Alternatives and similar repositories for scanjs:

Users that are interested in scanjs are comparing it to the libraries listed below

• mozfreddyb / eslint-plugin-scanjs-rules
  rules for scanjs functionality
  ☆28Updated 3 years ago
• mozfreddyb / eslint-config-scanjs
  umbrella config to achieve scanjs-like functionality through eslint
  ☆88Updated 3 years ago
• dpnishant / jsprime
  a javascript static security analysis tool
  ☆589Updated 9 years ago
• pauljt / scanjs
  Static analysis tool for javascript code based. Scanjs uses Esprima to convert sources to AST, then walks AST looking for patterns.
  ☆54Updated 10 years ago
• indutny / heartbleed
  Extracting server private key using Heartbleed OpenSSL vulnerability.
  ☆393Updated 10 years ago
• skepticfx / domstorm
  A dashboard for interesting DOM tricks/techniques.
  ☆36Updated 4 years ago
• YahooArchive / secure-handlebars
  Handlebars Context Pre-compiler
  ☆45Updated 6 years ago
• RetireJS / grunt-retire
  Grunt plugin for retire.
  ☆88Updated last year
• bekk / retire.js
  retire.js has a new home
  ☆20Updated 9 years ago
• hackvertor / MentalJS
  JavaScript parser and sandbox
  ☆78Updated 8 years ago
• YahooArchive / csptester
  A quick and easy way to test CSP behavior on modern browsers
  ☆49Updated 6 years ago
• rwestergren / simple-hash-xss
  ☆22Updated 8 years ago
• chrisallenlane / watchtower
  Watchtower is a Static Code Analysis tool designed to assist security auditors who are tasked with performing manual code reviews. It is …
  ☆112Updated 7 years ago
• evilpacket / xss.io
  ☆74Updated 11 years ago
• millermedeiros / rocambole
  Recursively walk and transform EcmaScript AST
  ☆170Updated 2 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 8 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• Samsung / meminsight
  Platform-Independent Memory Profiling Tool for Web Applications
  ☆81Updated last year
• skepticfx / hookish
  Hooks in to interesting functions and helps reverse the web app faster.
  ☆163Updated 3 weeks ago
• jagracey / RegEx-DoS
  RegEx Denial of Service (ReDos) Scanner
  ☆162Updated 7 years ago
• jenseng / xsslint
  Find potential XSS vulnerabilities
  ☆26Updated 3 years ago
• asmyczek / popcorn
  Popcorn - the JSON fuzzer
  ☆22Updated 10 years ago
• eoftedal / writings
  blog posts
  ☆176Updated 3 years ago
• uber-archive / paranoid-request
  An SSRF-preventing wrapper around Node's request module
  ☆26Updated 6 years ago
• skepticfx / damnvulnerable.me
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆36Updated 5 years ago
• infosec-au / websec-weekly
  The databases, API's and managers behind https://websecweekly.org
  ☆50Updated 9 years ago
• skepticfx / fuzzcat
  Fuzzing web services in style with nodejs
  ☆11Updated 5 years ago
• sbehrens / sleepy-puppy
  Deprecated please use https://github.com/Netflix/sleepy-puppy
  ☆94Updated 6 years ago
• koto / mosquito
  XSS exploitation tool - access victims through HTTP proxy
  ☆158Updated 10 years ago