kongbytes / joi-securityLinks
Detect security flaws in Joi validation schemas (XSS, SQL injection, ...) π₯
β44Updated last year
Alternatives and similar repositories for joi-security
Users that are interested in joi-security are comparing it to the libraries listed below
Sorting:
- A simple Node.js Express REST app with some OWASP vulnerabilities.β21Updated 10 months ago
- All checklistsβ26Updated 6 years ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packagesβ50Updated 3 years ago
- Fast and passive subdomain enumeration.β17Updated 3 years ago
- This page should help you with the recon for security issues.β21Updated 2 years ago
- Go script to guess an API key / OAuth token found during pentest. CLI version of https://github.com/daffainfo/apiguesser-web/β44Updated 2 years ago
- Collection of useful command line commandsβ14Updated 3 years ago
- Burp Suite extension to log GraphQL operations as a commentβ23Updated 3 years ago
- A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.β57Updated 3 years ago
- Web application recon for bug bountyβ22Updated 5 years ago
- Endpoint enumerationβ11Updated 3 years ago
- β10Updated 3 years ago
- Let's check if your target is vulnerable for client side prototype pollution.β65Updated last year
- Python script to launch burp scans automaticallyβ32Updated 3 years ago
- Android Pentest Setup Environmentβ30Updated 3 years ago
- Visualize your project security vulnerabilities as a pie chart in the terminalβ25Updated 2 years ago
- Intentionaly very vulnerable API with bonus bad coding practicesβ46Updated last year
- Host Header Injection Scannerβ47Updated 4 years ago
- β39Updated 2 years ago
- Mitigate security concerns of Dependency Confusion supply chain security risksβ47Updated 2 years ago
- XSSMaze is a web service designed to test and improve the performance of security testing tools by providing various cases of XSS vulneraβ¦β26Updated 3 months ago
- Easy discovery of assetsβ13Updated 3 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internalβ92Updated 3 years ago
- AWS Security Toolβ30Updated last year
- A simple place to learn XSSβ31Updated 4 years ago
- A very vulnerable implementation of a GraphQL API.β59Updated 3 years ago
- Basic implementation of certstream to print new subdomains and domainsβ36Updated 3 years ago
- Simple website to guess API Key / OAuth Tokenβ48Updated 2 years ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.β23Updated last week
- S3 bucket enumeratorβ30Updated 6 years ago