Awesome Open Source

Programming Languages

Search results for javascript owasp

66 search results found

Juice Shop ⭐ 9,577

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Retire.js ⭐ 3,448

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

Themis ⭐ 1,779

Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.

Threat Dragon ⭐ 738

An open source threat modeling tool from OWASP

Securecodebox ⭐ 667

secureCodeBox (SCB) - continuous secure delivery out of the box

Android Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.

Owasp Threat Dragon ⭐ 440

An open source, online threat modelling tool from OWASP

Creates CycloneDX Software Bill of Materials (SBOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. Slack: https://cyclonedx.slack.com/archives/C04NFFE1962

Action Baseline ⭐ 280

A GitHub Action for running the ZAP Baseline scan

Appsensor ⭐ 263

A toolkit for building self-defending applications through real-time event detection and response

Securetea Project ⭐ 260

The OWASP SecureTea Project provides a one-stop security solution for various devices (personal computers / servers / IoT devices)

Insider ⭐ 255

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Action Full Scan ⭐ 237

A GitHub Action for running the ZAP Full scan

Vulnerableapp ⭐ 236

OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.

Multi Juicer ⭐ 235

Host and manage multiple Juice Shop instances for security trainings and Capture The Flags

Flask Bootstrap ⭐ 189

A Flask app template with integrated SQLAlchemy, authentication, and Bootstrap frontend

Owasp Password Strength Test ⭐ 152

OWASP Password Strength Test for Node.js

JavaScript Secure Coding Practices guide

Passfault ⭐ 139

OWASP Passfault evaluates passwords and enforces password policy in a completely different way.

Owasp Mth3l3m3nt Framework ⭐ 139

OWASP Mth3l3m3nt Framework is a penetration testing aiding tool and exploitation framework. It fosters a principle of attack the web using the web as well as pentest on the go through its responsive interface.

Pentestkit ⭐ 106

OWASP PTK - application security browser extension.

Owasp Esapi Js ⭐ 96

An UNMAINTAINTED project originally exported from code.google.com/p/owasp-esapi-js. This project is deprecated. See the README.md for further details and possible alternatives.

About iMAS - iOS Mobile Application

Essential Nodejs Security Book ⭐ 69

Documentation for Essential Node.js Security

Varnish Firewall

Sso_project ⭐ 55

OWASP Single Sign-On allows a secure-by-default self-hosted SSO experience, including phishing-proof two-factor authentication, using state-of-the-art security mechanisms.

Webdriverio Zap Proxy ⭐ 54

Demo - how to easily build security testing for Web App, using Zap and Glue

A Report Generation Tool for Security Assessment

Securebank ⭐ 46

Zap Scripts ⭐ 45

Zed Attack Proxy Scripts for finding CVEs and Secrets.

Cwe Tool ⭐ 42

A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.

Zap Api Nodejs ⭐ 39

Onesie Life ⭐ 34

🔓 Onesie.life is a fictional social media network that has intentional vulnerabilities

HackBar Quantum is a sidebar that assists you with web application security testing, it's aim is to help make those tedious tasks a little bit easier. This add-on is a predecessor to the original HackBar that is not compatible with Firefox Quantum.

Express Security ⭐ 29

nodejs + express security and performance boilerplate.

Cwe Sdk Javascript ⭐ 28

A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

Webappsec Nutshell ⭐ 26

An ultra-compact intro (or refresher) to Web Application Security.

Owasp 1 Liner ⭐ 24

A deliberately vulnerable Java- and JavaScript-based chat application intended for demos and training in application security.

Cyclonedx Webpack Plugin ⭐ 22

Create CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.

Tutorials ⭐ 21

Additional Resources For Securing The Stack Tutorials

Gh Node Module Generatebom ⭐ 20

GitHub action to generate a CycloneDX SBOM for Node.js

Owasp Aasvs ⭐ 15

OWASP Annotated Application Verfication Standard

Pixi Crs ⭐ 14

CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.

Owasp Threat Dragon Gitlab ⭐ 14

OWASP Threat Dragon with Gitlab Integration

Kyberoppi ⭐ 13

Verkkosovelluksen tietoturvan varmistaminen. Tukimateriaali ohjelmistoalan ammattilaisille.

Owasp Malicious Javascript ⭐ 13

Materials for OWASP presentation on malicious JavaScript

Cyclonedx Javascript Library ⭐ 12

Core functionality of CycloneDX for JavaScript (Node.js or WebBrowser) written in TypeScript.

Gh Python Generate Sbom ⭐ 11

GitHub action to generate a CycloneDX SBOM for Python

Meteor Client Sessions ⭐ 10

MOSTLY DEAD, SEE README --- A smart package for tracking clients across requests

Owasp Threat Dragon Core ⭐ 9

OWASP Threat Dragon core files

Gh Gomod Generate Sbom ⭐ 9

GitHub action to generate a CycloneDX SBOM for Go modules

Zap Friendly Report ⭐ 8

A friendly ZAP Report converter from XML to HTML and Material Design

Insider Action ⭐ 8

:octocat: Official Github Action for Insider

Boilerplate Templates ⭐ 7

Provides boilerplate vulnerability explanations and templates which can easily be used in real-world reports

Xss Defense ⭐ 7

Vef2 2019 ⭐ 7

Vefforritun 2 – 2019

Xss Scanner ⭐ 7

Following OWASP TOP 10 (the top ten most critical web application security risk) I decided to build an XSS Scanner.

A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

Pwpush Cli ⭐ 7

🔑 A nodeJS CLI wrapper to easily push passwords to PasswordPusher

Owaspth Workshop 1 ⭐ 6

OWASP Thailand Chapter: Workshop 1 on 2017-04-27

Owasp Riskrating ⭐ 6

OWASP Risk Rating Management Project

Js Lib Sniper ⭐ 5

OWTF's JavaScript Library Sniper: A standalone tool for figuring out vulnerabilities from JavaScript files, OWTF integration is minimal and mostly done from the OWTF repo.

Ember Anti Clickjacking ⭐ 5

Anti-Clickjacking in Ember

Nodegoat Csrf Attack ⭐ 5

An example mailicious page used to create CSRF attack on NodeGoat App

Awesome Dva ⭐ 5

A curated list of "damn vulnerable apps" and exploitable VMs / wargames. See contributing.md for information.

Related Searches

Javascript Reactjs (121,118)

Javascript Html (48,022)

Javascript Css (46,402)

Javascript Deployment (32,768)

Javascript Express (27,853)

Javascript Command Line (22,145)

Javascript Testing (22,025)

Javascript Redux (21,545)

Javascript Vue (19,769)

Javascript Mongodb (18,598)

1-66 of 66 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.