Zen protects your Node app against attacks with one line of code. Get peace of mind— at runtime.

Detect security flaws in Joi validation schemas (XSS, SQL injection, ...) 🔥

A fully typed TypeScript and Node.js implementation of PostgreSQL format() to safely create dynamic SQL queries. SQL identifiers and literals are escaped to help prevent SQL injection.

A package of security tools for your application. ( beta-testing )

A web application written in TypeScript to demonstrate common security flaws and vulnerabilities

REST is over-engineering. Just expose one endpoint that accepts SQL queries directly. AI validation handles security. Prototyped with Hono.js — obviously satire.

Interactive platform for learning cybersecurity through hands-on web security challenges like SQLi, XSS, and CSRF.

Interactive cybersecurity learning game with quizzes, simulations, and chatbot guidance, built to make online safety fun and easy.

A utility for safely building parameterized Postgres SQL queries. Not an ORM or DSL.

Exploring ways to prevent SQL injection in Node.js

Лабораторная работа с демонстрацией SQL Injection и XSS уязвимостей

Backend Security using Arcjet

Assert identifiers (e.g. table/view names) before using them in SQL statements.

When tinkering with SQL injections, one thing I have seen beginners struggle and yet sometimes struggle with myself, is to wrap the head around the relation between the input field and how it will affect the SQL query executed. Therefore, I want to help learners and myself with this visualization aid.

Vulnerable web app with a playground providing examples of SQL injections.

PayTrack is an open-source platform designed to help developers discover, understand, and remediate security exploits in real world web stacks.