The ZAP core project
-
Updated
May 14, 2024 - Java
The ZAP core project
⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.
ZAP Add-ons
A GitHub Action for running the ZAP Baseline scan
A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
A GitHub Action for running the ZAP Full scan
SecHub provides a central API to test software with different security tools.
xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.
OWASP PTK - application security browser extension.
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with very limited false positives.
⚡ Fast Web Security Scanner written in Rust based on Lua Scripts 🌖 🦀
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
An implementation of infrastructure-as-code scanning using dynamic tooling.
Curated list of security tools
CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.
A GitHub Action for running the ZAP API scan
Add a description, image, and links to the dast topic page so that developers can more easily learn about it.
To associate your repository with the dast topic, visit your repo's landing page and select "manage topics."