SAP-archive / node-raspLinks
An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such as SQL and NoSQL injection as well as path traversal attacks.
☆31Updated 4 years ago
Alternatives and similar repositories for node-rasp
Users that are interested in node-rasp are comparing it to the libraries listed below
Sorting:
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated 11 months ago
- Deprecated: Please visit https://github.com/github/codeql instead.☆81Updated 3 years ago
- Generic SAST Library☆131Updated 6 months ago
- A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.☆34Updated 8 years ago
- Burp Suite extension for JAX-RS☆65Updated 8 years ago
- This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…☆30Updated 5 years ago
- ☆46Updated 9 years ago
- ☆70Updated 7 years ago
- PIOF - PHP Instrumentation Open Framework - A dynamic and modular instrumentation framework for PHP language.☆9Updated 6 years ago
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆60Updated 8 years ago
- ☆123Updated 3 years ago
- A Java serializer in JavaScript☆81Updated 7 years ago
- A front-end JavaScript toolkit for creating DNS rebinding attacks.☆45Updated 6 years ago
- A static analysis API for finding deserialization attack gadgets☆38Updated 2 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆138Updated 5 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆34Updated 8 years ago
- ☆19Updated 6 years ago
- Burp Suite plugin which implement PyJFuzz for fuzzing web application.☆56Updated 8 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆50Updated 8 years ago
- A Chrome extension static analysis tool to help aide in security reviews.☆154Updated last year
- Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …☆118Updated 10 years ago
- Exploit PoC for Spring RCE issue (CVE-2011-2894)☆43Updated last year
- X41 BeanStack - Stack Trace Fingerprinting BETA☆52Updated 4 years ago
- Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and…☆75Updated 7 years ago
- Tainted PhantomJS☆52Updated 9 years ago
- Scripts and auxiliary files for fuzzing PHP's unserialize function☆44Updated 7 years ago
- Immunio's XSS Fuzzer tool☆25Updated 9 years ago
- Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls☆42Updated 9 years ago
- Web Input Vector Extractor Teaser☆132Updated 3 years ago
- Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro☆53Updated 11 years ago