Alternatives and similar repositories for njsscan

Users that are interested in njsscan are comparing it to the libraries listed below

• insidersec / insider
  Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilit…
  ☆540Updated 3 years ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆411Updated 3 weeks ago
• visma-prodsec / confused
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆725Updated 10 months ago
• NodeSecure / js-x-ray
  JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
  ☆252Updated this week
• ajinabraham / libsast
  Generic SAST Library
  ☆131Updated last week
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆474Updated 2 years ago
• ajinabraham / nodejsscan
  nodejsscan is a static security code scanner for Node.js applications.
  ☆2,475Updated last month
• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆737Updated last year
• elttam / semgrep-rules
  ☆196Updated 7 months ago
• PalindromeLabs / awesome-websocket-security
  Awesome information for WebSockets security research
  ☆271Updated 3 years ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆397Updated 7 years ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆381Updated 3 years ago
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆95Updated 4 years ago
• andresriancho / mongo-objectid-predict
  Predict Mongo ObjectIds
  ☆136Updated 7 years ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆205Updated 2 years ago
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆222Updated last year
• semgrep / semgrep-rules
  Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.
  ☆929Updated this week
• trufflesecurity / driftwood
  Private key usage verification
  ☆431Updated 2 months ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆232Updated 10 months ago
• koenbuyens / Vulnerable-OAuth-2.0-Applications
  vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
  ☆316Updated last year
• assetnote / batchql
  GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
  ☆386Updated 2 years ago
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆251Updated 2 years ago
• HoLyVieR / prototype-pollution-nsec18
  Content released at NorthSec 2018 for my talk on prototype pollution
  ☆531Updated last year
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆326Updated 3 years ago
• feeltheajf / trufflehog3
  Find secrets in your codebase
  ☆123Updated 3 months ago
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆327Updated 7 months ago
• dolevf / graphql-cop
  Security Auditor Utility for GraphQL APIs
  ☆477Updated 4 months ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆518Updated 2 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆177Updated 2 years ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆424Updated 3 weeks ago