• zaproxy / zaproxy-website
  The source of ZAP website
  ☆73Updated this week
• oshp / headers
  An application to catch, search and analyze HTTP secure headers.
  ☆65Updated 4 years ago