Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 10 Dast Open-Source Projects
-
dynamic-analysis
⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
ThreatPlaybook
A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
-
dastardly-github-action
Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.
-
lotus
:zap: Fast Web Security Scanner written in Rust based on Lua Scripts :waning_gibbous_moon: :crab: (by BugBlocker)
-
cd
CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
owasp-zap-fileupload-addon
OWASP ZAP add-on for finding vulnerabilities in File Upload functionality.
I use ZAP [1] with the OAST add-on for this at the moment. I admit the UX isn't perfect, but it serves my purpose.
If I also want control over the responses (e.g. return a 401 status code for every fifth request), I have a custom extender script [2] for that.
[1]: https://www.zaproxy.org/
They keep the dynamic analysis tools in a separate repository: https://github.com/analysis-tools-dev/dynamic-analysis
Both repos link each other close to the tops of their respective readmes. Annoyingly, though, their dynamic webstite seems to only include the static tools.
Dast related posts
-
Is this fraud? And if so, to what extent am I responsible?
-
How can i make web server from scratch
-
🔒Security Tips for Frontend
-
Is it normal for library security patches to be ignored?
-
How to Become a Pirate Archivist
-
How to Automate OWASP ZAP
-
Is learning Burpsuite worth it?
-
A note from our sponsor - InfluxDB
www.influxdata.com | 14 May 2024
Index
What are some of the best open-source Dast projects? This list will help you:
Project | Stars | |
---|---|---|
1 | ZAP | 12,033 |
2 | dynamic-analysis | 877 |
3 | ThreatPlaybook | 268 |
4 | sechub | 247 |
5 | dastardly-github-action | 216 |
6 | lotus | 65 |
7 | cd | 49 |
8 | faraday_plugins | 45 |
9 | owasp-zap-fileupload-addon | 19 |
10 | soos-dast | 6 |
Sponsored