Alternatives and similar repositories for zap-hud

Users that are interested in zap-hud are comparing it to the libraries listed below

• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆352Updated 4 years ago
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆268Updated 4 years ago
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements.
  ☆157Updated 2 months ago
• tomdev / teh_s3_bucketeers
  ☆275Updated 3 years ago
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆560Updated 2 years ago
• OWASP / OWASP-VWAD
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆879Updated 6 months ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆453Updated 6 years ago
• tprynn / web-methodology
  Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
  ☆203Updated 6 months ago
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆279Updated last month
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆179Updated 4 months ago
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆189Updated 3 years ago
• zaproxy / zaproxy-website
  The source of ZAP website
  ☆72Updated this week
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆175Updated 2 years ago
• zaproxy / zap-api-docs
  ZAP API Documentation
  ☆35Updated this week
• anshumanbh / brutesubs
  An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
  ☆258Updated 3 years ago
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆517Updated last year
• 0xSearches / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆143Updated 2 years ago
• juice-shop / multi-juicer
  Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
  ☆285Updated last week
• zaproxy / zap-api-python
  ZAP Python API
  ☆192Updated last week
• prodigysml / Dr.-Watson
  Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…
  ☆215Updated 5 years ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆191Updated 4 years ago
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 9 years ago
• jobertabma / transformations
  ☆173Updated 2 years ago
• NotSoSecure / cloud-service-enum
  ☆248Updated 10 months ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆535Updated 2 years ago
• security-prince / Resources-for-Application-Security
  Some good resources for getting started with application security
  ☆142Updated 3 years ago
• koenbuyens / Vulnerable-OAuth-2.0-Applications
  vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
  ☆316Updated last year
• riramar / hsecscan
  A security scanner for HTTP response headers.
  ☆300Updated 3 months ago
• zaproxy / zap-extensions
  ZAP Add-ons
  ☆868Updated this week
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆399Updated 2 years ago