28 results found Sort:
- Filter by Primary Language:
- Java (8)
- JavaScript (6)
- Go (3)
- Python (3)
- Dockerfile (1)
- Shell (1)
- HCL (1)
- Markdown (1)
- Rust (1)
- +
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...
Created
2020-04-03
5,476 commits to dev branch, last one 4 days ago
The ZAP by Checkmarx Core project
Created
2015-06-03
9,770 commits to main branch, last one 5 days ago
⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.
Created
2018-05-26
595 commits to master branch, last one 7 days ago
ZAP Add-ons
Created
2015-05-07
13,590 commits to main branch, last one 8 hours ago
A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
Created
2015-01-02
730 commits to main branch, last one 5 days ago
xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
Created
2022-12-26
194 commits to main branch, last one 17 days ago
A GitHub Action for running the ZAP Baseline scan
Created
2020-03-06
186 commits to master branch, last one about a month ago
SecHub provides a central API to test software with different security tools.
Created
2019-07-22
4,879 commits to develop branch, last one 3 days ago
A GitHub Action for running the ZAP Full scan
Created
2020-04-09
132 commits to master branch, last one about a month ago
A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
Created
2018-04-29
256 commits to master branch, last one 4 years ago
Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.
Created
2022-10-17
8 commits to main branch, last one about a year ago
OWASP PTK - application security browser extension.
Created
2021-06-12
86 commits to master branch, last one 5 months ago
Sasori is a dynamic web crawler powered by Puppeteer, designed for lightning-fast endpoint discovery.
Created
2023-11-11
156 commits to master branch, last one 5 months ago
API Security Vulnerability Scanner designed to help you secure your APIs.
Created
2023-08-22
434 commits to main branch, last one 5 days ago
⚡️ Multiple target ZAP Scanning
Created
2020-08-22
94 commits to master branch, last one about a year ago
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
Created
2018-03-30
47 commits to master branch, last one 5 years ago
Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with very limited false positives.
Created
2023-03-30
48 commits to main branch, last one about a year ago
Udemy Course on DevSecOps
Created
2021-06-03
26 commits to main branch, last one about a year ago
:zap: Fast Web Security Scanner written in Rust based on Lua Scripts :waning_gibbous_moon: :crab:
Created
2022-09-05
584 commits to master branch, last one 29 days ago
Curated list of security tools
Created
2020-10-17
5 commits to main branch, last one about a year ago
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
Created
2018-03-30
94 commits to master branch, last one 5 years ago
An implementation of infrastructure-as-code scanning using dynamic tooling.
Created
2022-01-04
36 commits to main branch, last one 2 years ago
Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
This repository has been archived
(exclude archived)
Created
2022-10-11
44 commits to main branch, last one 8 months ago
A GitHub Action for running the ZAP API scan
Created
2021-08-03
72 commits to main branch, last one about a month ago
Security tools report parsers for Faradaysec.com
Created
2019-10-31
2,031 commits to master branch, last one about a month ago
《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.
Created
2022-01-17
9 commits to main branch, last one 2 years ago
CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable v...
Created
2020-05-16
221 commits to master branch, last one 9 months ago
Application security best practices and code implementations for Java developers. This project is intended for didactic purposes only, supporting my training course.
csp
sca
cors
dast
jwks
sast
api-security
password-flow
json-web-key-set
security-logging
security-testing
oauth-grant-types
token-introspection
java-process-security
authorization-code-flow
client-credentials-flow
roles-based-access-control
security-design-principles
authorization-code-flow-with-pkce
Created
2024-10-09
52 commits to main branch, last one about a month ago