zaproxy
Vulnerability scanner
Automatically finds security vulnerabilities in web applications during development and testing.
The ZAP by Checkmarx Core project
13k stars
398 watching
2k forks
Language: Java
last commit: over 1 year ago
Linked from 10 awesome lists
appsecdasthacktoberfestsecuritysecurity-scannerzapzap-developmentzaproxy
ziadoz/awesome-php
luong-komorebi/awesome-linux-software
carpedm20/awesome-hacking
sbilly/awesome-security
infoslack/awesome-web-hacking
vavkamil/awesome-bugbounty-tools
yosriady/awesome-api-devtools
thejambo/awesome-testing
jakobthedev/awesome-devsecops
guardrailsio/awesome-java-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
| zaproxy/zap-api-nodejs | A Node.js wrapper for the ZAP API, allowing developers to interact with the ZAP (Zed Attack Proxy) vulnerability scanner from within a JavaScript application. | 47 |
 kdzwinel/betwixt | Analyzes web traffic outside the browser using Chrome DevTools interface | 4,542 |
 xmendez/wfuzz | A tool to automatically generate and test web application inputs for security vulnerabilities | 5,978 |
 htr-tech/zphisher | A phishing tool designed to simulate and educate about online security threats | 11,646 |
 klzgrad/naiveproxy | A system designed to disguise and protect internet traffic from censorship and surveillance by leveraging Chrome's network stack | 6,775 |
 gosecure/csp-auditor | Analyzes and configures website security policies to prevent malicious scripts from running on user devices. | 138 |
 gauravnarwani97/trishul | Automated vulnerability detection tool for web applications | 235 |
 owasp/nettacker | Automated tool for identifying vulnerabilities and gathering information about network services and systems. | 3,700 |
 secdec/attack-surface-detector-burp | Identifies web app endpoints and parameters to help detect vulnerabilities | 98 |
 arachni/arachni | A modular web application security scanner framework that integrates browser environments and can adjust to dynamic applications | 3,804 |
 warxim/petep | An application for creating proxies to analyze and modify traffic between clients and servers. | 187 |
 alexandreborges/malwoverview | A tool for analyzing malware and threat intelligence data from multiple sources | 3,012 |
 zt2/sqli-hunter | A tool that automates the process of detecting and exploiting SQL injection vulnerabilities in web applications. | 425 |
 zigoo0/jsonbee | Automated tool to discover and generate bypass payloads for Content Security Policy (CSP) restrictions on web pages | 678 |
 andresriancho/w3af | A tool to identify and exploit vulnerabilities in web applications. | 4,613 |