ajinabraham / nodejsscan
nodejsscan is a static security code scanner for Node.js applications.
☆2,469Updated this week
Alternatives and similar repositories for nodejsscan
Users that are interested in nodejsscan are comparing it to the libraries listed below
Sorting:
- scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.☆3,832Updated 2 months ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,623Updated 2 weeks ago
- Damn Vulnerable NodeJS Application☆728Updated last year
- Awesome Node.js Security resources☆2,813Updated last week
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆399Updated 6 months ago
- A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…☆466Updated 8 months ago
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,362Updated 7 months ago
- Automated Security Testing For REST API's☆2,573Updated 11 months ago
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,865Updated last month
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,766Updated last week
- The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Nod…☆1,943Updated 11 months ago
- Web Application Security Scanner Framework☆3,893Updated last year
- A python script that finds endpoints in JavaScript files☆3,940Updated last year
- grep rough audit - source code auditing tool☆1,606Updated 3 weeks ago
- CORS Misconfiguration Scanner☆1,421Updated 2 years ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,691Updated last month
- Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...☆425Updated 3 years ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,056Updated 9 months ago
- HTTP parameter discovery suite.☆5,623Updated 2 months ago
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,334Updated 3 months ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,408Updated 4 months ago
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,135Updated 5 years ago
- 🎯 Fast CORS misconfiguration vulnerabilities scanner☆1,088Updated 3 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆1,044Updated last month
- File upload vulnerability scanner and exploitation tool.☆3,201Updated last week
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆656Updated 4 years ago
- Awesome XSS stuff☆4,912Updated 6 months ago
- Web and mobile application security training platform☆1,380Updated 10 months ago
- finds publicly known security vulnerabilities in a website's frontend JavaScript libraries☆1,962Updated last month
- GitHub recon tool leveraging Code Search API. Scans for exposed API keys across all of GitHub, not just known repos and orgs. Support for…☆1,293Updated 3 weeks ago