ajinabraham / njsscanLinks
njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
☆416Updated 10 months ago
Alternatives and similar repositories for njsscan
Users that are interested in njsscan are comparing it to the libraries listed below
Sorting:
- Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilit…☆547Updated 3 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆853Updated 2 years ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆49Updated 3 months ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆486Updated 2 years ago
- JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.☆256Updated last week
- Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...☆424Updated 4 years ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆993Updated this week
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆149Updated 5 years ago
- nodejsscan is a static security code scanner for Node.js applications.☆2,507Updated last month
- A starter secure code review checklist☆181Updated 6 years ago
- Scan your code for security misconfiguration, search for passwords and secrets.☆649Updated 2 years ago
- Finding potential software vulnerabilities from git commit messages☆417Updated 2 years ago
- Purposely vulnerable Java application to help lead secure coding workshops☆187Updated last year
- The DevSecOps toolset for REST APIs☆276Updated 2 years ago
- Damn Vulnerable NodeJS Application☆749Updated last year
- A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…☆476Updated last year
- DOM XSS scanner for Single Page Applications☆414Updated 2 weeks ago
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆402Updated 8 years ago
- Zap baseline scanner in Docker with authentication☆103Updated last year
- Audits an NPM package.json file to identify known vulnerabilities.☆230Updated 3 months ago
- A comprehensive list of software composition analysis tools.☆156Updated last year
- Research on GraphQL from an AppSec point of view.☆415Updated 2 years ago
- OWASP Foundation Web Repository☆47Updated last week
- Vulnerability Scan with Nuclei☆268Updated 2 weeks ago
- A curated list of awesome GraphQL Security frameworks, libraries, software and resources☆338Updated last year
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆61Updated 4 months ago
- Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.☆336Updated 3 years ago
- A Broken Application - Very Vulnerable!☆173Updated last week
- OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.☆345Updated last month
- Checkmarx Scan and Result Orchestration☆101Updated 2 weeks ago