Alternatives and similar repositories for NPM-Vuln-PoC:

Users that are interested in NPM-Vuln-PoC are comparing it to the libraries listed below

• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• LewisArdern / eslint-plugin-prototype-pollution-security-rules
  ☆16Updated 6 years ago
• rafaybaloch / SOP-Bypass-Mini-Test-Suite
  This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…
  ☆30Updated 5 years ago
• ajinabraham / libsast
  Generic SAST Library
  ☆131Updated 5 months ago
• SeanHeelan / funserialize
  Scripts and auxiliary files for fuzzing PHP's unserialize function
  ☆43Updated 7 years ago
• mandatoryprogrammer / tarnish
  A Chrome extension static analysis tool to help aide in security reviews.
  ☆154Updated last year
• Ingenuity-Fainting-Goats / piof
  PIOF - PHP Instrumentation Open Framework - A dynamic and modular instrumentation framework for PHP language.
  ☆9Updated 6 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆36Updated 5 years ago
• pownjs / cdb
  Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …
  ☆73Updated 3 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆35Updated 5 years ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆70Updated 7 years ago
• Techlord-RCE / dns-rebind-toolkit
  A front-end JavaScript toolkit for creating DNS rebinding attacks.
  ☆45Updated 6 years ago
• 0xSobky / Regaxor
  A regular expression fuzzer.
  ☆43Updated 7 years ago
• ReconJSON / ReconJSON
  ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.
  ☆102Updated 6 years ago
• olivo / redos-detector
  A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.
  ☆34Updated 8 years ago
• wrmelicher / ChromiumTaintTracking
  ☆17Updated 6 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆50Updated 7 years ago
• mariussteffens / pmforce
  Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale
  ☆17Updated 3 years ago
• pentagridsec / 5-AFL-suite-docker
  Dockerfile for AFL++ and helpful other tools
  ☆21Updated 4 years ago
• cgvwzq / css-scrollbar-attack
  PoC for leaking text nodes via CSS injection
  ☆36Updated 6 years ago
• SAP-archive / node-rasp
  An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such …
  ☆31Updated 3 years ago
• jfrancois / SDBF
  Smart DNS Brute Forcer
  ☆22Updated 12 years ago
• andresriancho / jwt-fuzzer
  JWT fuzzer
  ☆106Updated 6 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆138Updated 4 years ago
• Greenwolf / eslint-security-scanner-configs
  eslintrc.js config files for running static analysis on JavaScript to identify security issues.
  ☆62Updated 4 years ago
• ouspg / fuzz-testing-beginners-guide
  Fuzz testing: Beginner's guide
  ☆76Updated last year
• br3akp0int / GQLParser
  A repository for GraphQL Extension for Burp Suite
  ☆57Updated 6 years ago
• pwntester / dotnet-deserialization-scanner
  .NET Deserialization Passive Scanner
  ☆45Updated 7 years ago
• BSidesSF / ctf-2019-release
  BSidesSF CTF 2019 release
  ☆71Updated 2 years ago
• abhisek / pwnworks
  Exploitation challenges for CTF
  ☆63Updated 7 years ago