jesusprubio / awesome-nodejs-pentest

Related projects: ⓘ

• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆695Updated 5 months ago
• pownjs / pown
  Pown.js is a security testing an exploitation toolkit built on top of Node.js and NPM.
  ☆259Updated last year
• geeksonsecurity / vuln-web-apps
  A curated list of vulnerable web applications.
  ☆255Updated 8 months ago
• lirantal / essential-nodejs-security-book
  Documentation for Essential Node.js Security
  ☆94Updated last year
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆370Updated 5 months ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆394Updated 2 months ago
• cr0hn / vulnerable-node
  A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…
  ☆443Updated 3 weeks ago
• righettod / poc-graphql
  Research on GraphQL from an AppSec point of view.
  ☆405Updated last year
• cr0hn / nosqlinjection_wordlists
  This repository contains payload to test NoSQL Injections
  ☆345Updated 3 years ago
• M507 / AWAE-Preparation
  This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
  ☆234Updated 5 years ago
• dhaval17 / awsome-security-write-ups-and-POCs
  Awesome Writeups and POCs
  ☆502Updated 3 years ago
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆393Updated 4 years ago
• bugbountyforum / XSS-Radar
  ☆316Updated 6 years ago
• dsopas / assessment-mindset
  Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
  ☆726Updated 2 years ago
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆523Updated 2 years ago
• ajinabraham / nodejsscan
  nodejsscan is a static security code scanner for Node.js applications.
  ☆2,375Updated last month
• ajinabraham / Node.Js-Security-Course
  Contents for Node.Js Security Course
  ☆327Updated 3 years ago
• s0md3v / MyPapers
  Repository for hosting my research papers
  ☆498Updated 5 months ago
• bl4de / security_whitepapers
  ☆376Updated this week
• security-prince / Resources-for-Application-Security
  Some good resources for getting started with application security
  ☆133Updated 3 years ago
• sdcampbell / Internal-Pentest-Playbook
  ☆726Updated this week
• gwen001 / s3-buckets-finder
  Find AWS S3 buckets and test their permissions.
  ☆366Updated last year
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆515Updated 6 years ago
• ropnop / serverless_toolkit
  A collection of useful Serverless functions I use when pentesting
  ☆379Updated last year
• aadityapurani / NodeJS-Red-Team-Cheat-Sheet
  NodeJS Red-Team Cheat Sheet
  ☆191Updated 5 years ago
• authcov / authcov
  Web app authorisation coverage scanning
  ☆236Updated last year
• vitalysim / totalrecon
  TotalRecon installs all the recon tools you need
  ☆460Updated 4 years ago
• Muhammd / Awesome-Pentest
  Awesome Penetration Testing A collection of awesome penetration testing resources
  ☆183Updated 11 months ago
• pownjs / recon
  A powerful target reconnaissance framework powered by graph theory.
  ☆419Updated last year
• kumar1100 / OSCP-60days
  ☆212Updated this week