mikesamuel / node-sec-patterns

Related projects ⓘ

Alternatives and complementary repositories for node-sec-patterns

• mikesamuel / attack-review-testbed
  Make it easy to probe the strengths and weaknesses of a hardened Node.js stack
  ☆19Updated 5 years ago
• mozfreddyb / eslint-plugin-scanjs-rules
  rules for scanjs functionality
  ☆28Updated 3 years ago
• mozfreddyb / eslint-config-scanjs
  umbrella config to achieve scanjs-like functionality through eslint
  ☆88Updated 3 years ago
• google / node-sec-roadmap
  Some thoughts on how Node.js might respond to a changing security environment
  ☆172Updated 5 years ago
• tc39 / security
  Discussion area for security aspects of ECMAScript
  ☆64Updated 6 years ago
• sola-da / Synode
  Automatically Preventing Code Injection Attacks on Node.js
  ☆78Updated 2 years ago
• nearform / gammaray
  Node.js vulnerability scanner
  ☆104Updated 4 years ago
• JacksonGL / NPM-Vuln-PoC
  Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]
  ☆42Updated 4 months ago
• Contrast-Security-OSS / NodeTestBench
  Intentionally Vulnerable Node Applications
  ☆15Updated 4 years ago
• mozilla / scanjs
  [DEPRECATED] Static analysis tool for javascript code.
  ☆429Updated 3 years ago
• sqreen / SPAudit
  ☆39Updated last year
• nodejs / security-advisories
  Security advisories for Node.js and the JavaScript ecosystem.
  ☆41Updated 3 years ago
• bmeck / node-policy
  Policy management tool for Node.js
  ☆22Updated last year
• webschik / tslint-config-security
  TSLint security rules
  ☆70Updated 4 years ago
• uber-archive / paranoid-request
  An SSRF-preventing wrapper around Node's request module
  ☆26Updated 6 years ago
• bahmutov / ban-sensitive-files
  Checks filenames to be committed against a library of filename rules to prevent sensitive files in Git
  ☆63Updated 2 weeks ago
• OWASP / cwe-sdk-javascript
  A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
  ☆33Updated 3 weeks ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 7 years ago
• OWASP / packman
  A documentation and tracking project with the goal of making package management systems more secure.
  ☆49Updated 3 years ago
• certsimple / ssltest
  Node Express A+ SSL labs config
  ☆20Updated 9 years ago
• c0nrad / caspr
  Content-Security-Policy report aggregator/analyzer
  ☆54Updated 4 years ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated last year
• paypal / scorebot
  ☆57Updated 4 years ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆61Updated last year
• spaceraccoon / npm-zoo
  A zoo for malicious NPM packages
  ☆20Updated last year
• nearform / no-gres
  A small module to mock pg for testing purposes.
  ☆17Updated 4 years ago
• cheerscyber / materials
  Materials used by Product Management and Product Marketing
  ☆12Updated 6 years ago
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆55Updated 2 months ago
• LewisArdern / eslint-plugin-prototype-pollution-security-rules
  ☆16Updated 6 years ago
• skepticfx / domstorm
  A dashboard for interesting DOM tricks/techniques.
  ☆36Updated 3 years ago