Alternatives and similar repositories for csp-evaluator:

Users that are interested in csp-evaluator are comparing it to the libraries listed below

• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆217Updated last month
• xsleaks / wiki
  XS-Leaks Wiki
  ☆161Updated 2 months ago
• xsleaks / xsleaks
  A collection of browser-based side channel attack vectors.
  ☆746Updated last year
• w3c / trusted-types
  A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
  ☆620Updated last month
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆236Updated 5 months ago
• HoLyVieR / prototype-pollution-nsec18
  Content released at NorthSec 2018 for my talk on prototype pollution
  ☆526Updated 11 months ago
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆235Updated 6 years ago
• securitum / research
  research
  ☆151Updated last year
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆531Updated 6 years ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆420Updated 5 months ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆204Updated 10 months ago
• neex / http2smugl
  ☆539Updated 3 weeks ago
• superhuman / rxxr2
  ☆144Updated 2 years ago
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆326Updated 5 months ago
• filedescriptor / untrusted-types
  ☆676Updated 2 years ago
• cure53 / browser-sec-whitepaper
  Cure53 Browser Security White Paper
  ☆294Updated 7 years ago
• taviso / rbndr
  Simple DNS Rebinding Service
  ☆650Updated 5 years ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆203Updated 2 years ago
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆313Updated last year
• veracode-research / solr-injection
  Apache Solr Injection Research
  ☆571Updated 5 years ago
• mpgn / ByP-SOP
  🏴‍☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴‍☠️
  ☆199Updated 6 years ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆349Updated 2 years ago
• crtsh / certwatch_db
  Database schema
  ☆210Updated last month
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆161Updated last year
• justinsteven / advisories
  ☆269Updated 2 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆358Updated 8 months ago
• d0nutptr / sic
  A tool to perform Sequential Import Chaining
  ☆264Updated 5 years ago
• visma-prodsec / confused
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆718Updated 8 months ago
• PortSwigger / http-request-smuggler
  ☆983Updated 2 weeks ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆50Updated 7 years ago