Topic: dast Goto Github
Some thing interesting about dast
Some thing interesting about dast
dast,xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
Organization: alipay
Home Page: https://xastbenchmark.github.io
dast,Automated Security testing using ZAP Python API. This can be used with any functional UI automation tool.
User: amitkulkarni9
dast,⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.
Organization: analysis-tools-dev
Home Page: https://analysis-tools.dev
dast,(in)secure git workshop 🔓+🔑 = 🔐
User: arainho
dast,Examples of different vulnerabilities, in a variety of languages, shapes and sizes.
User: arall
dast,:zap: Fast Web Security Scanner written in Rust based on Lua Scripts :waning_gibbous_moon: :crab:
Organization: bugblocker
Home Page: https://lotus.knas.me
dast,Lotus Lua Scripts is a repository containing a collection of Lua scripts designed to scan for various vulnerabilities.
Organization: bugblocker
dast,VulnAPI is an open-source project designed to help you scan your APIs for common security vulnerabilities and weaknesses.
Organization: cerberauth
Home Page: https://vulnapi.cerberauth.com
dast,CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.
Organization: clouddefenseai
Home Page: https://clouddefense.ai
dast,OWASP PTK - application security browser extension.
User: denispodgurskii
Home Page: https://pentestkit.co.uk/
dast,Collection of roadmaps, tools, best practice, resources about DevSecOps
User: erdemozgen
dast,Automatic DevSecOps builder
User: erdemozgen
dast,run summary report of nuclei findings
User: fadhilthomas
dast,run summary report of owasp zap findings
User: fadhilthomas
dast,Sample Python script for automating WebInspect scans and pushing results to SSC
Organization: fortify
dast,How to secure your development pipeline with static application security test (SAST) / Dynamic application security test (DAST), software composition analysis (SCA) using Sonarqube.
Organization: hack23
Home Page: https://www.youtube.com/watch?v=A_hq2Y03d6I
dast,Security tools report parsers for Faradaysec.com
Organization: infobyte
Home Page: https://www.faradaysec.com/
dast,Exemplo de workflow de segurança que realiza testes SAST, SCA, DAST, Secrets Scan e IaC Scan via GitHub Actions utilizando ferramentas open source.
User: jmessiass
dast,Jenkins Pipeline for security scanning with owasp zap
User: k11h-de
dast,Continuation of the ZAP Neonmarker add-on previously by Juha Kivekäs
User: kingthorin
dast,SecHub provides a central API to test software with different security tools.
Organization: mercedes-benz
Home Page: https://mercedes-benz.github.io/sechub/
dast,An implementation of infrastructure-as-code scanning using dynamic tooling.
User: ncc-erik-steringer
dast,An ongoing & curated collection of awesome vulnerability scanning software, libraries and frameworks, best guidelines and technical resources and most important dynamic application security testing (DAST)
User: paulveillard
dast,An ongoing & curated collection of awesome vulnerability scanning software, libraries and frameworks, best guidelines, technical resources and most important static application security testing (SAST)
User: paulveillard
dast,Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.
Organization: portswigger
Home Page: https://portswigger.net/burp/dastardly
dast,Probely's GitHub Action
Organization: probely
Home Page: https://probely.com
dast,Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
Organization: projectdiscovery
dast,OWASP ZAP add-on for finding vulnerabilities in File Upload functionality.
Organization: sasanlabs
dast,Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple static/dynamic scans
Organization: secdec
dast,The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
Organization: secdec
dast,The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
Organization: secdec
dast,Udemy Course on DevSecOps
User: sidd-harth
dast,SOOS DAST - The affordable no limit web vulnerability scanner
Organization: soos-io
Home Page: https://hub.docker.com/r/soosio/dast
dast,Cross-platform test harness that assists the user in searching for vulnerabilities in web browsers, specifically by fuzzing their font parsing functionality.
User: tartaruslabs
dast,Suite of web browser fuzzing tools aimed at optimising code coverage. Test case generation from a built-in Context-Free Grammar, mutation fuzzing from a corpus of scraped web pages, DOM fuzzing and more.
User: tartaruslabs
dast,A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
Organization: we45
Home Page: https://threatplaybook.io
dast,A GitHub Action for running the ZAP API scan
Organization: zaproxy
dast,A GitHub Action for running the ZAP Baseline scan
Organization: zaproxy
dast,A GitHub Action for running the ZAP Full scan
Organization: zaproxy
dast,ZAP Add-ons
Organization: zaproxy
dast,The ZAP core project
Organization: zaproxy
Home Page: https://www.zaproxy.org
dast,Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with very limited false positives.
Organization: zigrin-security
Home Page: https://zigrin.com/tools/cake-fuzzer/
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.