Alternatives and similar repositories for NodeGoat

Users that are interested in NodeGoat are comparing it to the libraries listed below

• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆757Updated last year
• ajinabraham / nodejsscan
  nodejsscan is a static security code scanner for Node.js applications.
  ☆2,542Updated 3 months ago
• jesusprubio / strong-node
  More than 100 security checks for your Node.js API
  ☆510Updated last year
• eslint-community / eslint-plugin-security
  ESLint rules for Node Security
  ☆2,321Updated 3 weeks ago
• jesusprubio / awesome-nodejs-pentest
  Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...
  ☆426Updated 4 years ago
• OWASP / SecurityShepherd
  Web and mobile application security training platform
  ☆1,422Updated 3 months ago
• nodesecurity / nsp
  node security platform command-line tool
  ☆1,653Updated 7 years ago
• RetireJS / retire.js
  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
  ☆4,063Updated 2 weeks ago
• OWASP / OWASP-VWAD
  This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
  ☆884Updated last month
• snyk-labs / nodejs-goof
  Super vulnerable todo list application
  ☆535Updated 2 weeks ago
• lirantal / essential-nodejs-security-book
  Documentation for Essential Node.js Security
  ☆96Updated 3 years ago
• cr0hn / vulnerable-node
  A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…
  ☆482Updated last year
• blabla1337 / skf-flask
  Security Knowledge Framework (SKF) Python Flask / Angular project
  ☆827Updated last year
• OWASP / DevGuide
  The OWASP Developer Guide
  ☆2,139Updated last week
• owtf / owtf
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,923Updated 2 weeks ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆422Updated last year
• zaproxy / community-scripts
  A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
  ☆867Updated this week
• nodejs / security-wg
  Node.js Ecosystem Security Working Group
  ☆534Updated last week
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆398Updated 3 years ago
• OWASP / API-Security
  OWASP API Security Project
  ☆2,237Updated last month
• virajkulkarni14 / WebDeveloperSecurityChecklist
  A checklist of important security issues you should consider when creating a web application.
  ☆422Updated 4 years ago
• psiinon / bodgeit
  The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
  ☆281Updated last year
• OWASP / ASVS
  Application Security Verification Standard
  ☆3,326Updated last week
• OWASP / Docker-Security
  Getting a handle on container security
  ☆677Updated 2 years ago
• google / firing-range
  ☆1,404Updated 5 years ago
• mike-goodwin / owasp-threat-dragon
  An open source, online threat modelling tool from OWASP
  ☆484Updated 6 months ago
• cure53 / H5SC
  HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
  ☆2,996Updated 3 years ago
• 0xRadi / OWASP-Web-Checklist
  OWASP Web Application Security Testing Checklist
  ☆2,085Updated 3 years ago
• krakenjs / lusca
  Application security for express apps.
  ☆1,783Updated last year
• flipkart-incubator / Astra
  Automated Security Testing For REST API's
  ☆2,634Updated last year