28 results found Sort:
- Filter by Primary Language:
- Java (7)
- JavaScript (6)
- Go (3)
- Python (3)
- Rust (1)
- Dockerfile (1)
- Shell (1)
- HCL (1)
- HTML (1)
- Markdown (1)
- +
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...
Created
2020-04-03
5,448 commits to dev branch, last one a day ago
The ZAP by Checkmarx Core project
Created
2015-06-03
9,723 commits to main branch, last one 4 days ago
⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.
Created
2018-05-26
583 commits to master branch, last one 15 days ago
ZAP Add-ons
Created
2015-05-07
13,413 commits to main branch, last one a day ago
A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
Created
2015-01-02
724 commits to main branch, last one 25 days ago
xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
Created
2022-12-26
189 commits to main branch, last one 22 days ago
A GitHub Action for running the ZAP Baseline scan
Created
2020-03-06
186 commits to master branch, last one 12 days ago
A GitHub Action for running the ZAP Full scan
Created
2020-04-09
132 commits to master branch, last one 12 days ago
A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
Created
2018-04-29
256 commits to master branch, last one 4 years ago
SecHub provides a central API to test software with different security tools.
Created
2019-07-22
4,758 commits to develop branch, last one 4 days ago
Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.
Created
2022-10-17
8 commits to main branch, last one about a year ago
OWASP PTK - application security browser extension.
Created
2021-06-12
86 commits to master branch, last one 4 months ago
Sasori is a dynamic web crawler powered by Puppeteer, designed for lightning-fast endpoint discovery.
Created
2023-11-11
156 commits to master branch, last one 4 months ago
⚡️ Multiple target ZAP Scanning
Created
2020-08-22
94 commits to master branch, last one about a year ago
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
Created
2018-03-30
47 commits to master branch, last one 5 years ago
Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with very limited false positives.
Created
2023-03-30
48 commits to main branch, last one 11 months ago
API Security Vulnerability Scanner designed to help you secure your APIs.
Created
2023-08-22
411 commits to main branch, last one a day ago
Udemy Course on DevSecOps
Created
2021-06-03
26 commits to main branch, last one about a year ago
:zap: Fast Web Security Scanner written in Rust based on Lua Scripts :waning_gibbous_moon: :crab:
Created
2022-09-05
562 commits to master branch, last one 2 months ago
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
Created
2018-03-30
94 commits to master branch, last one 5 years ago
Curated list of security tools
Created
2020-10-17
5 commits to main branch, last one about a year ago
An implementation of infrastructure-as-code scanning using dynamic tooling.
Created
2022-01-04
36 commits to main branch, last one 2 years ago
A GitHub Action for running the ZAP API scan
Created
2021-08-03
72 commits to main branch, last one 12 days ago
Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
This repository has been archived
(exclude archived)
Created
2022-10-11
44 commits to main branch, last one 7 months ago
Security tools report parsers for Faradaysec.com
Created
2019-10-31
2,031 commits to master branch, last one 11 days ago
CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable v...
Created
2020-05-16
221 commits to master branch, last one 8 months ago
《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.
Created
2022-01-17
9 commits to main branch, last one 2 years ago
Application security best practices and code implementations for Java developers. This project is intended for didactic purposes only, supporting my training course.
csp
sca
cors
dast
jwks
sast
api-security
password-flow
json-web-key-set
security-logging
security-testing
oauth-grant-types
token-introspection
java-process-security
authorization-code-flow
client-credentials-flow
roles-based-access-control
security-design-principles
authorization-code-flow-with-pkce
Created
2024-10-09
52 commits to main branch, last one 5 days ago