Alternatives and similar repositories for damn-vulnerable-js-sca

Users that are interested in damn-vulnerable-js-sca are comparing it to the libraries listed below

• owasp-change / owasp-change.github.io
  An Open Letter to the OWASP Board
  ☆107Updated 2 years ago
• codesoap / pfuzz
  A web fuzzer using the httpipe format
  ☆101Updated last year
• RyanJarv / roles
  Unauthenticated enumeration of AWS IAM Roles.
  ☆25Updated last month
• salesforce / lobster-pot
  Scans every git push to your Github organisations to find unwanted secrets.
  ☆87Updated 5 months ago
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆41Updated 10 months ago
• RandoriDev / test-saml-idp
  ☆30Updated 4 years ago
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆42Updated 2 years ago
• tracebit-com / find-s3-account
  Sample code for finding AWS Account ID of an S3 bucket.
  ☆50Updated last year
• SecureStackCo / visualizing-software-supply-chain
  A project to visualize the software supply chain
  ☆53Updated 2 years ago
• Addepar / RedFlag
  RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…
  ☆153Updated 11 months ago
• trailofbits / deptective
  Deptective automatically determines the native dependencies required to run any arbitrary program or command.
  ☆121Updated last month
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆54Updated this week
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated 6 months ago
• hex0punk / wally
  Function callpath mapping analysis tool for Go
  ☆34Updated 7 months ago
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆227Updated 4 months ago
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Updated 4 years ago
• TinderSec / oidc-scanner-aws
  ☆49Updated 2 years ago
• jthack / hero
  a hackbot proof-of-concept
  ☆40Updated last year
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆138Updated 2 weeks ago
• Fennerr / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆74Updated last year
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆89Updated last year
• Deploying-Securely / GPT-Guard
  A lightweight library to sanitize data provided to AI tools
  ☆28Updated 2 years ago
• shivasurya / code-pathfinder
  An open-source security suite aiming to combine structural code analysis with AI-powered vulnerability detection. Built for advanced stru…
  ☆81Updated last week
• jgamblin / EPSS-MCP
  MultiStep MCP That Returns CVE Information With EPSS Score
  ☆11Updated 5 months ago
• rotemreiss / MalifiScan
  A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…
  ☆59Updated last week
• omar2535 / GraphQLer
  🔍A cutting edge context aware GraphQL API fuzzing tool!
  ☆151Updated last month
• tstromberg / supplychain-attack-data
  Data about all known supply-chain attacks through history
  ☆60Updated 4 months ago
• singe / tidcli
  A simple touchID prompt'er for use in shell scripts.
  ☆99Updated last year
• doyensec / safeurl
  A Server Side Request Forgery (SSRF) protection library. Made with 🖤 by Doyensec LLC.
  ☆107Updated 4 months ago
• xvnpw / ai-threat-modeling-action
  AI featured threat modeling and security review action
  ☆44Updated 11 months ago