ajinabraham / nodejsscan

Related projects ⓘ

Alternatives and complementary repositories for nodejsscan

• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆705Updated 7 months ago
• RetireJS / retire.js
  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
  ☆3,690Updated this week
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆375Updated last week
• ticarpi / jwt_tool
  A toolkit for testing, tweaking and cracking JSON Web Tokens
  ☆5,452Updated 3 months ago
• doyensec / inql
  InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…
  ☆1,540Updated 4 months ago
• s0md3v / AwesomeXSS
  Awesome XSS stuff
  ☆4,785Updated 3 weeks ago
• lirantal / awesome-nodejs-security
  Awesome Node.js Security resources
  ☆2,733Updated last week
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,573Updated this week
• RhinoSecurityLabs / pacu
  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
  ☆4,399Updated this week
• eslint-community / eslint-plugin-security
  ESLint rules for Node Security
  ☆2,220Updated last month
• andresriancho / w3af
  w3af: web application attack and audit framework, the open source web vulnerability scanner.
  ☆4,584Updated last year
• archerysec / archerysec
  ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
  ☆2,295Updated last month
• flipkart-incubator / Astra
  Automated Security Testing For REST API's
  ☆2,513Updated 5 months ago
• 0xInfection / Awesome-WAF
  🔥 Web-application firewalls (WAFs) from security standpoint.
  ☆6,326Updated 3 weeks ago
• auth0 / repo-supervisor
  Scan your code for security misconfiguration, search for passwords and secrets.
  ☆638Updated last year
• Arachni / arachni
  Web Application Security Scanner Framework
  ☆3,787Updated last year
• guelfoweb / knock
  Knock Subdomain Scan
  ☆3,883Updated this week
• wireghoul / graudit
  grep rough audit - source code auditing tool
  ☆1,539Updated 3 months ago
• jaeles-project / jaeles
  The Swiss Army knife for automated Web Application Testing
  ☆2,166Updated 6 months ago
• codingo / NoSQLMap
  Automated NoSQL database enumeration and web application exploitation tool.
  ☆2,929Updated 3 months ago
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,644Updated 2 years ago
• owtf / owtf
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,821Updated 3 weeks ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆4,869Updated this week
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,000Updated this week
• urbanadventurer / WhatWeb
  Next generation web scanner
  ☆5,557Updated 4 months ago
• semgrep / semgrep
  Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
  ☆10,666Updated this week
• gwen001 / pentest-tools
  A collection of custom security tools for quick needs.
  ☆3,152Updated last year
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,794Updated 6 months ago
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,300Updated last month