137 Open source projects that are alternatives of or similar to kube-owasp-zap

OWASP Zed Attack Proxy project landing page.

Integrates OWASP Zed Attack Proxy reports into SonarQube

The OWASP ZAP core project

Machine Learning WAF Based

Examples of using Uber's zap Go logging library

This repository for training application security.

The plugins of go2sky

apache 2.x.x module, for CSRF mitigation

bWAPP latest modified for PHP7

completely ridiculous API (crAPI)

OWASP ZAP add-on for finding vulnerabilities in File Upload functionality.

Some good resources for getting started with application security

Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).

a template project of gin app.

Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects

OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions

Demo - how to easily build security testing for Web App, using Zap and Glue

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation

Run Capture the Flags and Security Trainings with OWASP Juice Shop

Structured JSON logging Go libraries benchmark

OWASP ZAP addon for finding vulnerabilities in JWT Implementations

CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.

The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens

三大王日志,一款开箱即用且高效,快捷,安全的golang日志,基于uber zap

Example application

OWASP Coraza middleware for Caddy. It provides Web Application Firewall capabilities

🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment

Web Application Secure Coding Handbook resource.

Framework for Testing WAFs (FTW!)

⚡ Delightful AppImage package manager

This is the Azure Kubernetes Service (AKS) baseline cluster for regulated workloads reference implementation as produced by the Microsoft Azure Architecture Center.

No description or website provided.

Blazing fast, structured, leveled logging in Go.

A place for documenting threats and mitigations related to containers orchestrators (Kubernetes, Swarm etc)

mod: zap logging in golang

The OWASP Vulnerable Web Applications Directory (VWAD) Project - OWASP Web Site

Golang Clean Architecture REST API example

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

Deploy, update, and stage your WAFs while managing them centrally via FMS.

Additional Resources For Securing The Stack Tutorials

Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects

OWASP Code Review Guide Web Repository

This is the official main repository for the Assimilation project

Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects

A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

The repo contains all the slide deck that was used during my presentation at various webinars, conferences, and meetups.

Documentation for Essential Node.js Security

An application to catch, search and analyze HTTP secure headers.

Creates CycloneDX Software Bill of Materials (SBOM) from Python projects and environments.

A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.

The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.

Software Component Verification Standard (SCVS)

Prints Stackdriver format logs with zap.

Pentester's Tools Parser (PTP) provides an unified way to retrieve the information from all (final goal) automated pentesting tools and assign an automated ranking for each finding.

Vendor-Neutral Security Tool Automation Controller (over REST)

POC about usage of JSON Web Tokens (JWT) in a secure way.

util toolkit for go.golang 通用函数包

A web application that contains several unit tests for the purpose of .NET security

Test your Security Skills, and Clean Code Development as a Pythonist, Hacker & Warrior 🥷🏻