SAP-archive / node-rasp
An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such as SQL and NoSQL injection as well as path traversal attacks.
☆31Updated 3 years ago
Alternatives and similar repositories for node-rasp:
Users that are interested in node-rasp are comparing it to the libraries listed below
- Generic SAST Library☆130Updated 4 months ago
- This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…☆30Updated 5 years ago
- A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.☆33Updated 8 years ago
- ☆17Updated 6 years ago
- ☆70Updated 7 years ago
- Burp Suite extension for JAX-RS☆65Updated 8 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆36Updated 5 years ago
- ☆123Updated 3 years ago
- PIOF - PHP Instrumentation Open Framework - A dynamic and modular instrumentation framework for PHP language.☆9Updated 6 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆44Updated 9 months ago
- ☆80Updated 12 years ago
- Extension adds a new tab in Burp Suite called Extractor☆43Updated 5 years ago
- Tainted PhantomJS☆53Updated 9 years ago
- A Node.js vulnerability finding tool.☆96Updated 4 years ago
- Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.☆23Updated 2 years ago
- Scripts and auxiliary files for fuzzing PHP's unserialize function☆43Updated 7 years ago
- Deprecated: Please visit https://github.com/github/codeql instead.☆81Updated 2 years ago
- A front-end JavaScript toolkit for creating DNS rebinding attacks.☆45Updated 6 years ago
- A Chrome extension static analysis tool to help aide in security reviews.☆153Updated last year
- Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.☆48Updated 4 years ago
- Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale☆17Updated 3 years ago
- Firefox extension which parses the headers of all the requests which are being flowing through your firefox browser to detect for vulnera…☆61Updated 6 years ago
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆50Updated 7 years ago
- A dashboard for interesting DOM tricks/techniques.☆36Updated 4 years ago
- HTML5 WebSocket message fuzzer☆144Updated 6 years ago
- ☆84Updated 8 years ago
- Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and…☆75Updated 6 years ago
- CapFuzz - capture, fuzz & intercept web traffic.☆64Updated 5 years ago
- A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.☆43Updated 4 years ago
- Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …☆119Updated 10 years ago