ajinabraham / nodejsscanLinks
nodejsscan is a static security code scanner for Node.js applications.
☆2,514Updated 2 weeks ago
Alternatives and similar repositories for nodejsscan
Users that are interested in nodejsscan are comparing it to the libraries listed below
Sorting:
- scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.☆3,985Updated last week
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆417Updated 11 months ago
- Damn Vulnerable NodeJS Application☆747Updated last year
- The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Nod…☆1,984Updated last year
- A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…☆478Updated last year
- Automated Security Testing For REST API's☆2,614Updated last year
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,679Updated last month
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,415Updated 4 months ago
- grep rough audit - source code auditing tool☆1,657Updated 5 months ago
- Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...☆424Updated 4 years ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,171Updated 2 months ago
- Awesome Node.js Security resources☆2,936Updated 3 weeks ago
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆661Updated 4 years ago
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,800Updated 2 years ago
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,898Updated last week
- ESLint rules for Node Security☆2,306Updated last week
- A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me☆2,221Updated 10 months ago
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆6,140Updated 5 months ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,942Updated last week
- Web application fuzzer☆6,310Updated last year
- CORS Misconfiguration Scanner☆1,470Updated 3 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,857Updated 4 years ago
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,134Updated 6 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,439Updated last year
- Simple HS256, HS384 & HS512 JWT token brute force cracker.☆1,139Updated last year
- Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilit…☆549Updated 3 years ago
- Web and mobile application security training platform☆1,407Updated last week
- ☆1,381Updated last month
- Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.☆1,536Updated last year
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆1,110Updated 3 months ago