davisjam / vuln-regex-detectorLinks
Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.
☆332Updated 3 years ago
Alternatives and similar repositories for vuln-regex-detector
Users that are interested in vuln-regex-detector are comparing it to the libraries listed below
Sorting:
- A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.☆629Updated last month
- Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike☆238Updated 2 months ago
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆406Updated 8 months ago
- ☆365Updated 5 months ago
- Content released at NorthSec 2018 for my talk on prototype pollution☆530Updated last year
- Find security vulnerabilities in open source npm packages while you code☆208Updated 3 years ago
- Audits an NPM package.json file to identify known vulnerabilities.☆229Updated last month
- Node.js Ecosystem Security Working Group☆526Updated last week
- ESLint security plugin for Node.js☆104Updated last year
- Some thoughts on how Node.js might respond to a changing security environment☆173Updated 6 years ago
- JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.☆253Updated last week
- A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.☆139Updated 2 years ago
- WebAppSec Content Security Policy☆220Updated 3 weeks ago
- RegEx Denial of Service (ReDos) Scanner☆165Updated 7 years ago
- TSLint security rules☆69Updated 5 years ago
- Lint an npm or yarn lockfile to analyze and detect security issues☆808Updated 3 months ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 3 years ago
- Detect possibly catastrophic, exponential-time regular expressions☆186Updated 2 years ago
- Security advisories for Node.js and the JavaScript ecosystem.☆41Updated 4 years ago
- Make it easy to probe the strengths and weaknesses of a hardened Node.js stack☆19Updated 6 years ago
- Express.js middleware for "Host" and "Referer" header validation to protect against DNS rebinding attacks.☆192Updated 2 years ago
- Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...☆426Updated 4 years ago
- 🔤 A list of all the public package names on npm. Updated daily.☆269Updated this week
- JavaScript security CLI that allow you to deeply analyze the dependency tree of a given package or local Node.js project.☆378Updated this week
- A zoo for malicious NPM packages☆20Updated 2 years ago
- Security design pattern support for Node.js☆24Updated 6 years ago
- NodeJS runtime protection for supply chain attacks☆141Updated 3 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated last year
- node.js bindings for RE2: fast, safe alternative to backtracking regular expression engines.☆521Updated 2 months ago
- 🌍 Normalized repository URLs for every package in the npm registry. Updated daily.☆89Updated last week