Browser Security

13 projects

Showing 13 of 13 projects

sjclJavaScript

A deprecated JavaScript library for cryptographic operations including encryption, hashing, and key generation.

#deprecated#encryption-library#elliptic-curve-cryptography

Stars7.2k

Forks994

Last commit2 months ago

jsencryptJavaScript

A tiny, zero-dependency JavaScript library for OpenSSL RSA encryption, decryption, and key generation in browsers and Node.js.

#zero-dependency#rsa-encryption#openssl-compatible

Stars6.8k

Forks2.0k

Last commit2 months ago

js-xssHTML

A JavaScript library that sanitizes untrusted HTML to prevent XSS attacks using a configurable whitelist.

#web-security#html-sanitization#input-validation

Stars5.3k

Forks633

Last commit1 month ago

node-casbinTypeScript

A powerful authorization library for Node.js and browser environments supporting ACL, RBAC, and ABAC access control models.

#js#rbac#acl

Stars2.9k

Forks231

Last commit23 days ago

js-vuln-db

A curated database of JavaScript engine CVEs with proof-of-concept exploits for security research.

#cve#vulnerability#vulnerability-database

Stars2.3k

Forks404

Last commit6 years ago

domatoPython

A grammar-based DOM fuzzer that generates HTML, CSS, and JavaScript test cases to find security vulnerabilities in web browsers.

#grammar-based-fuzzing#vulnerability-discovery#web-security

Stars1.8k

Forks284

Last commit1 year ago

libsodium.jsHTML

The sodium cryptography library compiled to WebAssembly and pure JavaScript for use in web applications and Node.js.

#crypto#webassembly#emscripten

Stars1.1k

Forks163

Last commit13 days ago

uxss-dbHTML

A curated database of Universal Cross-Site Scripting (UXSS) vulnerabilities and browser security research resources.

#cve#vulnerability#web-security

Stars702

Forks83

Last commit5 years ago

Stealing CSRF tokens with CSS injection (without iFrames)HTML

A proof-of-concept demonstrating how to steal CSRF tokens via CSS injection without using iFrames, enabling client-side attacks.

#web-security#security-poc#service-workers

A static and symbolic analysis tool for finding memory safety bugs in browser code and other software.

#memory-safety#vulnerability-detection#bug-finding

Stars236

Forks42

Last commit4 years ago

Any protection against dynamic module import?HTML

A W3C specification for a Content Security Policy that helps prevent cross-site scripting and other code injection attacks.

#web-security#security-headers#w3c-specification

A fast cryptographic toolkit for modern client-side JavaScript applications.

#web-cryptography#modern-js#client-side-javascript

Stars124

Forks4

Last commit13 years ago

X-Frame-Options: All about Clickjacking?

A repository containing Cure53's security audit reports, white papers, academic publications, and security tools.

#web-security#penetration-testing#vulnerability-research

Stars86

Forks10

Last commit3 years ago

Related Tags

Community-curated · Updated weekly · 100% open source

Found a gem we're missing?

Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.

Submit a project Star on GitHub