Advanced Client-Side Prototype Pollution Scanner

Secure your code in seconds. VibeSafe is an AI-native DevSecOps CLI tool that detects vulnerabilities, secrets, insecure configs, and hallucinated dependencies before they ship.

A client-side web security tool that sanitizes potentially malicious HTML and JavaScript input by stripping unsafe tags and event attributes. Designed to demonstrate XSS prevention concepts, safe input handling, and frontend security practices using pure HTML, CSS, and JavaScript in a beginner-friendly interface.

DSSRF is a Node.js library that provides a wide range of utilities and advanced SSRF defense checks, helping make your website resistant to SSRF attacks when implemented correctly.

Ansede Static: Next-Gen SAST Engine — Fast, Offline, Security for Modern Codebases Detect critical security vulnerabilities and code quality issues in Python, JavaScript, and TypeScript projects with a single command. No dependencies, no cloud, no setup—just download, unzip, and scan any folder instantly.

Local Python IOC scanner for Mini Shai-Hulud npm supply-chain compromise indicators in node_modules, package.json, npm cache, .npmrc, processes, and git history.

JavaScript Security Engineering (Helicopter View) workshop, crafted for 3 hours with a bunch of demos

JavaScript Intelligence Engine - SPA bundle'larindan secret/endpoint/source-map cikartan tek dosya ofansif recon araci. 63 secret regex'i, Source Map V3 dekoderi, webpack chunk parser, multi-format cikti. Bug bounty + self-audit.

Find subdomains and urls in Javascript files

Guide intended for full-stack developers to secure projects with JavaScript technologies (React, Vue, etc.) and a Node.js/PHP backend with CRUD/REST APIs

CLI Vulnify - Faz o scan em seus projetos buscando por vulnerabilidades.

A new package that analyzes user-provided JavaScript code snippets to determine if they can run concurrently without conflicts or race conditions. It takes the code as text input and returns a structu

Next.js JS bundle API endpoint discovery tool — no wordlists, real browser interception

Secure your code in seconds. VibeSafe is an AI-native DevSecOps CLI tool that detects vulnerabilities, secrets, insecure configs, and hallucinated dependencies before they ship.

AstraJS is a fast and powerful CLI-based JavaScript security analyzer that scans websites for hidden endpoints, exposed credentials, and sensitive data. It helps security researchers identify potential vulnerabilities through automated extraction, network intelligence, and detailed JSON reporting.

🔍 AI-Powered JavaScript Vulnerability Scanner & Security Automation Tool | Detect XSS, code injection, secrets & more using Google Gemini AI | Multi-purpose security engine with customizable YAML templates for penetration testing & red team operations

ScriptSentry is an advanced JavaScript security scanner designed to detect exposed secrets, vulnerabilities, and sensitive data in JavaScript files. It automatically crawls websites to discover JS files and scans them

Build a simple JavaScript Quiz Application

Scan and fix vulnerabilities in Python, JavaScript, TypeScript, Go, and Java code using AI-powered analysis with 200 built-in security rules.