Alternatives and similar repositories for NodeGoat

Users that are interested in NodeGoat are comparing it to the libraries listed below

• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆756Updated last year
• RetireJS / retire.js
  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
  ☆4,035Updated last week
• cr0hn / vulnerable-node
  A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…
  ☆481Updated last year
• lirantal / awesome-nodejs-security
  Awesome Node.js Security resources
  ☆2,967Updated 2 months ago
• ajinabraham / nodejsscan
  nodejsscan is a static security code scanner for Node.js applications.
  ☆2,535Updated 2 months ago
• jesusprubio / strong-node
  More than 100 security checks for your Node.js API
  ☆511Updated last year
• jesusprubio / awesome-nodejs-pentest
  Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...
  ☆426Updated 4 years ago
• OWASP / SecurityShepherd
  Web and mobile application security training platform
  ☆1,418Updated 2 months ago
• OWASP / OWASP-VWAD
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆881Updated last week
• eslint-community / eslint-plugin-security
  ESLint rules for Node Security
  ☆2,314Updated 2 months ago
• lirantal / essential-nodejs-security-book
  Documentation for Essential Node.js Security
  ☆96Updated 2 years ago
• nodesecurity / nsp
  node security platform command-line tool
  ☆1,655Updated 7 years ago
• snyk-labs / nodejs-goof
  Super vulnerable todo list application
  ☆530Updated 3 weeks ago
• blabla1337 / skf-flask
  Security Knowledge Framework (SKF) Python Flask / Angular project
  ☆825Updated last year
• OWASP / DevGuide
  The OWASP Developer Guide
  ☆2,128Updated last week
• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆860Updated 2 weeks ago
• OWASP / Docker-Security
  Getting a handle on container security
  ☆675Updated 2 years ago
• Checkmarx / JS-SCP
  JavaScript Secure Coding Practices guide
  ☆181Updated 4 years ago
• owtf / owtf
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,905Updated 2 weeks ago
• google / firing-range
  ☆1,404Updated 5 years ago
• zaproxy / zap-extensions
  ZAP Add-ons
  ☆906Updated this week
• ESAPI / node-esapi
  A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.
  ☆139Updated 3 years ago
• psiinon / bodgeit
  The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
  ☆278Updated last year
• OWASP / glue
  Application Security Automation
  ☆523Updated 2 years ago
• OWASP / ASVS
  Application Security Verification Standard
  ☆3,272Updated 2 weeks ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆419Updated last year
• juice-shop / juice-shop-ctf
  Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF
  ☆458Updated last month
• 0xRadi / OWASP-Web-Checklist
  OWASP Web Application Security Testing Checklist
  ☆2,036Updated 3 years ago
• webpwnized / mutillidae
  OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is…
  ☆1,446Updated 4 months ago
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆395Updated 3 years ago