NodeJsScan
0
Free
NodeJsScan is a static security code scanner (SAST) for Node.js applications powered by libsast and semgrep. It is made in India and supports NodeJsScan through donations via Paypal. The tool can be run using Docker or set up locally by installing Postgres and configuring SQLALCHEMY_DATABASE_URI. It also provides a web user interface, a Command Line Interface (CLI), a Python API, and integrations with Slack for alerts.
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
A tool that safely installs packages with npm/yarn by auditing them as part of your install process.
Application security platform that combines SAST and SCA with runtime intelligence to validate vulnerability exploitability and provide contextual remediation guidance.
Commercial
Pint is a PIN tool that exposes the PIN API to lua scripts, allowing dynamic instrumentation of binaries.
DVTA is a Vulnerable Thick Client Application with various security vulnerabilities.
Hackazon is a free, vulnerable test site with an online storefront to train and test IT security professionals on various vulnerabilities like SQL Injection and cross-site scripting.
An API security platform that discovers, documents, and tests APIs throughout the development lifecycle while maintaining a centralized catalog of all API assets.
Commercial
WPRecon is a tool for recognizing vulnerabilities and blackbox information for WordPress.
Guidelines for secure coding in Java SE to avoid bugs that could weaken security and open holes in Java's security features.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security