Alternatives and similar repositories for vuln-regex-detector

Users that are interested in vuln-regex-detector are comparing it to the libraries listed below

• davisjam / safe-regex
  Detect possibly catastrophic, exponential-time regular expressions
  ☆184Updated 2 years ago
• fuzzitdev / jsfuzz
  coverage guided fuzz testing for javascript
  ☆606Updated 4 years ago
• snyk / vulncost
  Find security vulnerabilities in open source npm packages while you code
  ☆207Updated 3 years ago
• w3c / trusted-types
  A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
  ☆629Updated 3 months ago
• NicolaasWeideman / RegexStaticAnalysis
  A tool to perform static analysis on regexes to determine whether they are vulnerable to ReDoS.
  ☆110Updated 2 years ago
• gkouziik / eslint-plugin-security-node
  ESLint security plugin for Node.js
  ☆104Updated last year
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆238Updated last month
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆402Updated 7 months ago
• uhop / node-re2
  node.js bindings for RE2: fast, safe alternative to backtracking regular expression engines.
  ☆521Updated last month
• google / csp-evaluator
  ☆364Updated 4 months ago
• sola-da / Synode
  Automatically Preventing Code Injection Attacks on Node.js
  ☆78Updated 3 years ago
• ESAPI / node-esapi
  A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.
  ☆137Updated 2 years ago
• HoLyVieR / prototype-pollution-nsec18
  Content released at NorthSec 2018 for my talk on prototype pollution
  ☆531Updated last year
• nodejs / security-wg
  Node.js Ecosystem Security Working Group
  ☆523Updated 2 weeks ago
• nodejs / security-advisories
  Security advisories for Node.js and the JavaScript ecosystem.
  ☆41Updated 4 years ago
• lovell / highwayhash
  Node.js implementation of HighwayHash, Google's fast and strong hash function
  ☆221Updated 3 years ago
• brannondorsey / host-validation
  Express.js middleware for "Host" and "Referer" header validation to protect against DNS rebinding attacks.
  ☆192Updated 2 years ago
• fastify / secure-json-parse
  JSON.parse() drop-in replacement with prototype poisoning protection
  ☆237Updated last week
• NodeSecure / cli
  JavaScript security CLI that allow you to deeply analyze the dependency tree of a given package or local Node.js project.
  ☆374Updated this week
• NodeSecure / js-x-ray
  JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
  ☆252Updated this week
• isaacs / minipass
  A stream implementation that does more by doing less
  ☆254Updated last year
• CodeIntelligenceTesting / jazzer.js
  Coverage-guided, in-process fuzzing for Node.js
  ☆306Updated this week
• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆219Updated this week
• webschik / tslint-config-security
  TSLint security rules
  ☆69Updated 4 years ago
• yaakov123 / hagana
  NodeJS runtime protection for supply chain attacks
  ☆141Updated 2 years ago
• hapijs / bourne
  JSON.parse() drop-in replacement with prototype poisoning protection
  ☆174Updated 8 months ago
• naugtur / blocked-at
  Detects node eventloop block and reports where it started
  ☆330Updated 2 years ago
• google / node-sec-roadmap
  Some thoughts on how Node.js might respond to a changing security environment
  ☆173Updated 6 years ago
• lirantal / lockfile-lint
  Lint an npm or yarn lockfile to analyze and detect security issues
  ☆804Updated last month
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆95Updated 4 years ago