Alternatives and similar repositories for node-sec-patterns

Users that are interested in node-sec-patterns are comparing it to the libraries listed below

• mikesamuel / attack-review-testbed
  Make it easy to probe the strengths and weaknesses of a hardened Node.js stack
  ☆19Updated 6 years ago
• mozfreddyb / eslint-plugin-scanjs-rules
  rules for scanjs functionality
  ☆28Updated 4 years ago
• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• tc39 / security
  Discussion area for security aspects of ECMAScript
  ☆64Updated 7 years ago
• mozfreddyb / eslint-config-scanjs
  umbrella config to achieve scanjs-like functionality through eslint
  ☆88Updated 4 years ago
• bahmutov / ban-sensitive-files
  Checks filenames to be committed against a library of filename rules to prevent sensitive files in Git
  ☆66Updated last week
• nodejs / security-advisories
  Security advisories for Node.js and the JavaScript ecosystem.
  ☆41Updated 4 years ago
• bmeck / node-policy
  Policy management tool for Node.js
  ☆22Updated 2 years ago
• LewisArdern / eslint-plugin-prototype-pollution-security-rules
  ☆16Updated 6 years ago
• nearform / gammaray
  Node.js vulnerability scanner
  ☆103Updated 5 years ago
• snyk-labs / snync
  Mitigate security concerns of Dependency Confusion supply chain security risks
  ☆47Updated 2 years ago
• OWASP / packman
  A documentation and tracking project with the goal of making package management systems more secure.
  ☆50Updated 4 years ago
• jtmelton / attack-surface-analyzer
  A tool for analyzing the attack surface of an application
  ☆19Updated 3 months ago
• mozilla / scanjs
  [DEPRECATED] Static analysis tool for javascript code.
  ☆427Updated 3 years ago
• seek-oss / listo
  Listo. Use questionnaires and checklists to make it easy to do the right thing, regarding the software you build.
  ☆28Updated 2 years ago
• webschik / tslint-config-security
  TSLint security rules
  ☆69Updated 4 years ago
• snyk / nodejs-runtime-agent
  Snyk Node Runtime Agent
  ☆16Updated 3 years ago
• Contrast-Security-OSS / NodeTestBench
  Intentionally Vulnerable Node Applications
  ☆16Updated 5 years ago
• aaronmccall / cvss
  A CommonJS library for working with Common Vulnerability Scoring System vectors and scores.
  ☆12Updated 2 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• JacksonGL / NPM-Vuln-PoC
  Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]
  ☆42Updated last year
• spaceraccoon / npm-zoo
  A zoo for malicious NPM packages
  ☆20Updated 2 years ago
• uber-archive / paranoid-request
  An SSRF-preventing wrapper around Node's request module
  ☆26Updated 7 years ago
• sethlaw / sputr
  Security Payload Unit Test Repository (SPUTR)
  ☆86Updated 2 years ago
• dxa4481 / AttackingAndDefendingTheGCPMetadataAPI
  This repo gives an overview of some GCP metadata API attack and defend patterns
  ☆76Updated 5 years ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆63Updated 2 years ago
• c0nrad / caspr
  Content-Security-Policy report aggregator/analyzer
  ☆54Updated 5 years ago
• secmerc / materialize-threats
  ☆63Updated 2 years ago
• adamshostack / conflictmodeling
  A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systems
  ☆56Updated this week
• YahooArchive / secure-handlebars
  Handlebars Context Pre-compiler
  ☆45Updated 6 years ago