lirantal / essential-nodejs-security-book
Documentation for Essential Node.js Security
☆94Updated last year
Related projects: ⓘ
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆49Updated 3 years ago
- Delightful Node.js packages useful for penetration testing, exploiting, reverse engineer, cryptography ...☆417Updated 3 years ago
- Some thoughts on how Node.js might respond to a changing security environment☆172Updated 5 years ago
- It is a note about security on nodejs☆47Updated 6 years ago
- JavaScript Secure Coding Practices guide☆176Updated 3 years ago
- ☆35Updated 2 years ago
- All checklists☆26Updated 5 years ago
- A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of se…☆443Updated 3 weeks ago
- Security design pattern support for Node.js☆24Updated 5 years ago
- Intentionally Vulnerable Node Applications☆15Updated 4 years ago
- [DEPRECATED] A sample web application using Node.js, Express and Angular that is vulnerable to common security vulnerabilities.☆86Updated 5 years ago
- Damn Vulnerable NodeJS Application☆695Updated 5 months ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆36Updated 2 years ago
- A step by step workshop to exploit various vulnerabilities in Node.js and Java applications☆156Updated 6 months ago
- List of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built in…☆128Updated 3 years ago
- A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.☆131Updated 2 years ago
- Nodejs application intentionally vulnerable to SSRF☆41Updated last year
- Bodhi - Client-side Vulnerability Playground☆117Updated 3 years ago
- Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆198Updated 3 months ago
- eslintrc.js config files for running static analysis on JavaScript to identify security issues.☆62Updated 4 years ago
- A very vulnerable implementation of a GraphQL API.☆56Updated 2 years ago
- Security advisories for Node.js and the JavaScript ecosystem.☆41Updated 3 years ago
- Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.☆100Updated 11 months ago
- Prototype Pollution in JavaScript☆74Updated 2 years ago
- Make it easy to probe the strengths and weaknesses of a hardened Node.js stack☆19Updated 5 years ago
- A simple scavenger hunt to learn about pentesting a website or web application.☆14Updated last week
- JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.☆224Updated this week
- A Reflected / Stored / DOM XSS Scanner based on Headless Chrome Node API via Puppeteer☆38Updated last year
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆370Updated 5 months ago
- Curated list of public penetration testing reports released by several consulting firms☆45Updated 6 years ago