OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Gram is Klarna's own threat model diagramming tool

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

A CRUD engine for MongoDB with a Prisma-like schema definition language

bumpgen is an AI agent that upgrades npm packages

Stop leaks. Safeguard your secrets with GitGuardian. GitGuardian actively prevents accidental exposure of sensitive information in your code, allowing you to code confidently and maintain the integrity of your data.

This is a demo project for the SecTester JS SDK framework, with some installation and usage examples.

Agile Threat Modeling as Code

🐋 Customize your own StackHawk docker images

SecTester is a new tool that integrates our enterprise-grade scan engine directly into your unit tests.

A JavaScript Shell PowerApps PCF component for education and research

postMessage() vulnerability tester

A simple projection calculator to estimate ASU consumption in your Dynatrace Environment prior to enabling Application Security

Simple nodejs rasp solution

A POC showing how to use Snyk IaC product in PR checks

This is a demo project for the SecTester JS SDK framework, with some installation and usage examples.