Contrast-Security-OSS / NodeTestBenchLinks
Intentionally Vulnerable Node Applications
☆16Updated 5 years ago
Alternatives and similar repositories for NodeTestBench
Users that are interested in NodeTestBench are comparing it to the libraries listed below
Sorting:
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated last year
- A zoo for malicious NPM packages☆20Updated 3 years ago
- Externalize Java application access to protected resources as log messages.☆43Updated last month
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 3 years ago
- Automate security tests using Burp Suite.☆232Updated last year
- ☆16Updated 7 years ago
- A Node.js vulnerability finding tool.☆96Updated 4 months ago
- Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.☆80Updated 6 years ago
- flask-webgoat is a deliberately-vulnerable application written with the Flask web framework.☆20Updated 3 months ago
- Mobile Security testing Framework☆41Updated 7 years ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 5 years ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 4 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆227Updated last year
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆155Updated last year
- Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆209Updated last year
- a javascript static security analysis tool☆591Updated 10 years ago
- The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…☆66Updated 5 years ago
- Container Security and Serverless Training☆13Updated 3 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- eslintrc.js config files for running static analysis on JavaScript to identify security issues.☆63Updated 5 years ago
- BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.☆159Updated 7 months ago
- Java Observability Toolkit☆62Updated last year
- Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.☆24Updated 3 years ago
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆403Updated 8 years ago
- Web Application Security☆129Updated last year
- Purposely vulnerable Java application to help lead secure coding workshops☆191Updated last year
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆149Updated 5 years ago
- An invoice management application built on the MEAN stack with intentional vulnerabilities used to demonstrate insecure configurations an…☆16Updated 5 years ago
- An application to catch, search and analyze HTTP secure headers.☆64Updated 4 years ago