Alternatives and similar repositories for csp-evaluator

Users that are interested in csp-evaluator are comparing it to the libraries listed below

• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆220Updated last week
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆236Updated 6 years ago
• HoLyVieR / prototype-pollution-nsec18
  Content released at NorthSec 2018 for my talk on prototype pollution
  ☆531Updated last year
• xsleaks / wiki
  XS-Leaks Wiki
  ☆161Updated last week
• neex / http2smugl
  ☆539Updated 2 months ago
• cure53 / browser-sec-whitepaper
  Cure53 Browser Security White Paper
  ☆295Updated 7 years ago
• xsleaks / xsleaks
  A collection of browser-based side channel attack vectors.
  ☆749Updated last year
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆162Updated last year
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆238Updated 3 weeks ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆206Updated 11 months ago
• d0nutptr / sic
  A tool to perform Sequential Import Chaining
  ☆265Updated 5 years ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆420Updated last week
• securitum / research
  research
  ☆151Updated last year
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆327Updated 7 months ago
• taviso / rbndr
  Simple DNS Rebinding Service
  ☆657Updated 5 years ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆411Updated 2 months ago
• filedescriptor / untrusted-types
  ☆678Updated 2 years ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆204Updated 2 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆363Updated 9 months ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆395Updated 7 years ago
• w3c / trusted-types
  A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
  ☆624Updated 3 months ago
• bcoles / ssrf_proxy
  SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.
  ☆462Updated 7 years ago
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆315Updated 2 years ago
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆537Updated 7 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆539Updated 2 years ago
• orangetw / Tiny-URL-Fuzzer
  A tiny and cute URL fuzzer
  ☆395Updated 2 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆519Updated 2 years ago
• PortSwigger / http-request-smuggler
  ☆995Updated last week
• crtsh / certwatch_db
  Database schema
  ☆212Updated last week
• w3c / webappsec
  Web Application Security Working Group repo
  ☆629Updated last month