Search Results for "web security"
Sort By:
Showing 100 open source projects for "web security"
View related business solutions-
Auth0 B2B Essentials: SSO, MFA, and RBAC Built InAuth0's B2B Essentials plan gives you everything you need to ship secure multi-tenant apps. Unlimited orgs, enterprise SSO, RBAC, audit log streaming, and higher auth and API limits included. Add on M2M tokens, enterprise MFA, or additional SSO connections as you scale.
-
$300 Free Credits for Your Google Cloud ProjectsLaunch your next project with $300 in free Google Cloud credits—no strings attached. Test, build, and deploy without risk. Use your credits across the entire Google Cloud platform to find what works best for your needs. After your credits are used, continue with always-free tier services. Only pay when you're ready to scale. Sign up in minutes and start exploring.
-
1
BeEF
The browser exploitation framework project
BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser. Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. ... -
2
BrowserBox
Remote isolated browser API for security
Remote isolated browser API for security, automation visibility and interactivity. Run-on our cloud, or bring your own. Full scope double reverse web proxy with a multi-tab, mobile-ready browser UI frontend. Plus co-browsing, advanced adaptive streaming, secure document viewing and more! But only in the Pro version. BrowserBox is a full-stack component for a web browser that runs on a remote server, with a UI you can embed on the web. -
3
Retire.js
Scanner detecting the use of JavaScript libraries
There is a plethora of JavaScript libraries for use on the web and in node.js apps out there. This greatly simplifies, but we need to stay updated on security fixes. "Using Components with Known Vulnerabilities" is now a part of the OWASP Top 10 and insecure libraries can pose a huge risk for your web app. The goal of Retire.js is to help you detect the use of versions with known vulnerabilities. -
4
node-rate-limiter-flexible
Count and limit requests by key with atomic increments
rate-limiter-flexible counts and limits number of actions by key and protects from DDoS and brute force attacks at any scale. It works with Redis, process Memory, Cluster or PM2, Memcached, MongoDB, MySQL, PostgreSQL and allows to control of requests rate in single process or distributed environment. All operations in memory or distributed environments use atomic increments against race conditions. Combine limiters, block key for some duration, delay actions, manage failover with insurance... -
Stop Cyber Threats with VM-Series Next-Gen Firewall on AzureGain integrated visibility across all traffic in a single pass. Deploy Palo Alto Networks VM-Series to determine application identity and content while automating security policy updates via rich APIs.
-
5
Thulite
Web framework designed for speed, security, and SEO
Thulite is an AI-powered search and recommendation engine that enhances search functionality in applications. It provides intelligent query processing, result ranking, and personalized recommendations. -
6
NGINX Proxy Manager
Docker container for managing Nginx proxy hosts
Expose web services on your network. Free SSL with Let's Encrypt. Designed with security in mind. Perfect for home networks. Expose your private network Web services and get connected anywhere. Based on Tabler, the interface is a pleasure to use. Configuring a server has never been so fun. Configure other users to either view or manage their own hosts. -
7
Cap CAPTCHA
The privacy-first, self-hosted CAPTCHA for the modern web
...It replaces invasive tracking-based CAPTCHA solutions with a lightweight approach based on proof-of-work and client-side instrumentation. The system can be deployed independently, giving developers full control over user data and verification processes. It integrates easily into web applications and focuses on maintaining usability while preventing automated abuse. Cap avoids reliance on centralized providers, reducing dependency on external services and improving privacy compliance. Its design reflects a shift toward decentralized, user-respecting security mechanisms. It is particularly suited for developers who want transparent and customizable bot protection. -
8
Vieb
Vim bindings for the web by design
Free, open source, fast and secure. Local first adblocking, auto-complete, AMP protection, custom redirects and more, all without web requests. Privacy with strict permission system, navigator overrides, custom useragent, custom WebRTC policy and more. Accessible with custom themes, full interface & fontsize scaling, page zooming, spellcheck and mouse support. Security settings with permissions, cache usage, cookie management, (auto-)download settings and more. -
9
Cabin
Cabin is the best JavaScript and Node.js logging service and logging
Cabin is the best JavaScript and Node.js logging service and logging npm package. Cabin is a drop-in replacement and the best alternative to Sentry, Timber, Airbrake, Papertrail, Loggly, Bugsnag, etc. Cabin will automatically detect and mask the following list of extremely sensitive types of data in your logs. Reduce your disk storage costs through Cabin's automatic conversion of Streams, Buffers, and ArrayBuffers to simplified, descriptive-only objects that otherwise would be unreadable... -
MongoDB Atlas runs apps anywhereMongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
-
10
Netlify CMS
A Git-based CMS for static site generators
Open source content management for your Git workflow. Use Netlify CMS with any static site generator for a faster and more flexible web project. Get the speed, security, and scalability of a static site, while still providing a convenient editing interface for content. Content is stored in your Git repository alongside your code for easier versioning, multi-channel publishing, and the option to handle content updates directly in Git. Netlify CMS is built as a single-page React app. ... -
11
gruntwork.io website
The gruntwork.io website
The Gruntwork team deploys a Reference Architecture for you, setting you up with all the foundational pieces you need to get started with AWS and Terraform, including your Landing Zone, network topology, CI / CD pipeline, guard rails, monitoring, out-of-the-box compliance, and more. Use the Gruntwork Infrastructure as Code Library (IaC Library), a collection of reusable Terraform code that has been proven in production at hundreds of companies, to deploy the rest of your infrastructure,... -
12
templUI
A growing collection of beautifully designed UI components for Go
templUI is a modern UI component library built specifically for Go applications using the templ templating language, offering a developer-first approach to building interfaces with strong type safety and performance. It provides a growing collection of beautifully designed, production-ready components styled with Tailwind CSS, allowing developers to construct modern web interfaces without relying on heavy frontend frameworks. One of its defining principles is code ownership, meaning developers can either import components directly or copy them into their projects using a CLI, ensuring full control over customization and long-term maintenance. The library avoids JavaScript frameworks entirely, instead relying on lightweight, vanilla implementations that prioritize speed and simplicity. templUI also emphasizes security and compliance, with features such as CSP-friendly rendering and no inline scripts, making it suitable for enterprise environments. -
13
Marked
A markdown parser and compiler. Built for speed
...Available as a command-line interface (CLI) and running in client- or server-side JavaScript projects. The only completely secure system is the one that doesn't exist in the first place. Having said that, we take the security of Marked very seriously. To prevent ReDoS attacks you can run marked on a worker and terminate it when parsing takes longer than usual. Marked can be run in a worker thread on a node server, or a web worker in a browser. Only current and LTS Node.js versions are supported. End-of-life Node.js versions may become incompatible with Marked at any point in time. -
14
ExpressJS.com
The Express.js Website
This repository contains the source for the Express web site and documentation, the canonical reference for developers using the Express framework. It organizes material into API reference, getting-started guides, best practices, and topic-focused explanations such as routing, middleware, error handling, templating, and performance. Versioned docs help readers match API behavior to the framework version they’re running, reducing confusion during upgrades. -
15
Artillery
Cloud-scale load testing. Fully serverless, test any stack
Artillery is cloud-native, open source, and integrates with your favorite monitoring and CI/CD stack. Load test anything, at any scale. The most advanced load-testing platform in the world. Get started and run a test in minutes from your local machine. Then scale it out effortlessly. Free & open-source. Artillery scales like no other. Run your tests from your own AWS account with no infra to set up or manage. Use Playwright to load test with real browsers. Test HTTP, WebSocket, Socket.io,... -
16
OWASP Juice Shop
Probably the most modern and sophisticated insecure web application
OWASP Juice Shop is probably the most modern and sophisticated insecure web application! It can be used in security trainings, awareness demos, CTFs and as a guinea pig for security tools! Juice Shop encompasses vulnerabilities from the entire OWASP Top Ten along with many other security flaws found in real-world applications! Juice Shop is written in Node.js, Express and Angular. It was the first application written entirely in JavaScript listed in the OWASP VWA Directory. ... -
17
Sails
The MVC framework for Node.js
Build custom, enterprise-grade Node.js apps with Sails! Sails.js is a web framework designed to make building practical, production-ready Node.js apps fast and easy. It is the most popular MVC framework for Node.js, resembling the MVC pattern of frameworks like Ruby on Rails but with support for the requirements of modern apps, such as a data-driven API with a scalable, service-oriented architecture. Sails is compatible with any front-end as well as any database thanks to its powerful ORM... -
18
JsAction
JsAction is a small event delegation library
JSAction is a JavaScript framework developed by Google that provides a structured, event-driven architecture for managing user interactions in large-scale web applications. It simplifies event handling by declaratively binding actions to DOM elements through HTML attributes, enabling clean separation between markup and behavior. JSAction helps improve performance, maintainability, and reliability by minimizing the use of inline scripts and global event listeners. It is especially useful in... -
19
multiOTP open source
PHP strong authentication library, web interface & CLI, OATH certified
multiOTP is a PHP class, a powerful command line utility and a web interface developed by SysCo systèmes de communication sa in order to provide a completely free and easy operating system independent server side implementation for strong two factors authentication solution. multiOTP supports hardware and software tokens with different One-Time Password algorithms like OATH/HOTP, OATH/TOTP and mOTP (Mobile-OTP). QRcode generation is also embedded in order to support provisioning of Google... -
20
pH7 Social Dating CMS (pH7Builder)❤️
🚀 Professional Social Dating Web App Builder (formerly pH7CMS)
pH7Builder is a Professional, Free & Open Source PHP Social Dating Builder Software (primarily designed for developers ...). This Social Dating Web App is fully coded in object-oriented PHP (OOP) with the MVC pattern (Model-View-Controller). It is low resource-intensive, extremely powerful and highly secure. pH7Builder is included with over 42 native modules and is based on its homemade pH7 Framework which includes more than 52 packages To summarize, pH7Builder Social Dating Script... -
21
Tiki Wiki CMS Groupware
The Free / Libre / Open Source Web App with the most built-in features
Security reports: https://security.tiki.org -
22
Free, open source Computer Aided Dispatch for volunteer fire departments, ARES/RACES, CERT teams, EMS, search & rescue, and campus security. 30+ years of real-world use. Zero cost. Self-hosted.
-
23
SafeUtils
110+ developer tools as native MacOS, Linux & Windows desktop apps.
Tools: https://safeutils.com/barcode-generator https://safeutils.com/color-picker https://safeutils.com/qr-code-generator https://safeutils.com/qr-code-scanner https://safeutils.com/word-counter https://safeutils.com/base-64-decoder https://safeutils.com/diff-checker https://safeutils.com/hex-to-ascii https://safeutils.com/json-formatter https://safeutils.com/lorem-ipsum-generator https://safeutils.com/random-generator https://safeutils.com/time-converter https://safeutils.com/... -
24
TRUNKS
Web and Mobile framework
TRUNKS is a web J2EE framework. It's dedicated to develop all kinds of applications in a basic way. Used technologies are based on a MVC model, XML for screen definition. Are included navigation, multilanguage, security, CSS styles, data export... -
25
4ga Boards
Straightforward boards system for realtime project management
Advanced and Secure Boards for Your Needs Whether you are a hobbyist just starting to manage projects or a professional with years of experience, 4ga Boards is the perfect solution for you. Your convenience is our priority. We have redesigned how you work, ensuring the security of your data while introducing innovative features to maximize productivity for you and your team. Enjoy a workspace tailored for you, whether you are solo or in a large group, scalable and flexible to any...
