This is your work, valued
open-source-web-scanners. A list of open source web security scanners
1.6kbodgeit. The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
286open-source-llm-scanners.
108owasp-top-10-top-10s.
37owasp-projects.
33zaproxy. The OWASP ZAP core project
7pwning-juice-shop. GitBook markdown content for the eBook "Pwning OWASP Juice Shop"
2zap-hud. The OWASP ZAP Heads Up Display (HUD)
2zaproxy-release. Test mirroe
2minion-garmr. plugin service, plugin spec, and garmr plugin for minion
2DevSecOpsGuideline. The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.
1skf-www. Public Website of SKF
1Benchmark. The OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. As it is written in Java, it supports Java Static Analysis Security Testing Tools (SAST). It’s also a fully runnable web application, so it supports Dynamic Analysis Security Testing Tools (DAST), like OWASP ZAP, and Interactive Analysis Security Testing Tools (IAST) that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
1security-crawl-maze. Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link resources from a valid HTML document.
1blurts-server. Prototyping for upcoming Breach Alerts feature in Firefox
1addons-server. 🕶 addons.mozilla.org Django app and API 🎉
1puppet. Server automation framework and application
1websec-check. repo and tooling for https://wiki.mozilla.org/Security/FirefoxOperations#Security_Checklist
1contributor_covenant. Pledge your respect and appreciation for contributors of all kinds to your open source project.
1Hacking-Tools-Repository. A list of security/hacking tools that have been collected from the internet. Suggestions are welcomed.
1browser-extension-1. A Out of the Box 🎁 Browser Extension Template with support for React, Typescript, Preact
1zap-plugin. The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
1foxsec-tools. Tooling to support common tasks, particularly for working with metrics
1cii-best-practices-badge. Core Infrastructure Initiative Best Practices Badge
1find-package-rugaru. Tools for finding suspicious werewolf / rugaru / rougarou-like packages
1packman. A documentation and tracking project with the goal of making package management systems more secure.
1jnats. A Java client for NATS
1iprepd. Centralized IP reputation daemon
1dependency-observatory. Mozilla's Dependency Observatory
1oss2019. Open Security Summit 2019
1owasp-swag. Swag for the OWASP projects and chapters
1bedrock. Making mozilla.org awesome, one pebble at a time
1zap-auth-dt. ZAP Auth Decision Tree - temp test repo
1owasp-summit-2017. Content for OWASP Summit 2017 site
1zap-media-resources.
1zap-extensions. OWASP ZAP Add-ons
1Plug-n-Hack. Stuff relating to Plug-n-Hack; documents, browser independent scripts, tests, etc.
1homebrew-cask. A CLI workflow for the administration of Mac applications distributed as binaries
1