NodeSecure / js-x-rayLinks
JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns π¬.
β268Updated this week
Alternatives and similar repositories for js-x-ray
Users that are interested in js-x-ray are comparing it to the libraries listed below
Sorting:
- Mitigate security concerns of Dependency Confusion supply chain security risksβ51Updated 3 weeks ago
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.β422Updated last year
- Programmatically fetch security vulnerabilities with one or many strategies (NPM Audit, Sonatype, Snyk, Node.js DB).β31Updated this week
- β‘οΈ A package API to run a static analysis of your module's dependencies. This is the CLI engine!β37Updated last week
- Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.β339Updated 4 years ago
- Coverage-guided, in-process fuzzing for Node.jsβ332Updated 2 months ago
- π Normalized repository URLs for every package in the npm registry. Updated daily.β96Updated this week
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registrationβ304Updated 2 weeks ago
- JavaScript security CLI that allow you to deeply analyze the dependency tree of a given package or local Node.js project.β381Updated this week
- Overlay is a browser extension helping developers evaluate open source packages before picking themβ225Updated 7 months ago
- A curated list of awesome browser security learning material.β147Updated 3 years ago
- NodeJS runtime protection for supply chain attacksβ142Updated 3 years ago
- β144Updated 3 years ago
- Find security vulnerabilities in open source npm packages while you codeβ211Updated 3 years ago
- π€ A list of all the public package names on npm. Updated daily.β289Updated this week
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules πβ98Updated last month
- Easy auditing & sandboxing for your JavaScript dependencies πͺ±β253Updated 2 years ago
- A curated list of awesome GraphQL Security frameworks, libraries, software and resourcesβ351Updated last year
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)β61Updated 9 months ago
- A Node.js vulnerability finding tool.β96Updated 6 months ago
- Generic SAST Libraryβ135Updated 7 months ago
- A web client port-scanner written in GO, that supports the WASM/WASI interface for Browser WebAssembly runtime execution.β156Updated 2 years ago
- Focused malicious code detection ruleset, with a high protection-to-noise ratioβ141Updated 11 months ago
- Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.β334Updated last year
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"β212Updated 2 years ago
- A zoo for malicious NPM packagesβ20Updated 3 years ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and versβ¦β135Updated this week
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsβ106Updated last year
- Vulnerability Scan with Nucleiβ277Updated last week
- β226Updated last month