jesusprubio / awesome-nodejs-pentestLinks
Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...
☆425Updated 3 years ago
Alternatives and similar repositories for awesome-nodejs-pentest
Users that are interested in awesome-nodejs-pentest are comparing it to the libraries listed below
Sorting:
- More than 100 security checks for your Node.js API☆506Updated last year
- Damn Vulnerable NodeJS Application☆730Updated last year
- Pown.js is a security testing an exploitation toolkit built on top of Node.js and NPM.☆263Updated 2 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆561Updated 2 years ago
- DOM XSS scanner for Single Page Applications☆411Updated 2 months ago
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆401Updated 6 months ago
- Research on GraphQL from an AppSec point of view.☆415Updated 2 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆455Updated 6 years ago
- Documentation for Essential Node.js Security☆96Updated 2 years ago
- Repository for hosting my research papers☆509Updated last year
- A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…☆468Updated 9 months ago
- A step by step workshop to exploit various vulnerabilities in Node.js and Java applications☆156Updated last year
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆396Updated 5 years ago
- Web app authorisation coverage scanning☆237Updated 2 years ago
- secretz, minimizing the large attack surface of Travis CI☆325Updated 3 years ago
- This repository contains payload to test NoSQL Injections☆359Updated 4 years ago
- A collection of useful Serverless functions I use when pentesting☆386Updated 2 years ago
- ☆325Updated 7 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆539Updated 2 years ago
- A highly configurable Framework for easy automated web scanning☆375Updated 4 years ago
- A curated list of vulnerable web applications.☆301Updated last year
- Multiprocessing(Parallel)Subdomain Detect Script☆331Updated last year
- A starter secure code review checklist☆182Updated 6 years ago
- Automatically exported from code.google.com/p/domxsswiki☆537Updated 7 years ago
- A powerful target reconnaissance framework powered by graph theory.☆420Updated 2 years ago
- Probe a rendering engine for vulnerabilities and other features☆366Updated 3 years ago
- This tool downloads, installs, and configures a shiny new copy of Chromium.☆456Updated last year
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆738Updated 3 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆301Updated 2 years ago
- nodejsscan is a static security code scanner for Node.js applications.☆2,469Updated 3 weeks ago