OWASP / NodeGoat
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
☆1,935Updated 10 months ago
Alternatives and similar repositories for NodeGoat:
Users that are interested in NodeGoat are comparing it to the libraries listed below
- Damn Vulnerable NodeJS Application☆727Updated last year
- Awesome Node.js Security resources☆2,803Updated this week
- Web and mobile application security training platform☆1,375Updated 9 months ago
- nodejsscan is a static security code scanner for Node.js applications.☆2,461Updated last month
- ESLint rules for Node Security☆2,269Updated last month
- scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.☆3,815Updated last month
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆880Updated 6 months ago
- The OWASP Developer Guide☆2,057Updated this week
- A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…☆465Updated 8 months ago
- The Bug Hunters Methodology☆4,050Updated last year
- More than 100 security checks for your Node.js API☆506Updated last year
- A collection of ZAP scripts and tips provided by the community - pull requests very welcome!☆825Updated 3 weeks ago
- HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors☆2,877Updated 3 years ago
- Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...☆425Updated 3 years ago
- Application Security Automation☆529Updated last year
- OWASP API Security Project☆2,151Updated 3 months ago
- node security platform command-line tool☆1,665Updated 6 years ago
- Official OWASP Top 10 Document Repository☆4,560Updated 5 months ago
- ☆1,398Updated 4 years ago
- Application Security Verification Standard☆2,975Updated this week
- Awesome XSS stuff☆4,898Updated 5 months ago
- Getting a handle on container security☆650Updated last year
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,345Updated 6 months ago
- a javascript static security analysis tool☆589Updated 9 years ago
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆398Updated 5 months ago
- This challenge is Inon Shkedy's 31 days API Security Tips.☆2,121Updated 3 years ago
- Automatically exported from code.google.com/p/domxsswiki☆531Updated 6 years ago
- An open source, online threat modelling tool from OWASP☆483Updated 9 months ago
- grep rough audit - source code auditing tool☆1,603Updated this week
- The XSS Hunter service - a portable version of XSSHunter.com☆1,520Updated 2 years ago