js-x-ray

Code scanner

A tool that scans JavaScript code for potential security vulnerabilities and patterns

JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.

GitHub
229 stars
5 watching
26 forks
Language: JavaScript
last commit: 3 months ago
Linked from 1 awesome list

astast-analysisjavascriptnodejssastsecuritysecurity-auditsecurity-toolssupply-chain-security

Backlinks from these awesome lists:

Related projects:

Repository Description Stars
nodesecure/cli Analyzes JavaScript package or local Node.js project for security vulnerabilities and provides detailed reports. 367
nodejs/security-wg A collaborative effort to identify and address security vulnerabilities in the Node.js ecosystem. 504
bearer/bearer A tool for discovering and prioritizing security risks in software code 2,112
security-code-scan/security-code-scan Detects vulnerabilities in C# and VB.NET code 942
eslint-community/eslint-plugin-security Identifies potential security vulnerabilities in JavaScript code 2,225
0xsauby/yasuo Scans for vulnerable 3rd-party web applications on a network 570
damian89/extended-xss-search A tool for scanning and identifying cross-site scripting (XSS) vulnerabilities in web applications 183
jewel591/xssmap A tool to detect cross-site scripting vulnerabilities in web applications 261
danmcinerney/xsscrapy An automated tool for detecting cross-site scripting and SQL injection vulnerabilities in web applications 1,665
menkrep1337/xsscon A tool designed to scan websites for Cross-Site Scripting (XSS) vulnerabilities 214
tcosolutions/betterscan A toolchain that scans source code and infrastructure IaC for security risks and provides a unified report. 831
asaiken/dom-based-xss-finder Tools for identifying and exploiting vulnerabilities in DOM-based cross-site scripting attacks. 71
zseano/js-scan A tool designed to scrape and analyze JavaScript files 210
spidermate/b-xssrf A toolkit to detect and track vulnerabilities in web applications 295
bigsizeme/fastjson-check A tool for detecting and generating payload vulnerabilities in JSON data 369