ajinabraham / njsscan
njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
β383Updated 2 months ago
Alternatives and similar repositories for njsscan:
Users that are interested in njsscan are comparing it to the libraries listed below
- Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilitβ¦β522Updated 2 years ago
- JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns π¬.β229Updated last week
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure Dβ¦β147Updated 4 years ago
- Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...β420Updated 3 years ago
- Semgrep rules registryβ830Updated this week
- Awesome information for WebSockets security researchβ258Updated 3 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenciβ¦β822Updated last year
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outpβ¦β463Updated last year
- DOM XSS scanner for Single Page Applicationsβ400Updated 6 months ago
- Identify hardcoded secrets in static structured textβ479Updated last year
- nodejsscan is a static security code scanner for Node.js applications.β2,416Updated 2 weeks ago
- Audits an NPM package.json file to identify known vulnerabilities.β225Updated 2 months ago
- Find security vulnerabilities in open source npm packages while you codeβ204Updated 2 years ago
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutationsβ372Updated 2 years ago
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.β267Updated 3 months ago
- Vulnerability Scan with Nucleiβ246Updated last month
- GraphQL automated security testing toolkitβ308Updated 10 months ago
- Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscanβ838Updated this week
- Security Auditor Utility for GraphQL APIsβ404Updated this week
- Tool to check for dependency confusion vulnerabilities in multiple package management systemsβ707Updated 4 months ago
- Scan your code for security misconfiguration, search for passwords and secrets.β639Updated last year
- Generic SAST Libraryβ126Updated 2 months ago
- Damn Vulnerable NodeJS Applicationβ714Updated 9 months ago
- OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.β163Updated 10 months ago
- A Node.js vulnerability finding tool.β95Updated 4 years ago
- Static security checker for Dockerfilesβ93Updated 9 months ago
- Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.β319Updated 3 years ago
- Finding potential software vulnerabilities from git commit messagesβ405Updated last year
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.β888Updated this week
- GraphQL threat framework used by security professionals to research security gaps in GraphQL implementationsβ299Updated last year