mikesamuel / node-sec-patterns
Security design pattern support for Node.js
☆24Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for node-sec-patterns
- Make it easy to probe the strengths and weaknesses of a hardened Node.js stack☆19Updated 5 years ago
- rules for scanjs functionality☆28Updated 3 years ago
- umbrella config to achieve scanjs-like functionality through eslint☆88Updated 3 years ago
- Some thoughts on how Node.js might respond to a changing security environment☆172Updated 5 years ago
- Discussion area for security aspects of ECMAScript☆64Updated 6 years ago
- Automatically Preventing Code Injection Attacks on Node.js☆78Updated 2 years ago
- Node.js vulnerability scanner☆104Updated 4 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated 4 months ago
- Intentionally Vulnerable Node Applications☆15Updated 4 years ago
- [DEPRECATED] Static analysis tool for javascript code.☆429Updated 3 years ago
- ☆39Updated last year
- Security advisories for Node.js and the JavaScript ecosystem.☆41Updated 3 years ago
- Policy management tool for Node.js☆22Updated last year
- TSLint security rules☆70Updated 4 years ago
- An SSRF-preventing wrapper around Node's request module☆26Updated 6 years ago
- Checks filenames to be committed against a library of filename rules to prevent sensitive files in Git☆63Updated 2 weeks ago
- A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC☆33Updated 3 weeks ago
- Use burp's JS static code analysis on code from your local system.☆42Updated 7 years ago
- A documentation and tracking project with the goal of making package management systems more secure.☆49Updated 3 years ago
- Node Express A+ SSL labs config☆20Updated 9 years ago
- Content-Security-Policy report aggregator/analyzer☆54Updated 4 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated last year
- ☆57Updated 4 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆61Updated last year
- A zoo for malicious NPM packages☆20Updated last year
- A small module to mock pg for testing purposes.☆17Updated 4 years ago
- Materials used by Product Management and Product Marketing☆12Updated 6 years ago
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆55Updated 2 months ago
- ☆16Updated 6 years ago
- A dashboard for interesting DOM tricks/techniques.☆36Updated 3 years ago