lunasec-io / damn-vulnerable-js-scaLinks
An intentionally vulnerable Javascript app containing notable vulnerabilities in its dependencies.
β18Updated 2 years ago
Alternatives and similar repositories for damn-vulnerable-js-sca
Users that are interested in damn-vulnerable-js-sca are comparing it to the libraries listed below
Sorting:
- An Open Letter to the OWASP Boardβ107Updated last year
- π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.β39Updated 7 months ago
- A web fuzzer using the httpipe formatβ101Updated last year
- A project to visualize the software supply chainβ52Updated last year
- HashiCorp-relevant rules for the Semgrep code analysis toolβ41Updated last year
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive filesβ220Updated last month
- boostsecurityio/poutineβ306Updated last week
- Unauthenticated enumeration of AWS IAM Roles.β25Updated 6 months ago
- πA cutting edge context aware GraphQL API fuzzing tool!β143Updated last week
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.β35Updated 7 months ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs andβ¦β151Updated 8 months ago
- Deptective automatically determines the native dependencies required to run any arbitrary program or command.β93Updated 2 weeks ago
- Scans every git push to your Github organisations to find unwanted secrets.β87Updated 2 months ago
- Security tool against dependency typosquatting attacksβ53Updated this week
- Manager of third-party sources of Semgrep rules πβ87Updated last year
- A tool for quickly evaluating IAM permissions in AWS.β73Updated last year
- Private key usage verificationβ430Updated 3 months ago
- Vandalize old emails. Like an NFT that's easy to prove ownership of.β35Updated 2 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raiderβ139Updated 3 years ago
- App that simplifies building decision trees to model adverse scenariosβ215Updated last year
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflowsβ110Updated this week
- β30Updated 3 years ago
- Nuclei plugins to audit Chrome extensionsβ65Updated last year
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β133Updated 3 months ago
- Sample code for finding AWS Account ID of an S3 bucket.β49Updated last year
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.β275Updated 10 months ago
- AI Resilience Maturity Modelβ25Updated 11 months ago
- Gram is Klarna's own threat model diagramming toolβ322Updated last week
- A web CTF for training developers in bug hunting and secure coding!β99Updated 6 months ago
- Code Pathfinder, the open-source alternative to GitHub CodeQL built with GoLang. Built for advanced structural search, derive insights, fβ¦β63Updated this week