Alternatives and similar repositories for awesome-nodejs-pentest

Users that are interested in awesome-nodejs-pentest are comparing it to the libraries listed below

• appsecco / dvna
  Damn Vulnerable NodeJS Application
  ☆756Updated last year
• lirantal / essential-nodejs-security-book
  Documentation for Essential Node.js Security
  ☆96Updated 2 years ago
• pownjs / pown
  Pown.js is a security testing an exploitation toolkit built on top of Node.js and NPM.
  ☆260Updated 2 years ago
• jesusprubio / strong-node
  More than 100 security checks for your Node.js API
  ☆510Updated last year
• Checkmarx / JS-SCP
  JavaScript Secure Coding Practices guide
  ☆181Updated 4 years ago
• ropnop / serverless_toolkit
  A collection of useful Serverless functions I use when pentesting
  ☆391Updated 3 years ago
• righettod / poc-graphql
  Research on GraphQL from an AppSec point of view.
  ☆419Updated 2 years ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆421Updated last year
• cr0hn / vulnerable-node
  A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…
  ☆482Updated last year
• proabiral / inception
  A highly configurable Framework for easy automated web scanning
  ☆380Updated 5 years ago
• authcov / authcov
  Web app authorisation coverage scanning
  ☆236Updated 2 years ago
• cr0hn / nosqlinjection_wordlists
  This repository contains payload to test NoSQL Injections
  ☆374Updated 4 years ago
• PortSwigger / hackability
  Probe a rendering engine for vulnerabilities and other features
  ☆367Updated 4 years ago
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆358Updated 5 years ago
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆398Updated 5 years ago
• juice-shop / pwning-juice-shop
  Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"
  ☆231Updated this week
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆167Updated 6 years ago
• vitalysim / totalrecon
  TotalRecon installs all the recon tools you need
  ☆464Updated 5 years ago
• 0xhelloworld-dev / public
  stuff i'm willing to share with the world lol
  ☆170Updated 3 years ago
• dsopas / assessment-mindset
  Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
  ☆750Updated 3 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆325Updated 3 years ago
• snyk-labs / exploit-workshop
  A step by step workshop to exploit various vulnerabilities in Node.js and Java applications
  ☆157Updated last year
• dustyfresh / PHP-vulnerability-audit-cheatsheet
  This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…
  ☆361Updated 10 months ago
• FSecureLABS / dref
  DNS Rebinding Exploitation Framework
  ☆495Updated 4 years ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆184Updated 7 years ago
• EdOverflow / bugbountywiki
  The Bug Bounty Wiki
  ☆171Updated 7 years ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆417Updated 2 months ago
• HoLyVieR / prototype-pollution-nsec18
  Content released at NorthSec 2018 for my talk on prototype pollution
  ☆532Updated last year
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆557Updated 2 years ago
• prodigysml / Dr.-Watson
  Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…
  ☆218Updated 6 years ago