softwaremill/nodegoat

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

Apache License 2.0

NodeGoat is an OWASP project that provides a deliberately vulnerable Node.js web application to demonstrate and teach the OWASP Top 10 security risks. It includes both educational content explaining these vulnerabilities and a practical environment where users can exploit, fix, and test common security flaws in Node.js applications.

Total donated

Undistributed

Share with your subscribers:

Recipients

How the donated funds are distributed

Support the dependencies of softwaremill/nodegoat

shaneGirish/bcryptJS

A native JS bcrypt library for NodeJS.

helmetjs/dont-sniff-mimetype

Middleware to prevent mimetype from being sniffed

foreverjs/forever

A simple CLI tool for ensuring that a given node script runs continuously (i.e. forever)

helmetjs/helmet

help secure Express/Connect apps with various HTTP headers

markedjs/marked

A markdown parser built for speed

mongodb/node-mongodb-native

The official MongoDB driver for Node.js

tomas/needle

The leanest and most handsome HTTP client in the Nodelands.

DeadAlready/node-esapi

OSWASP ESAPI4JS encoders port to node module

paularmstrong/swig

A simple, powerful, and extendable templating engine for node.js and browsers, similar to Django, Jinja2, and Twig.

jashkenas/underscore

JavaScript's functional programming helper library.

caolan/async

Higher-order functions and common patterns for asynchronous code

kentcdodds/cross-env

Run scripts that set and use environment variables across platforms

cypress-io/cypress

Cypress is a next generation front end testing tool built for the modern web

gruntjs/grunt

The JavaScript Task Runner

jsoverson/grunt-env

Specify an ENV configuration for future tasks in the chain

tylerbeck/grunt-if

Conditionally run tasks

vkadam/grunt-jsbeautifier

jsbeautifier.org for grunt

pghalliday/grunt-mocha-test

A grunt task for running server side mocha tests

iclanzan/grunt-npm-install

Grunt task to install npm modules.

RetireJS/grunt-retire

Grunt plugin for retire.

jshint/jshint

Static analysis tool for JavaScript

mochajs/mocha

simple, flexible, fun test framework

remy/nodemon

Simple monitor script for use during development of a Node.js app.

SeleniumHQ/selenium

The official WebDriver JavaScript bindings from the Selenium project

shouldjs/should.js

test framework agnostic BDD-style assertions

zaproxy/zap-api-nodejs

ZAP API Client for Node.js

Support the dependencies

Support the repos that depend on this repository

Top contributors

ckarande

168 contributions

65 contributions

59 contributions

42 contributions

23 contributions

13 contributions

9 contributions