Alternatives and similar repositories for zap-hud:

Users that are interested in zap-hud are comparing it to the libraries listed below

• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆174Updated 2 years ago
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆349Updated 4 years ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆189Updated 4 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆101Updated last year
• zaproxy / zaproxy-website
  The source of ZAP website
  ☆72Updated this week
• tomdev / teh_s3_bucketeers
  ☆275Updated 3 years ago
• anshumanbh / brutesubs
  An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
  ☆257Updated 3 years ago
• Grunny / zap-cli
  A simple tool for interacting with OWASP ZAP from the commandline.
  ☆233Updated last year
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆505Updated last year
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆247Updated last year
• Santandersecurityresearch / DrHeader
  drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
  ☆110Updated 2 months ago
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆225Updated 9 months ago
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆121Updated 2 years ago
• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆815Updated last week
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆268Updated 4 years ago
• jobertabma / transformations
  ☆173Updated 2 years ago
• zaproxy / zap-api-python
  ZAP Python API
  ☆189Updated this week
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆176Updated 2 months ago
• szski / shapeshifter
  GraphQL security testing tool
  ☆122Updated 2 years ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆274Updated 2 years ago
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆397Updated 4 years ago
• tprynn / web-methodology
  Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
  ☆202Updated 4 months ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆134Updated last year
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 9 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆452Updated 5 years ago
• koenbuyens / Vulnerable-OAuth-2.0-Applications
  vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
  ☆310Updated 11 months ago
• NotSoSecure / cloud-service-enum
  ☆244Updated 8 months ago
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆557Updated 2 years ago
• zaproxy / zap-api-docs
  ZAP API Documentation
  ☆35Updated this week
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆299Updated 4 years ago