Alternatives and similar repositories for csp-evaluator

Users that are interested in csp-evaluator are comparing it to the libraries listed below

• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆221Updated 2 months ago
• HoLyVieR / prototype-pollution-nsec18
  Content released at NorthSec 2018 for my talk on prototype pollution
  ☆532Updated last year
• xsleaks / wiki
  XS-Leaks Wiki
  ☆175Updated 7 months ago
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆239Updated 4 months ago
• cure53 / browser-sec-whitepaper
  Cure53 Browser Security White Paper
  ☆300Updated 8 years ago
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆238Updated 7 years ago
• xsleaks / xsleaks
  A collection of browser-based side channel attack vectors.
  ☆759Updated last year
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆165Updated last month
• w3c / trusted-types
  A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
  ☆644Updated 2 months ago
• superhuman / rxxr2
  ☆144Updated 3 years ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆450Updated last month
• securitum / research
  research
  ☆152Updated last year
• d0nutptr / sic
  A tool to perform Sequential Import Chaining
  ☆282Updated 6 years ago
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆96Updated 5 months ago
• snyk / zip-slip-vulnerability
  Zip Slip Vulnerability (Arbitrary file write through archive extraction)
  ☆820Updated 4 months ago
• CompassSecurity / SAMLRaider
  SAML2 Burp Extension
  ☆437Updated last month
• filedescriptor / untrusted-types
  ☆694Updated 3 years ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆210Updated last year
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆211Updated 2 years ago
• PortSwigger / hackability
  Probe a rendering engine for vulnerabilities and other features
  ☆367Updated 4 years ago
• neex / http2smugl
  ☆557Updated 9 months ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆406Updated 8 years ago
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆547Updated 7 years ago
• orangetw / Tiny-URL-Fuzzer
  A tiny and cute URL fuzzer
  ☆402Updated 3 years ago
• PortSwigger / http-request-smuggler
  ☆1,173Updated 3 months ago
• justinsteven / advisories
  ☆270Updated 2 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆50Updated 8 years ago
• taviso / rbndr
  Simple DNS Rebinding Service
  ☆718Updated 6 years ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆417Updated 2 months ago
• veracode-research / solr-injection
  Apache Solr Injection Research
  ☆579Updated 5 years ago