NodeGoat
vapi
NodeGoat | vapi | |
---|---|---|
3 | 3 | |
1,829 | 1,116 | |
0.6% | - | |
1.3 | 1.1 | |
2 months ago | 9 months ago | |
HTML | HTML | |
Apache License 2.0 | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
NodeGoat
-
Cache configuration change leading to account vulnerability
and we also updated the famous NodeGoat project to bring more awareness around that kind of mis configuration https://github.com/OWASP/NodeGoat/pull/286
-
Can we prevent a security incident like Loom’s?
I took the opportunity to even update the famous NodeGoat repo https://github.com/OWASP/NodeGoat/pull/286 so that people can get more familiar with that kind of mis-configuration issue. Really hope that helps
-
I'm an experienced frontend developer, how do I learn Node and backend?
OWASP Node Tutorial (a little outdated, but OWASP projects are usually great)
vapi
-
Assistance with vAPI Docker Compose Not Initiating 80:80 `vapi-www` Container
I have cloned Git Repo to my local Mac on Big Ventura for vAPI and running:
- A good course on API Tesing?
- Looking for webapp/api related books recommendations
What are some alternatives?
Shosho-Media - A social network where people of similar hobbies can meet and connect with an interesting spin - by Using Jonathan Haidt ranking system of a social network to ensure a fair and safe network. NB. Heroku is down, so I would be porting to a new hosting service soon
django-DefectDojo - DevSecOps, ASPM, Vulnerability Management. All on one platform.
TodoTimer-CS50x-FinalProject - An all-in-one task-tracking app with a customizable timer. Capstone project for Harvard's CS50 Introduction to Computer Science course.
ASVS - Application Security Verification Standard
Online-Library - Place where you can get eBooks and digital audiobooks for free.
lockphish - Lockphish it's the first tool (07/04/2020) for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link.
AmiiboAPI - A RESTful API for amiibo.
31-days-of-API-Security-Tips - This challenge is Inon Shkedy's 31 days API Security Tips.
dev-master - 🗺 All things that you must learn about it to run on the road into the programming world.
sqli-postgres-rce-privesc-hacking-playground - Application with SQL Injection vulnerability and possible privilege escalation. Free vulnerable app for ethical hacking / penetration testing training.
gapps - Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com
juice-shop - OWASP Juice Shop: Probably the most modern and sophisticated insecure web application