Checkmarx / JS-SCPLinks
JavaScript Secure Coding Practices guide
☆180Updated 3 years ago
Alternatives and similar repositories for JS-SCP
Users that are interested in JS-SCP are comparing it to the libraries listed below
Sorting:
- Curated list of public penetration testing reports released by several consulting firms☆48Updated 7 years ago
- Some thoughts on how Node.js might respond to a changing security environment☆173Updated 6 years ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 3 years ago
- eslintrc.js config files for running static analysis on JavaScript to identify security issues.☆62Updated 4 years ago
- Documentation for Essential Node.js Security☆97Updated 2 years ago
- A list of ReDoS vulnerabilities in npm modules found by the Software Lab at TU Darmstadt. For each vulnerability, there is a proof-of-con…☆59Updated 7 years ago
- The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…☆98Updated 11 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- TLS Redirection☆120Updated 7 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆63Updated 2 years ago
- Mobile Security testing Framework☆41Updated 6 years ago
- Extreme Vulnerable Node Application☆95Updated 6 years ago
- Content for OWASP Summit 2017 site☆128Updated 4 years ago
- ☆35Updated 3 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆138Updated 5 years ago
- The help files for the ZAP core☆201Updated last week
- Cure53 Browser Security White Paper☆296Updated 7 years ago
- Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...☆426Updated 4 years ago
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆139Updated 11 months ago
- OWASP Serverless Top 10☆217Updated 3 years ago
- A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.☆163Updated 5 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆102Updated 6 years ago
- Content released at NorthSec 2018 for my talk on prototype pollution☆531Updated last year
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated last year
- Code repository for Mastering Modern Web Penetration Testing, published by Packt☆72Updated 2 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- Files for appsecwiki.com☆117Updated 4 years ago
- Another web fuzzer written in NodeJS☆58Updated 6 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆194Updated 6 years ago