Alternatives and similar repositories for NPM-Vuln-PoC

Users that are interested in NPM-Vuln-PoC are comparing it to the libraries listed below

• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35Updated 5 years ago
• rafaybaloch / SOP-Bypass-Mini-Test-Suite
  This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…
  ☆30Updated 5 years ago
• olivo / redos-detector
  A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.
  ☆34Updated 8 years ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆70Updated 7 years ago
• asmyczek / popcorn
  Popcorn - the JSON fuzzer
  ☆22Updated 10 years ago
• 0xSobky / Regaxor
  A regular expression fuzzer.
  ☆43Updated 7 years ago
• LewisArdern / eslint-plugin-prototype-pollution-security-rules
  ☆16Updated 6 years ago
• ajinabraham / libsast
  Generic SAST Library
  ☆131Updated 6 months ago
• ettic-team / EndpointFinder
  ☆52Updated 11 months ago
• SAP-archive / node-rasp
  An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such …
  ☆31Updated 4 years ago
• mandatoryprogrammer / tarnish
  A Chrome extension static analysis tool to help aide in security reviews.
  ☆154Updated last year
• br3akp0int / GQLParser
  A repository for GraphQL Extension for Burp Suite
  ☆57Updated 6 years ago
• SeanHeelan / funserialize
  Scripts and auxiliary files for fuzzing PHP's unserialize function
  ☆44Updated 7 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆50Updated 7 years ago
• Nhoya / PastebinMarkdownXSS
  XSS in pastebin.com and reddit.com via unsanitized markdown output
  ☆88Updated 7 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆138Updated 5 years ago
• Ingenuity-Fainting-Goats / piof
  PIOF - PHP Instrumentation Open Framework - A dynamic and modular instrumentation framework for PHP language.
  ☆9Updated 6 years ago
• dariusztytko / progress-burp
  Burp Suite extension to track vulnerability assessment progress
  ☆59Updated 5 years ago
• pownjs / cdb
  Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …
  ☆73Updated 3 years ago
• cgvwzq / css-scrollbar-attack
  PoC for leaking text nodes via CSS injection
  ☆35Updated 6 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆35Updated 5 years ago
• Techlord-RCE / dns-rebind-toolkit
  A front-end JavaScript toolkit for creating DNS rebinding attacks.
  ☆45Updated 6 years ago
• wisec / DOMinator
  ☆79Updated 12 years ago
• RootUp / PHDays9
  My fuzzing workshop from PHDays9
  ☆26Updated 5 years ago
• ka0labs / ctf-writeups
  CTF Writeups
  ☆26Updated 5 years ago
• sethsec / Nodejs-SSRF-App
  Nodejs application intentionally vulnerable to SSRF
  ☆41Updated 2 years ago
• neraliu / tainted-phantomjs
  Tainted PhantomJS
  ☆52Updated 9 years ago
• Contrast-Security-OSS / NodeTestBench
  Intentionally Vulnerable Node Applications
  ☆16Updated 5 years ago
• abhisek / pwnworks
  Exploitation challenges for CTF
  ☆63Updated 7 years ago