SAP-archive / node-rasp
An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such as SQL and NoSQL injection as well as path traversal attacks.
☆31Updated 3 years ago
Alternatives and similar repositories for node-rasp:
Users that are interested in node-rasp are comparing it to the libraries listed below
- This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…☆30Updated 5 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆44Updated 9 months ago
- Burp Suite extension for JAX-RS☆65Updated 8 years ago
- PIOF - PHP Instrumentation Open Framework - A dynamic and modular instrumentation framework for PHP language.☆9Updated 6 years ago
- Generic SAST Library☆130Updated 4 months ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆36Updated 5 years ago
- ☆70Updated 7 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆34Updated 8 years ago
- Tainted PhantomJS☆53Updated 9 years ago
- JWT fuzzer☆105Updated 6 years ago
- A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.☆33Updated 8 years ago
- ☆52Updated 9 months ago
- Nodejs application intentionally vulnerable to SSRF☆41Updated last year
- ☆80Updated 12 years ago
- Fuzz testing: Beginner's guide☆76Updated 11 months ago
- ☆46Updated 8 years ago
- ☆123Updated 3 years ago
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆60Updated 7 years ago
- A static analysis API for finding deserialization attack gadgets☆38Updated 2 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆122Updated 7 years ago
- Another web fuzzer written in NodeJS☆58Updated 6 years ago
- Deprecated: Please visit https://github.com/github/codeql instead.☆81Updated 2 years ago
- Exploitation challenges for CTF☆62Updated 7 years ago
- A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications☆72Updated 10 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆50Updated 7 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆49Updated 2 years ago
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆50Updated 7 years ago
- ☆17Updated 6 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆44Updated 11 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆138Updated 4 years ago