Alternatives and similar repositories for awesome-nodejs-pentest:

Users that are interested in awesome-nodejs-pentest are comparing it to the libraries listed below

• jesusprubio / strong-node
  More than 100 security checks for your Node.js API
  ☆507Updated last year
• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆727Updated last year
• dsopas / assessment-mindset
  Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
  ☆737Updated 3 years ago
• pownjs / pown
  Pown.js is a security testing an exploitation toolkit built on top of Node.js and NPM.
  ☆262Updated 2 years ago
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆396Updated 5 years ago
• lirantal / essential-nodejs-security-book
  Documentation for Essential Node.js Security
  ☆96Updated 2 years ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆408Updated last month
• bugbountyforum / XSS-Radar
  ☆326Updated 7 years ago
• cr0hn / vulnerable-node
  A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…
  ☆465Updated 8 months ago
• prodigysml / Dr.-Watson
  Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…
  ☆215Updated 5 years ago
• dhaval17 / awsome-security-write-ups-and-POCs
  Awesome Writeups and POCs
  ☆533Updated 2 months ago
• authcov / authcov
  Web app authorisation coverage scanning
  ☆237Updated 2 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆326Updated 2 years ago
• geeksonsecurity / vuln-web-apps
  A curated list of vulnerable web applications.
  ☆298Updated last year
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆352Updated 4 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆534Updated 2 years ago
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆559Updated 2 years ago
• PortSwigger / hackability
  Probe a rendering engine for vulnerabilities and other features
  ☆367Updated 3 years ago
• FSecureLABS / dref
  DNS Rebinding Exploitation Framework
  ☆488Updated 4 years ago
• s0md3v / JShell
  JShell - Get a JavaScript shell with XSS.
  ☆523Updated 6 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 5 years ago
• magoo / redteam-plan
  Issues to consider when planning a red team exercise.
  ☆618Updated 7 years ago
• gwen001 / s3-buckets-finder
  Find AWS S3 buckets and test their permissions.
  ☆385Updated 2 years ago
• SilverPoision / Rock-ON
  Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.
  ☆297Updated 5 years ago
• jcesarstef / dotdotslash
  Search for Directory Traversal Vulnerabilities
  ☆440Updated 10 months ago
• s0md3v / MyPapers
  Repository for hosting my research papers
  ☆508Updated last year
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆103Updated last year
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆548Updated 2 years ago
• M507 / AWAE-Preparation
  This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
  ☆240Updated 5 years ago
• EdOverflow / megplus
  Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
  ☆306Updated 6 years ago