Alternatives and similar repositories for awesome-nodejs-pentest

Users that are interested in awesome-nodejs-pentest are comparing it to the libraries listed below

• jesusprubio / strong-node
  More than 100 security checks for your Node.js API
  ☆506Updated last year
• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆730Updated last year
• pownjs / pown
  Pown.js is a security testing an exploitation toolkit built on top of Node.js and NPM.
  ☆263Updated 2 years ago
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆561Updated 2 years ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆411Updated 2 months ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆401Updated 6 months ago
• righettod / poc-graphql
  Research on GraphQL from an AppSec point of view.
  ☆415Updated 2 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆455Updated 6 years ago
• lirantal / essential-nodejs-security-book
  Documentation for Essential Node.js Security
  ☆96Updated 2 years ago
• s0md3v / MyPapers
  Repository for hosting my research papers
  ☆509Updated last year
• cr0hn / vulnerable-node
  A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…
  ☆468Updated 9 months ago
• snyk-labs / exploit-workshop
  A step by step workshop to exploit various vulnerabilities in Node.js and Java applications
  ☆156Updated last year
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆396Updated 5 years ago
• authcov / authcov
  Web app authorisation coverage scanning
  ☆237Updated 2 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆325Updated 3 years ago
• cr0hn / nosqlinjection_wordlists
  This repository contains payload to test NoSQL Injections
  ☆359Updated 4 years ago
• ropnop / serverless_toolkit
  A collection of useful Serverless functions I use when pentesting
  ☆386Updated 2 years ago
• bugbountyforum / XSS-Radar
  ☆325Updated 7 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆539Updated 2 years ago
• proabiral / inception
  A highly configurable Framework for easy automated web scanning
  ☆375Updated 4 years ago
• geeksonsecurity / vuln-web-apps
  A curated list of vulnerable web applications.
  ☆301Updated last year
• cihanmehmet / sub.sh
  Multiprocessing(Parallel)Subdomain Detect Script
  ☆331Updated last year
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆182Updated 6 years ago
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆537Updated 7 years ago
• pownjs / recon
  A powerful target reconnaissance framework powered by graph theory.
  ☆420Updated 2 years ago
• PortSwigger / hackability
  Probe a rendering engine for vulnerabilities and other features
  ☆366Updated 3 years ago
• nccgroup / autochrome
  This tool downloads, installs, and configures a shiny new copy of Chromium.
  ☆456Updated last year
• dsopas / assessment-mindset
  Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
  ☆738Updated 3 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆301Updated 2 years ago
• ajinabraham / nodejsscan
  nodejsscan is a static security code scanner for Node.js applications.
  ☆2,469Updated 3 weeks ago