NodeSecure / js-x-rayLinks
JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
☆253Updated last week
Alternatives and similar repositories for js-x-ray
Users that are interested in js-x-ray are comparing it to the libraries listed below
Sorting:
- Mitigate security concerns of Dependency Confusion supply chain security risks☆48Updated last month
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆406Updated 8 months ago
- 🌍 Normalized repository URLs for every package in the npm registry. Updated daily.☆89Updated this week
- Coverage-guided, in-process fuzzing for Node.js☆313Updated this week
- Programmatically fetch security vulnerabilities with one or many strategies (NPM Audit, Sonatype, Snyk, Node.js DB).☆30Updated this week
- ⚡️ A package API to run a static analysis of your module's dependencies. This is the CLI engine!☆35Updated last week
- NodeJS runtime protection for supply chain attacks☆141Updated 3 years ago
- A curated list of awesome browser security learning material.☆143Updated 2 years ago
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆297Updated this week
- JavaScript security CLI that allow you to deeply analyze the dependency tree of a given package or local Node.js project.☆378Updated this week
- Find security vulnerabilities in open source npm packages while you code☆208Updated 3 years ago
- Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.☆329Updated 10 months ago
- A zoo for malicious NPM packages☆20Updated 2 years ago
- Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.☆332Updated 3 years ago
- A curated list of awesome GraphQL Security frameworks, libraries, software and resources☆340Updated last year
- Collection of security best practices for package managers.☆162Updated 2 years ago
- Easy auditing & sandboxing for your JavaScript dependencies 🪱☆254Updated 2 years ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 3 years ago
- TC39 proposal for mitigating prototype pollution☆47Updated last year
- Use Snow to finally secure your web app's same origin realms!☆115Updated 4 months ago
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆209Updated 2 years ago
- Hands-on practical use of HTTP security headers as browser security controls to help secure web applications☆18Updated 2 years ago
- How GitHub Actions workflows can be hacked☆163Updated 11 months ago
- Snyk Node Runtime Agent☆16Updated 3 years ago
- A pattern for reasonably secure Electron applications☆73Updated 2 years ago
- Generic SAST Library☆132Updated last month
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 6 months ago
- Overlay is a browser extension helping developers evaluate open source packages before picking them☆225Updated last month
- Dependency Combobulator☆93Updated last year
- Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks☆58Updated 3 years ago