Alternatives and similar repositories for NodeGoat:

Users that are interested in NodeGoat are comparing it to the libraries listed below

• cr0hn / vulnerable-node
  A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…
  ☆458Updated 6 months ago
• ajinabraham / nodejsscan
  nodejsscan is a static security code scanner for Node.js applications.
  ☆2,431Updated last month
• lirantal / awesome-nodejs-security
  Awesome Node.js Security resources
  ☆2,776Updated 2 weeks ago
• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆714Updated 10 months ago
• OWASP / SecurityShepherd
  Web and mobile application security training platform
  ☆1,368Updated 7 months ago
• jesusprubio / awesome-nodejs-pentest
  Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...
  ☆423Updated 3 years ago
• eslint-community / eslint-plugin-security
  ESLint rules for Node Security
  ☆2,249Updated this week
• OWASP / DevGuide
  The OWASP Guide
  ☆2,050Updated last year
• nodesecurity / nsp
  node security platform command-line tool
  ☆1,666Updated 6 years ago
• OWASP / OWASP-VWAD
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆877Updated 3 months ago
• RetireJS / retire.js
  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
  ☆3,768Updated last month
• blabla1337 / skf-flask
  Security Knowledge Framework (SKF) Python Flask / Angular project
  ☆815Updated 11 months ago
• OWASP / ASVS
  Application Security Verification Standard
  ☆2,837Updated this week
• OWASP / SecureCodingDojo
  The Secure Coding Dojo is a platform for delivering secure coding knowledge.
  ☆562Updated last month
• cr0hn / nosqlinjection_wordlists
  This repository contains payload to test NoSQL Injections
  ☆355Updated 3 years ago
• owtf / owtf
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,844Updated 2 months ago
• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆809Updated 2 weeks ago
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆398Updated 2 years ago
• zaproxy / zap-extensions
  ZAP Add-ons
  ☆857Updated this week
• jesusprubio / strong-node
  More than 100 security checks for your Node.js API
  ☆506Updated 9 months ago
• tanprathan / OWASP-Testing-Checklist
  OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and p…
  ☆1,547Updated 2 years ago
• snyk / cli
  Snyk CLI scans and monitors your projects for security vulnerabilities.
  ☆5,027Updated this week
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆386Updated 3 months ago
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆521Updated 6 years ago
• bugcrowd / bugcrowd_university
  Open source education content for the researcher community
  ☆2,658Updated 2 years ago
• zaproxy / zap-core-help
  The help files for the ZAP core
  ☆201Updated 2 weeks ago
• OWASP / glue
  Application Security Automation
  ☆527Updated last year
• OWASP / API-Security
  OWASP API Security Project
  ☆2,110Updated last month
• juice-shop / juice-shop-ctf
  Tool to export Juice Shop challenges and hints in data format compatible with CTFd, RootTheBox or FBCTF
  ☆416Updated this week
• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆646Updated 3 years ago