#

dast

Here are 10 public repositories matching this topic...

zaproxy / zaproxy

Star

Open

Passive scan rule for generating script SRIs

12

psiinon commented Mar 11, 2020

The rule would raise info alerts for each script it found along with the integrety hash, as per
https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity

This could just work on URLs that are in scope - it would just be useful when you're trying to create a CSP for a specific site.

Read more

IdealFirstBug enhancement good first issue

Open

Include in Context from file

2

Open

ZAP docker scripts do not take context into account while scanning

5

Find more good first issues →

zaproxy / zap-extensions

Star

OWASP ZAP Add-ons

security zap owasp appsec owasp-zap security-scanner dast zaproxy

Updated Jun 13, 2020
Java

gatlindada / awvs-decode

Star

The best and easiest way to decode and repack AWVS scripts. AWVS 最好、最简单、最新的解码/再打包方法，仅15行代码！

Updated Apr 14, 2020
Python

we45 / ThreatPlaybook

Star

A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration

python application-security threat-model devsecops sast dast

Updated Jun 7, 2020
HTML

secdec / attack-surface-detector-burp

Star

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

security vulnerability pentesting dast

Updated Feb 8, 2019
Java

secdec / attack-surface-detector-zap

Star

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

security vulnerability pentesting dast

Updated Mar 8, 2019
Java

secdec / astam-correlator

Star

Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple static/dynamic scans

security asp vulnerability pentesting sast dast astam-correlator vulnerability-consolidation

Updated Apr 13, 2019
Java

jangelesg / DAST-BlackBox-tool

Star

zap proxy w3af dast

Updated Apr 28, 2017

whitespots / docs

Star

Gitbook

security-audit application-security appsec security-automation dependency-checker sast dast security-assesment

Updated Jun 1, 2020

Hack23 / talks

Star

How to secure your development pipeline with static application security test (SAST) / Dynamic application security test (DAST), software composition analysis (SCA) using Sonarqube.

maven sonarqube sca devsecops sast dast

Updated Sep 20, 2019

Improve this page

Add a description, image, and links to the dast topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the dast topic, visit your repo's landing page and select "manage topics."

You can’t perform that action at this time.