ajinabraham / njsscanLinks
njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
☆401Updated 6 months ago
Alternatives and similar repositories for njsscan
Users that are interested in njsscan are comparing it to the libraries listed below
Sorting:
- Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilit…☆537Updated 3 years ago
- nodejsscan is a static security code scanner for Node.js applications.☆2,469Updated 3 weeks ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆916Updated this week
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆842Updated last year
- JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.☆242Updated last week
- DOM XSS scanner for Single Page Applications☆411Updated 2 months ago
- Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan☆863Updated this week
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆395Updated 7 years ago
- A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…☆468Updated 9 months ago
- Damn Vulnerable NodeJS Application☆730Updated last year
- ☆415Updated 2 years ago
- A starter secure code review checklist☆182Updated 6 years ago
- Research on GraphQL from an AppSec point of view.☆415Updated 2 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆221Updated last year
- Awesome information for WebSockets security research☆271Updated 3 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆474Updated 2 years ago
- ☆194Updated 7 months ago
- Security Auditor Utility for GraphQL APIs☆469Updated 3 months ago
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆148Updated 4 years ago
- Scan your code for security misconfiguration, search for passwords and secrets.☆647Updated last year
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations☆386Updated 2 years ago
- eslintrc.js config files for running static analysis on JavaScript to identify security issues.☆62Updated 4 years ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆47Updated 2 years ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆720Updated 9 months ago
- This repository contains payload to test NoSQL Injections☆359Updated 4 years ago
- Audits an NPM package.json file to identify known vulnerabilities.☆227Updated 6 months ago
- The DevSecOps toolset for REST APIs☆274Updated 2 years ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆569Updated 2 months ago
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆446Updated 2 months ago
- Zap baseline scanner in Docker with authentication☆103Updated last year