Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 23 JavaScript Security Projects
-
SurveyJS
Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App. With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.
-
DOMPurify
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
-
user.js
Firefox privacy, security and anti-tracking: a comprehensive user.js template for configuration and hardening
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
howtheysre
A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)
-
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
-
ClearURLs-Addon
ClearURLs is an add-on based on the new WebExtensions technology and will automatically remove tracking elements from URLs to help protect your privacy.
-
shhgit
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.
-
sanitize-html
Clean up user-submitted HTML, preserving whitelisted elements and whitelisted attributes on a per-element basis. Built on htmlparser2 for speed and tolerance
-
Retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
-
Cosmos-Server
☁️ The Most Secure and Easy Selfhosted Home Server. Take control of your data and privacy without sacrificing security and stability (Authentication, anti-DDOS, anti-bot)
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
Project mention: Blockchain transactions decoding: making wallet activity understandable | dev.to | 2023-10-27Lets look the events of Open Zeppelin’s ERC20 token contract:
Project mention: JavaScript Libraries for Implementing Trendy Technologies in Web Apps in 2024 | dev.to | 2024-04-09DOMPurify
Ha, fun to see this again! Back before everything was HTTPS, it was fun to use the Browser Exploitation Framework (https://beefproject.com) which had a script included that did this. Though in those cases I wasn't in control of the gateway, so ARP spoofing was required to get other devices to route through me.
https://github.com/devploit/ctf-awesome-resources https://github.com/apsdehal/awesome-ctf
Project mention: It's getting hard to use and recommend Firefox, I'm afraid for the free web | news.ycombinator.com | 2024-04-08Re: firefox and privacy, if you want to use firefox for privacy, consider using https://github.com/arkenfox/user.js . There is a case to be made that Firefox (with arkenfox's user.js) is one of the best privacy-respecting but still fairly usable browsers.
Project mention: 5 GitHub Projects to Help You Become a Better DevOps Engineer ⚡ | dev.to | 2023-06-231. How they SRE
Project mention: Script kiddie tools preferred by the hackers of this channel? | /r/hacking | 2023-07-08Check https://github.com/projectdiscovery/nuclei mostly for CVEs.
Ever heard of the ClearURLs Browser-Addon. It's also available for Firefox for Android.
Project mention: Vm2 discontinued due to unfixable security issues | news.ycombinator.com | 2023-07-12
Project mention: What tools do you use to generate css/xpath selectors? | /r/webscraping | 2023-07-19Sometimes I use sanitize-html to clean up the html and ask chatgpt to help me refine my selectors.
Retire.js
Project mention: Mozilla Firefox or Chrome which is best for MOBILE PHONE.? | /r/browsers | 2023-12-11You can apply Betterfox using USB debugging, but it takes time to set it up: https://github.com/yokoffing/Betterfox/issues/240
Project mention: It's the Job of My Dreams, but I'd Have to Write a Cover Letter, So Nevermind | news.ycombinator.com | 2023-11-08
Express Gateway: A microservices API Gateway built on Express.js. It's entirely extensible and framework agnostic, delivering robust, scalable solutions in no time.
Implementing API rate limiting in your Node.js project is an important step toward maintaining the stability and reliability of your application. With the use of packages like express-rate-limit or rate-limiter-flexible, you can easily set limits on requests and prevent abuse of your API by malicious users.
That's basically just a docker-compose.
If you want something crazy all-in-one for homelab check out https://github.com/azukaar/Cosmos-Server
JavaScript Security related posts
- SQL Injection Isn't Dead Yet
- How to use Lefthooks in your node project?
- It's getting hard to use and recommend Firefox, I'm afraid for the free web
- Lessons from open-source: Use window.trustedTypes to prevent DOM XSS.
- Show HN: German-Language Diceware
- 6 Tools To Help Keep Your Dependencies And Code More Secure
- Upside-Down-Ternet
-
A note from our sponsor - InfluxDB
www.influxdata.com | 25 Apr 2024
Index
What are some of the best open-source Security projects in JavaScript? This list will help you:
Project | Stars | |
---|---|---|
1 | nginxconfig.io | 27,057 |
2 | openzeppelin-contracts | 24,109 |
3 | DOMPurify | 12,766 |
4 | KeeWeb | 12,054 |
5 | BeEF | 9,377 |
6 | awesome-ctf | 9,174 |
7 | user.js | 9,104 |
8 | howtheysre | 8,918 |
9 | nuclei-templates | 8,024 |
10 | arkime | 6,114 |
11 | cloudmapper | 5,830 |
12 | ClearURLs-Addon | 3,902 |
13 | vm2 | 3,827 |
14 | shhgit | 3,787 |
15 | sanitize-html | 3,613 |
16 | Retire.js | 3,508 |
17 | Betterfox | 3,495 |
18 | cloudsploit | 3,172 |
19 | StegCloak | 3,171 |
20 | express-gateway | 2,938 |
21 | rate-limiter-flexible | 2,871 |
22 | user.js | 2,713 |
23 | Cosmos-Server | 2,686 |
Sponsored