Alternatives and similar repositories for nodejsscan

Users that are interested in nodejsscan are comparing it to the libraries listed below

• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆417Updated last year
• RetireJS / retire.js
  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
  ☆4,004Updated last week
• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆751Updated last year
• doyensec / inql
  InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…
  ☆1,698Updated 2 weeks ago
• cr0hn / vulnerable-node
  A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…
  ☆480Updated last year
• OWASP / NodeGoat
  The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Nod…
  ☆1,987Updated last year
• flipkart-incubator / Astra
  Automated Security Testing For REST API's
  ☆2,622Updated last year
• lirantal / awesome-nodejs-security
  Awesome Node.js Security resources
  ☆2,948Updated last month
• jesusprubio / awesome-nodejs-pentest
  Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...
  ☆426Updated 4 years ago
• inonshk / 31-days-of-API-Security-Tips
  This challenge is Inon Shkedy's 31 days API Security Tips.
  ☆2,220Updated 3 years ago
• archerysec / archerysec
  ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
  ☆2,419Updated 5 months ago
• Quitten / Autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆1,114Updated 4 months ago
• wireghoul / graudit
  grep rough audit - source code auditing tool
  ☆1,658Updated 5 months ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,468Updated last year
• okta-graveyard / repo-supervisor
  Scan your code for security misconfiguration, search for passwords and secrets.
  ☆649Updated 2 years ago
• google / firing-range
  ☆1,403Updated 5 years ago
• eslint-community / eslint-plugin-security
  ESLint rules for Node Security
  ☆2,308Updated last month
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,537Updated 2 years ago
• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆663Updated 4 years ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,456Updated 10 months ago
• s0md3v / Corsy
  CORS Misconfiguration Scanner
  ☆1,476Updated 3 years ago
• s0md3v / AwesomeXSS
  Awesome XSS stuff
  ☆5,021Updated last year
• PortSwigger / param-miner
  ☆1,391Updated 2 months ago
• PortSwigger / http-request-smuggler
  ☆1,159Updated last month
• GerbenJavado / LinkFinder
  A python script that finds endpoints in JavaScript files
  ☆4,177Updated last year
• ajinabraham / CMSScan
  CMS Scanner: Scan Wordpress, Drupal, Joomla, vBulletin websites for Security issues
  ☆1,049Updated 4 years ago
• anshumanbh / git-all-secrets
  A tool to capture all the git secrets by leveraging multiple open source git searching tools
  ☆1,137Updated 6 years ago
• brendan-rius / c-jwt-cracker
  JWT brute force cracker written in C
  ☆2,512Updated 2 years ago
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,959Updated last week
• OWASP / SecurityShepherd
  Web and mobile application security training platform
  ☆1,409Updated last month