• Stars
    star
    713
  • Rank 63,511 (Top 2 %)
  • Language
    JavaScript
  • License
    Apache License 2.0
  • Created almost 10 years ago
  • Updated about 1 year ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A collection of ZAP scripts provided by the community - pull requests very welcome!

community-scripts

A collection of ZAP scripts provided by the community, i.e. you lot :)

The easiest way to use this repo in ZAP is to install the 'Community Scripts' add-on from the ZAP Marketplace.

If you might want to contribute to the repo then you can also clone it to a local directory and then add that to ZAP using the Options / Scripts screen.

Please upload your scripts via pull requests!

For more information on ZAP scripts see:

To discuss any aspect of ZAP scripting please join the zaproxy-scripts group: http://groups.google.com/group/zaproxy-scripts

Note: For .py scripts to be visible, you must have the Python Scripting add-on installed. Same with Ruby, Kotlin, etc.

Please ensure that scripts submitted have the correct extension for the language they are written in.

All scripts in the repo are released under the Apache v2.0 licence.

You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0

By submitting your scripts to this repo you are releasing them under the Apache v2.0 licence, however you may optionally also release them under more lenient licenses via comments in the scripts.

Building

This project uses Gradle to build the ZAP add-on, simply run:

./gradlew build

in the main directory of the project, the add-on will be placed in the directory build/zapAddOn/bin/.

Official Videos

Note that there are videos for some of the specific script types linked from the relevant READMEs.

More Repositories

1

zaproxy

The ZAP core project
Java
11,390
star
2

zap-extensions

ZAP Add-ons
Java
767
star
3

action-baseline

A GitHub Action for running the OWASP ZAP Baseline scan
JavaScript
267
star
4

zap-hud

The OWASP ZAP Heads Up Display (HUD)
Java
248
star
5

action-full-scan

A GitHub Action for running the OWASP ZAP Full scan
JavaScript
215
star
6

zap-core-help

The help files for the ZAP core
HTML
199
star
7

zap-api-python

ZAP Python API
Python
159
star
8

zest

Java
91
star
9

zap-api-go

ZAP Go API
Go
55
star
10

zaproxy-website

The source of OWASP ZAP website
HTML
50
star
11

zap-api-java

ZAP Java API
Java
41
star
12

zap-api-nodejs

JavaScript
38
star
13

zap-api-dotnet

ZAP Dot NET API
C#
34
star
14

action-api-scan

A GitHub Action for running the OWASP ZAP API scan
JavaScript
32
star
15

zap-api-docs

ZAP API Documentation
JavaScript
26
star
16

zap-admin

ZAP Admin
Java
23
star
17

action-af

A GitHub Action for running ZAP Automation Framework plans
JavaScript
15
star
18

fuzzdb-offensive

OWASP ZAP add-on containing the web-backdoors and attack files from FuzzDB
PHP
15
star
19

zaproxy-test

ZAP test code
Java
14
star
20

front-end-tracker

JavaScript
14
star
21

zaproxy.github.io

ZAP Website
HTML
14
star
22

zap-swag

Artwork for all official ZAP swag - posters, stickers, t-shirts etc
13
star
23

zap-api-rust

Rust
12
star
24

browser-extension

TypeScript
8
star
25

auth-examples

A set of authentication and session management examples
3
star
26

addon-java

Template repository for ZAP add-ons written in Java
Java
2
star
27

gradle-plugin-add-on

A Gradle plugin to (help) build ZAP add-ons
Java
2
star
28

zap-libs

Libraries required by ZAP and its add-ons that we dont want to store in the other repos
2
star
29

zap-core-help-fil_PH

The help files for the OWASP ZAP core - Filipino
1
star
30

zap-api-php

1
star
31

gradle-plugin-crowdin

A Gradle plugin to integrate with Crowdin.
Java
1
star
32

cla

ZAP Contributor License Agreement files
1
star