Alternatives and similar repositories for nodejsscan:

Users that are interested in nodejsscan are comparing it to the libraries listed below

• RetireJS / retire.js
  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
  ☆3,750Updated 2 weeks ago
• archerysec / archerysec
  ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
  ☆2,306Updated 3 months ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆386Updated 2 months ago
• doyensec / inql
  InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…
  ☆1,575Updated 7 months ago
• hisxo / gitGraber
  gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, G…
  ☆2,055Updated 6 months ago
• RhinoSecurityLabs / pacu
  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
  ☆4,492Updated this week
• s0md3v / AwesomeXSS
  Awesome XSS stuff
  ☆4,837Updated 2 months ago
• codingo / NoSQLMap
  Automated NoSQL database enumeration and web application exploitation tool.
  ☆2,992Updated 6 months ago
• inonshk / 31-days-of-API-Security-Tips
  This challenge is Inon Shkedy's 31 days API Security Tips.
  ☆2,109Updated 2 years ago
• 0xInfection / Awesome-WAF
  🔥 Web-application firewalls (WAFs) from security standpoint.
  ☆6,447Updated 3 months ago
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,055Updated 2 months ago
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,650Updated last week
• DefectDojo / django-DefectDojo
  DevSecOps, ASPM, Vulnerability Management. All on one platform.
  ☆3,831Updated this week
• flipkart-incubator / Astra
  Automated Security Testing For REST API's
  ☆2,535Updated 7 months ago
• assetnote / kiterunner
  Contextual Content Discovery Tool
  ☆2,720Updated 9 months ago
• jesusprubio / awesome-nodejs-pentest
  Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...
  ☆421Updated 3 years ago
• almandin / fuxploider
  File upload vulnerability scanner and exploitation tool.
  ☆3,163Updated last year
• s0md3v / Corsy
  CORS Misconfiguration Scanner
  ☆1,391Updated 2 years ago
• ssl / ezXSS
  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
  ☆1,965Updated last month
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,700Updated 2 years ago
• tillson / git-hound
  Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.
  ☆1,241Updated 3 weeks ago
• anshumanbh / git-all-secrets
  A tool to capture all the git secrets by leveraging multiple open source git searching tools
  ☆1,117Updated 5 years ago
• ticarpi / jwt_tool
  A toolkit for testing, tweaking and cracking JSON Web Tokens
  ☆5,564Updated 5 months ago
• wireghoul / graudit
  grep rough audit - source code auditing tool
  ☆1,571Updated last month
• infobyte / faraday
  Open Source Vulnerability Management Platform
  ☆5,166Updated last week
• BishopFox / GitGot
  Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
  ☆1,477Updated 10 months ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,929Updated last year
• hakluke / hakrawler
  Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
  ☆4,577Updated last month
• guelfoweb / knock
  Knock Subdomain Scan
  ☆3,920Updated 2 months ago
• j3ssie / osmedeus
  A Workflow Engine for Offensive Security
  ☆5,439Updated 8 months ago