wahengchang / nodejs-security-must-know

Related projects ⓘ

Alternatives and complementary repositories for nodejs-security-must-know

• phra / nodebuster
  DirBuster for Node.js
  ☆19Updated 5 years ago
• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• lirantal / essential-nodejs-security-book
  Documentation for Essential Node.js Security
  ☆95Updated last year
• google / node-sec-roadmap
  Some thoughts on how Node.js might respond to a changing security environment
  ☆172Updated 5 years ago
• JacksonGL / NPM-Vuln-PoC
  Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]
  ☆42Updated 4 months ago
• cure53 / jPurify
  jPurify
  ☆65Updated 7 years ago
• lmammino / distributed-jwt-cracker
  An experimental distributed JWT token cracker built using Node.js and ZeroMQ
  ☆53Updated 2 months ago
• abdilahrf / shania
  Scan secrets from Continuous Integration Build Logs
  ☆52Updated 5 years ago
• AnimeshShaw / Learning-Node.js-Security
  A Collection of articles, videos, blogs, talks and other materials on Node.js Security
  ☆26Updated 5 years ago
• nodejs / security-advisories
  Security advisories for Node.js and the JavaScript ecosystem.
  ☆41Updated 3 years ago
• sethsec / Nodejs-SSRF-App
  Nodejs application intentionally vulnerable to SSRF
  ☆41Updated last year
• gergelyke / express-security.txt
  npm package for express applications
  ☆17Updated 3 years ago
• evilpacket / node-shells
  ☆61Updated 7 years ago
• UlisesGascon / Operational-security
  Day to day relevant info about Operational Security for Nodejs projects
  ☆8Updated 4 years ago
• JakobKallin / Excess-XSS
  A comprehensive tutorial on cross-site scripting
  ☆89Updated 7 years ago
• samhaxr / XXRF-Shots
  XXRF Shots - Useful for testing SSRF vulnerability
  ☆74Updated last year
• sqreen / SPAudit
  ☆39Updated last year
• phra / crosser
  A Reflected / Stored / DOM XSS Scanner based on Headless Chrome Node API via Puppeteer
  ☆39Updated last year
• esmog / nodexp
  NodeXP - A Server Side Javascript Injection tool capable of detecting and exploiting Node.js vulnerabilities
  ☆105Updated 4 years ago
• PacktPublishing / Mastering-Modern-Web-Penetration-Testing
  Code repository for Mastering Modern Web Penetration Testing, published by Packt
  ☆73Updated last year
• hackvertor / clickbandit
  A JavaScript clickjacking PoC generator
  ☆22Updated 5 years ago
• mozfreddyb / eslint-config-scanjs
  umbrella config to achieve scanjs-like functionality through eslint
  ☆88Updated 3 years ago
• bkimminich / webappsec-nutshell
  An ultra-compact intro (or refresher) to Web Application Security.
  ☆31Updated 6 years ago
• pauljt / scanjs
  Static analysis tool for javascript code based. Scanjs uses Esprima to convert sources to AST, then walks AST looking for patterns.
  ☆54Updated 10 years ago
• technion / reactxss
  An XSS smoke test for ReactJS
  ☆37Updated last year
• tc39 / security
  Discussion area for security aspects of ECMAScript
  ☆64Updated 6 years ago
• skepticfx / domstorm
  A dashboard for interesting DOM tricks/techniques.
  ☆36Updated 3 years ago
• OWASP / AppSec-Browser-Bundle
  The OWASP AppSec Browser Bundle is an open source Linux based penetration testing browser bundle built over Mozilla Firefox. It comes pre…
  ☆93Updated 10 years ago
• Nhoya / PastebinMarkdownXSS
  XSS in pastebin.com and reddit.com via unsanitized markdown output
  ☆87Updated 6 years ago