This simple module enforces HTTPS connections on any incoming requests. In case of a non-encrypted HTTP request, express-enforces-ssl automatically redirects to an HTTPS address using a 301 permanent redirect. express-enforces-ssl also works behind reverse proxies (load balancers) as they are for example used by Heroku and nodejitsu. In such cases, however, the trustProxy parameter has to be set (see below) Usage First, install the module: $ npm install express-enforces-ssl --save Afterwards, require the module and use the HTTPS() method: var express = require('express'); var http = require('http'); var express_enforces_ssl = require('express-enforces-ssl'); var app = express(); app.enable('trust proxy'); app.use(express_enforces_ssl()); /* Routes Here */ http.createServer(app).listen(app.get('port'), function() { console.log('Express server listening on port ' + app.get('port')); }); LICENCE MIT
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A collection of writeups of CTF challenges I solved, including explanations of the challenges and how I solved them.
SecGen creates vulnerable virtual machines and hacking challenges for learning security penetration testing techniques.
An easy-to-use and lightweight API wrapper for Censys APIs with support for Python 3.8+.
A library for validating and accessing environment variables in Node.js programs
A lightweight CTF platform inspired by motherfuckingwebsite.com with a focus on challenge difficulty.
Mellivora Mellivora is a PHP-based CTF engine with a wide range of features for managing Capture The Flag competitions.
A visualization tool for uploading and visualizing data as graphs on-the-fly, based on AfterGlow and running on Django.
Certificate Transparency Monitor that alerts you when an SSL/TLS certificate is issued for your domains.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.